django-bcrypt¶
django-bcrypt makes it easy to use bcrypt to hash passwords with Django.
Installation and Usage¶
Install the package with pip and Mercurial or git:
pip install -e hg+http://bitbucket.org/dwaiter/django-bcrypt#egg=django-bcrypt
# or ...
pip install -e git://github.com/dwaiter/django-bcrypt.git#egg=django-bcrypt
Add django_bcrypt
to your INSTALLED_APPS
.
That’s it.
Any new passwords set will be hashed with bcrypt. Old passwords will still work fine.
Configuration¶
You can set BCRYPT_ROUNDS
in settings.py
to change the number of
rounds django-bcrypt uses. The default is 12
.
You can change the number of rounds without breaking already-hashed passwords. New passwords will use the new number of rounds, and old ones will use the old number.
Acknowledgements¶
This is pretty much a packaged-up version of this blog post for easier use.
It also depends on the py-bcrypt library.