Manual:$wgPasswordDefault

From MediaWiki.org
Jump to: navigation, search
Translate this page; This page contains changes which are not marked for translation.

Other languages:
English • ‎español • ‎日本語 • ‎polski • ‎português do Brasil
Access: $wgPasswordDefault
Default password type to use when hashing user passwords.
Introduced in version: 1.24.0
Removed in version: still in use
Allowed values: string
Default value: pbkdf2
Other settings: Alphabetical | By function

Details[edit]

Default password type to use when hashing user passwords.

Changing the default[edit]

  1. Check the "DefaultSettings.php" file in the ../includes directory for the available and preset password encryption types.
    (As of MW 1.30: A, B, pbkdf2-legacyA, pbkdf2-legacyB, bcrypt and pbkdf2)
  2. Add $wgPasswordDefault with the parameter to the "LocalSettings.php" file in case you want to change the encryption, e.g. to restore the old MD5 hashing:
    $wgPasswordDefault = 'B';
    
  3. In order for the password to be saved in a new format, one login from each user has to be done. This way the database is updated.
    Alternatively you can use the "wrapOldPasswords.php"Manual:wrapOldPasswords.php maintenance script to convert the hashing algorithm of all passwords without waiting for users to log in. Note that this script only works for pbkdf2-legacyA, pbkdf2-legacyB.
  4. Check the MySQL-database whether the new format has been applied to the fields.
    Select user_password from wikidbname.user where user_password like ':B:%';
    

See also[edit]