[ZCM] [ZC] 435/ 8 Comment "New MySQL password scheme"

Collector: Zope Bugs, Features, and Patches ... zope-coders-admin@zope.org
Fri, 27 Dec 2002 19:53:30 -0500 

Issue #435 Update (Comment) "New MySQL password scheme"
 Status Accepted, Zope/feature+solution medium
To followup, visit:
  http://collector.zope.org/Zope/435

==============================================================
= Comment - Entry #8 by dnehring on Dec 27, 2002 7:53 pm

Aeh, no. I do not see anything which reference to this assumption. What you can do is with Simple User Folder (as an example):

getUserDetails:

SELECT login AS name,CONCAT(\'{MYSQL}\',password) AS password,IF(admins.admins_id,"Manager","") AS role FROM users LEFT JOIN admins ON admins.user_id=users.user_id WHERE login=<dtml-sqlvar name type="string">

________________________________________
= Comment - Entry #7 by chrisw on Dec 26, 2002 5:23 am

What version of Zope do you use there?

Do encrypted passwords returned by the MySQL PASSWORD function all start with 'MYSQL'?
________________________________________
= Comment - Entry #6 by dnehring on Dec 25, 2002 11:20 am

This feature works flawlessly for months for GPL Rank, an online racing community (http://gplrank.schuerkamp.de/) with 10000+ members.
________________________________________
= Comment - Entry #5 by chrisw on Dec 24, 2002 10:49 am

I disagree. This is a small addition to AuthEncodings.py.
I just want a nod that the patch looks okay.
It looks okay to me and if I don't hear any dissenting voices (with good reasons ;-) I'll stick it in some time before Jan 1st.
________________________________________
= Comment - Entry #4 by ajung on Dec 24, 2002 10:48 am

forget my last comment. I had another MySQL collector
issue in mind which would raise some problems.
No objections against the patch.
________________________________________
= Comment - Entry #3 by ajung on Dec 24, 2002 10:40 am

The collector is not the right place to discuss this issue.
I write a small proposal and add this to the list of
the proposed feature for 2.7 on dev.zope.org

-aj
________________________________________
= Accept - Entry #2 by chrisw on Dec 24, 2002 10:36 am

 Status: Pending => Accepted

 Supporters added: chrisw

I'd like to include this for Zope 2.7.0.

Can anyone think of anything bad that might result from this?

cheers,

Chris
________________________________________
= Request - Entry #1 by dnehring on Jun 17, 2002 2:19 pm


Uploaded:  "zope-mysql-patch.txt"
 - http://collector.zope.org/Zope/435/zope-mysql-patch.txt/view
Hello *,

I wrote a small enhancement for Zope: I extend the encoding schemes with the MySQL encoding scheme used by the function 'PASSWORD()'. Now it is possible to authenticate directly against a MySQL database where passwords are stored encrypted.
==============================================================