Merge pull request #88 from andreev-artem/develop

Password should be encoded as 'utf-8' before creating hmac to support passwords with non-latin symbols
2026-06-28 16:20:24 +08:00 · 2013-02-03 12:12:04 -08:00
parent adb2680289 8085e0031e
commit b03f355fae
1 changed files with 1 additions and 1 deletions
@@ -78,7 +78,7 @@ def get_hmac(password):
            'must not be None when the value of `SECURITY_PASSWORD_HASH` is '
            'set to "%s"' % _security.password_hash)

-    h = hmac.new(_security.password_salt, password, hashlib.sha512)
+    h = hmac.new(_security.password_salt, password.encode('utf-8'), hashlib.sha512)
    return base64.b64encode(h.digest())