Bcrypt how-to (#28)

This commit is contained in:
aceberg 2023-09-01 22:19:26 +07:00
parent 0ee8f9b6a0
commit 44b51d38d0
2 changed files with 16 additions and 1 deletions

View file

@ -44,7 +44,7 @@ Configuration can be done through config file or environment variables
| AUTH | Enable Session-Cookie authentication | false |
| AUTH_EXPIRE | Session expiration time. A number and suffix: **m, h, d** or **M**. | 7d |
| AUTH_USER | Username | "" |
| AUTH_PASSWORD | Encrypted password (bcrypt) | "" |
| AUTH_PASSWORD | Encrypted password (bcrypt). [How to encrypt password with bcrypt?](docs/BCRYPT.md) | "" |
| COLOR | Background color: light or dark | light |
| DBPATH | Path to Database | /data/db.sqlite |
| GUIIP | Address for web GUI | localhost (127.0.0.1) |

15
docs/BCRYPT.md Normal file
View file

@ -0,0 +1,15 @@
# How to encrypt password with bcrypt?
It is not safe to store password unencrypted, so this app uses `bcrypt` encryption. There are several ways to encrypt your password.
## 1. Set password through web GUI
Then the app will encrypt it for you.
## 2. Encrypt password yourself
On Linux encryption can be done with `htpasswd` command:
```sh
htpasswd -nbBC 10 USER YourSecretPassword | sed 's/USER://'
```
## 3. Encrypt password online
There are online tools for `bcrypt` encryption.