ASPP/2025-plovdiv-git
0
0
Fork 17
Code Issues 3 Pull requests 10 Projects Releases Packages Wiki Activity Actions

update authentication with hashed password

Browse source
This commit is contained in:
ASPP Student 2025-09-22 16:20:57 +03:00
parent 9ad5cab717
commit 9350b0e82a
1 changed files with 9 additions and 2 deletions
Download patch file Download diff file Expand all files Collapse all files

11
minimal_auth.py
View file

@ -8,13 +8,20 @@ def get_credentials():
password = getpass.getpass('Enter your password: ') password = getpass.getpass('Enter your password: ')
return (username, password) return (username, password)
# add a function that hashes the password
def hash_password(password):
return hashlib.sha256(f'{password}'.encode()).hexdigest()
def authenticate(username, password, pwdb): def authenticate(username, password, pwdb):
return password == pwdb[username] correct_password = pwdb[username]
# add this line to hash the entered password to then compared with the stored password
attempted_password = hash_password(password)
return correct_password == attempted_password
def add_user(username, pwdb): def add_user(username, pwdb):
password = getpass.getpass(f'Enter password for {username}: ') password = getpass.getpass(f'Enter password for {username}: ')
# hash the password before saving to the database # hash the password before saving to the database
pwdb[username] = hashlib.sha256(f'{password}'.encode()).hexdigest() pwdb[username] = hash_password(password)
return pwdb return pwdb
def read_pwdb(pwdb_path): def read_pwdb(pwdb_path):