jvalleroy/gist:7441756

## gistfile1.txt
https://github.com/NickDaly/Plinth/pull/52/files

Storing the password (add_user function in modules/installed/lib/auth.py):

>>> passphrase = "secretpassword"
>>> pass_hash = bcrypt.encrypt(passphrase)
>>> pass_hash
'$2a$12$cGf.hqxlyfTJk7HtyhAtDu48gazW1W8rJZt9choiP9/7Rff18yQeW'

# 2a is the identifying prefix
# 12 is the number of rounds (default value)
# The next 22 characters after the $ is the salt.
# The final 31 characters are the checksum.

>>> salt = pass_hash[7:29]
>>> salt
'cGf.hqxlyfTJk7HtyhAtDu'


Checking the password (check_credentials function in modules/installed/lib/auth.py):

>>> pass_hash = bcrypt.encrypt(passphrase, salt=salt)
>>> pass_hash
'$2a$12$cGf.hqxlyfTJk7HtyhAtDu48gazW1W8rJZt9choiP9/7Rff18yQeW'
# As long as we use the same passphrase and salt, this will match the pass_hash above.
	https://github.com/NickDaly/Plinth/pull/52/files

	Storing the password (add_user function in modules/installed/lib/auth.py):

	>>> passphrase = "secretpassword"
	>>> pass_hash = bcrypt.encrypt(passphrase)
	>>> pass_hash
	'$2a$12$cGf.hqxlyfTJk7HtyhAtDu48gazW1W8rJZt9choiP9/7Rff18yQeW'

	# 2a is the identifying prefix
	# 12 is the number of rounds (default value)
	# The next 22 characters after the $ is the salt.
	# The final 31 characters are the checksum.

	>>> salt = pass_hash[7:29]
	>>> salt
	'cGf.hqxlyfTJk7HtyhAtDu'


	Checking the password (check_credentials function in modules/installed/lib/auth.py):

	>>> pass_hash = bcrypt.encrypt(passphrase, salt=salt)
	>>> pass_hash
	'$2a$12$cGf.hqxlyfTJk7HtyhAtDu48gazW1W8rJZt9choiP9/7Rff18yQeW'
	# As long as we use the same passphrase and salt, this will match the pass_hash above.