Use bcrypt_sha256 for long passwords

2026-05-18 10:03:32 +03:00 · 2026-01-19 11:42:38 +03:00 · 2026-01-19 11:42:38 +03:00 · 4b3832592a
commit 4b3832592a
parent 41f8430bb4
1 changed files with 1 additions and 1 deletions
--- a/server/auth.py
+++ b/server/auth.py
@ -34,7 +34,7 @@ ACCESS_TOKEN_EXPIRE_MINUTES = int(os.getenv("ACCESS_TOKEN_EXPIRE_MINUTES", "60")


 # Password hashing context
-pwd_context = CryptContext(schemes=["bcrypt"], deprecated="auto")
+pwd_context = CryptContext(schemes=["bcrypt_sha256", "bcrypt"], deprecated="auto")

 oauth2_scheme = OAuth2PasswordBearer(tokenUrl="/api/login", auto_error=False)