Skip to content

Commit

Permalink
ENH Deprecate old password encryptors
Browse files Browse the repository at this point in the history
  • Loading branch information
@GuySartorelli
GuySartorelli committed Sep 19, 2023
1 parent 9ccba6b commit 1122a25
Show file tree
Hide file tree
Showing 4 changed files with 50 additions and 1 deletion.
13 changes: 13 additions & 0 deletions src/Security/PasswordEncryptor_LegacyPHPHash.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -2,15 +2,28 @@

namespace SilverStripe\Security;

use SilverStripe\Dev\Deprecation;

/**
* Legacy implementation for SilverStripe 2.1 - 2.3,
* which had a design flaw in password hashing that caused
* the hashes to differ between architectures due to
* floating point precision problems in base_convert().
* See http://open.silverstripe.org/ticket/3004
*
* @deprecated 5.2.0 Will be removed without equivalent functionality to replace it.
*/
class PasswordEncryptor_LegacyPHPHash extends PasswordEncryptor_PHPHash
{
public function __construct()
{
Deprecation::notice(
'5.2.0',
'Will be removed without equivalent functionality to replace it.',
Deprecation::SCOPE_CLASS
);
}

public function encrypt($password, $salt = null, $member = null)
{
$password = parent::encrypt($password, $salt, $member);
Expand Down
12 changes: 12 additions & 0 deletions src/Security/PasswordEncryptor_MySQLOldPassword.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -2,13 +2,25 @@

namespace SilverStripe\Security;

use SilverStripe\Dev\Deprecation;
use SilverStripe\ORM\DB;

/**
* Uses MySQL's OLD_PASSWORD encyrption. Requires an active DB connection.
*
* @deprecated 5.2.0 Will be removed without equivalent functionality to replace it.
*/
class PasswordEncryptor_MySQLOldPassword extends PasswordEncryptor
{
public function __construct()
{
Deprecation::notice(
'5.2.0',
'Will be removed without equivalent functionality to replace it.',
Deprecation::SCOPE_CLASS
);
}

public function encrypt($password, $salt = null, $member = null)
{
return DB::prepared_query("SELECT OLD_PASSWORD(?)", [$password])->value();
Expand Down
12 changes: 12 additions & 0 deletions src/Security/PasswordEncryptor_MySQLPassword.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -2,13 +2,25 @@

namespace SilverStripe\Security;

use SilverStripe\Dev\Deprecation;
use SilverStripe\ORM\DB;

/**
* Uses MySQL's PASSWORD encryption. Requires an active DB connection.
*
* @deprecated 5.2.0 Will be removed without equivalent functionality to replace it.
*/
class PasswordEncryptor_MySQLPassword extends PasswordEncryptor
{
public function __construct()
{
Deprecation::notice(
'5.2.0',
'Will be removed without equivalent functionality to replace it.',
Deprecation::SCOPE_CLASS
);
}

public function encrypt($password, $salt = null, $member = null)
{
return DB::prepared_query("SELECT PASSWORD(?)", [$password])->value();
Expand Down
14 changes: 13 additions & 1 deletion src/Security/PasswordEncryptor_None.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -2,13 +2,25 @@

namespace SilverStripe\Security;

use SilverStripe\Dev\Deprecation;

/**
* Cleartext passwords (used in SilverStripe 2.1).
* Also used when Security::$encryptPasswords is set to FALSE.
* Not recommended.
*
* @deprecated 5.2.0 Will be removed without equivalent functionality to replace it.
*/
class PasswordEncryptor_None extends PasswordEncryptor
{
public function __construct()
{
Deprecation::notice(
'5.2.0',
'Will be removed without equivalent functionality to replace it.',
Deprecation::SCOPE_CLASS
);
}

public function encrypt($password, $salt = null, $member = null)
{
return $password;
Expand Down

0 comments on commit 1122a25

Please sign in to comment.