allura-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From kentontay...@apache.org
Subject [allura] 01/02: fixup! fixup! [#8274]
Date Tue, 09 Apr 2019 21:07:57 GMT
This is an automated email from the ASF dual-hosted git repository.

kentontaylor pushed a commit to branch kt/8274
in repository https://gitbox.apache.org/repos/asf/allura.git

commit 878d1926174cf6265440b95815763f99307d883b
Author: Kenton Taylor <ktaylor@slashdotmedia.com>
AuthorDate: Tue Apr 9 16:57:58 2019 -0400

    fixup! fixup! [#8274]
---
 Allura/allura/lib/plugin.py | 2 +-
 Allura/development.ini      | 8 ++++----
 2 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/Allura/allura/lib/plugin.py b/Allura/allura/lib/plugin.py
index e8bf538..4bded04 100644
--- a/Allura/allura/lib/plugin.py
+++ b/Allura/allura/lib/plugin.py
@@ -372,7 +372,7 @@ class AuthenticationProvider(object):
         ]
 
     def hibp_password_check_enabled(self):
-        return asbool(tg.config.get('hibp_password_check', False))
+        return asbool(tg.config.get('auth.hibp_password_check', False))
 
 
 class LocalAuthenticationProvider(AuthenticationProvider):
diff --git a/Allura/development.ini b/Allura/development.ini
index 6be1e19..cc67458 100644
--- a/Allura/development.ini
+++ b/Allura/development.ini
@@ -223,6 +223,10 @@ auth.multifactor.recovery_code.count = 10
 ; length of each code.  Must be 8 for compatibility with "filesystem-googleauth" files
 auth.multifactor.recovery_code.length = 8
 
+; Optionally enable password hash checks against haveibeenpwned.com during password changes,
and disallow any
+; that are known to be compromised
+auth.hibp_password_check = true
+
 
 user_prefs_storage.method = local
 ; user_prefs_storage.method = ldap
@@ -588,10 +592,6 @@ limit_param_max = 500
 ; Hide private info (email addresses) in places like commit messages, since they cannot be
edited.
 hide_private_info = true
 
-; Optionally enable password hash checks against haveibeenpwned.com during password changes,
and disallow any
-; that are known to be compromised
-hibp_password_check = true
-
 
 ;
 ; Settings for the Blog tool


Mime
View raw message