[ZCM] [ZC] 435/ 8 Comment "New MySQL password scheme"
Collector: Zope Bugs, Features, and Patches ...
zope-coders-admin@zope.org
Fri, 27 Dec 2002 19:53:30 -0500
Issue #435 Update (Comment) "New MySQL password scheme"
Status Accepted, Zope/feature+solution medium
To followup, visit:
http://collector.zope.org/Zope/435
==============================================================
= Comment - Entry #8 by dnehring on Dec 27, 2002 7:53 pm
Aeh, no. I do not see anything which reference to this assumption. What you can do is with Simple User Folder (as an example):
getUserDetails:
SELECT login AS name,CONCAT(\'{MYSQL}\',password) AS password,IF(admins.admins_id,"Manager","") AS role FROM users LEFT JOIN admins ON admins.user_id=users.user_id WHERE login=<dtml-sqlvar name type="string">
________________________________________
= Comment - Entry #7 by chrisw on Dec 26, 2002 5:23 am
What version of Zope do you use there?
Do encrypted passwords returned by the MySQL PASSWORD function all start with 'MYSQL'?
________________________________________
= Comment - Entry #6 by dnehring on Dec 25, 2002 11:20 am
This feature works flawlessly for months for GPL Rank, an online racing community (http://gplrank.schuerkamp.de/) with 10000+ members.
________________________________________
= Comment - Entry #5 by chrisw on Dec 24, 2002 10:49 am
I disagree. This is a small addition to AuthEncodings.py.
I just want a nod that the patch looks okay.
It looks okay to me and if I don't hear any dissenting voices (with good reasons ;-) I'll stick it in some time before Jan 1st.
________________________________________
= Comment - Entry #4 by ajung on Dec 24, 2002 10:48 am
forget my last comment. I had another MySQL collector
issue in mind which would raise some problems.
No objections against the patch.
________________________________________
= Comment - Entry #3 by ajung on Dec 24, 2002 10:40 am
The collector is not the right place to discuss this issue.
I write a small proposal and add this to the list of
the proposed feature for 2.7 on dev.zope.org
-aj
________________________________________
= Accept - Entry #2 by chrisw on Dec 24, 2002 10:36 am
Status: Pending => Accepted
Supporters added: chrisw
I'd like to include this for Zope 2.7.0.
Can anyone think of anything bad that might result from this?
cheers,
Chris
________________________________________
= Request - Entry #1 by dnehring on Jun 17, 2002 2:19 pm
Uploaded: "zope-mysql-patch.txt"
- http://collector.zope.org/Zope/435/zope-mysql-patch.txt/view
Hello *,
I wrote a small enhancement for Zope: I extend the encoding schemes with the MySQL encoding scheme used by the function 'PASSWORD()'. Now it is possible to authenticate directly against a MySQL database where passwords are stored encrypted.
==============================================================