diff options
| author | David Robertson <davidr@element.io> | 2022-03-02 13:00:16 +0000 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2022-03-02 13:00:16 +0000 |
| commit | f3f0ab10fe766c766dedf9d80e4ef198e3e45c09 (patch) | |
| tree | 3cb66e8f9796e0745a37a0f89adab3c1aed8adae /scripts/hash_password | |
| parent | Improve and refactor the tests for relations. (#12113) (diff) | |
| download | synapse-f3f0ab10fe766c766dedf9d80e4ef198e3e45c09.tar.xz | |
Move scripts directory inside synapse, exposing as setuptools entry_points (#12118)
* Two scripts are basically entry_points already * Move and rename scripts/* to synapse/_scripts/*.py * Delete sync_room_to_group.pl * Expose entry points in setup.py * Update linter script and config * Fixup scripts & docs mentioning scripts that moved Co-authored-by: Andrew Morgan <1342360+anoadragon453@users.noreply.github.com>
Diffstat (limited to 'scripts/hash_password')
| -rwxr-xr-x | scripts/hash_password | 79 |
1 files changed, 0 insertions, 79 deletions
diff --git a/scripts/hash_password b/scripts/hash_password deleted file mode 100755 index 1d6fb0d700..0000000000 --- a/scripts/hash_password +++ /dev/null @@ -1,79 +0,0 @@ -#!/usr/bin/env python - -import argparse -import getpass -import sys -import unicodedata - -import bcrypt -import yaml - -bcrypt_rounds = 12 -password_pepper = "" - - -def prompt_for_pass(): - password = getpass.getpass("Password: ") - - if not password: - raise Exception("Password cannot be blank.") - - confirm_password = getpass.getpass("Confirm password: ") - - if password != confirm_password: - raise Exception("Passwords do not match.") - - return password - - -if __name__ == "__main__": - parser = argparse.ArgumentParser( - description=( - "Calculate the hash of a new password, so that passwords can be reset" - ) - ) - parser.add_argument( - "-p", - "--password", - default=None, - help="New password for user. Will prompt if omitted.", - ) - parser.add_argument( - "-c", - "--config", - type=argparse.FileType("r"), - help=( - "Path to server config file. " - "Used to read in bcrypt_rounds and password_pepper." - ), - ) - - args = parser.parse_args() - if "config" in args and args.config: - config = yaml.safe_load(args.config) - bcrypt_rounds = config.get("bcrypt_rounds", bcrypt_rounds) - password_config = config.get("password_config", None) or {} - password_pepper = password_config.get("pepper", password_pepper) - password = args.password - - if not password: - password = prompt_for_pass() - - # On Python 2, make sure we decode it to Unicode before we normalise it - if isinstance(password, bytes): - try: - password = password.decode(sys.stdin.encoding) - except UnicodeDecodeError: - print( - "ERROR! Your password is not decodable using your terminal encoding (%s)." - % (sys.stdin.encoding,) - ) - - pw = unicodedata.normalize("NFKC", password) - - hashed = bcrypt.hashpw( - pw.encode("utf8") + password_pepper.encode("utf8"), - bcrypt.gensalt(bcrypt_rounds), - ).decode("ascii") - - print(hashed) |