Passlib 1.6.1 documentation

Welcome

Passlib is a password hashing library for Python 2 & 3, which provides cross-platform implementations of over 30 password hashing algorithms, as well as a framework for managing existing password hashes. It’s designed to be useful for a wide range of tasks, from verifying a hash found in /etc/shadow, to providing full-strength password hashing for multi-user application.

As a quick sample, the following code hashes and then verifies a password using the SHA256-Crypt algorithm:

>>> # import the hash algorithm
>>> from passlib.hash import sha256_crypt

>>> # generate new salt, and hash a password
>>> hash = sha256_crypt.encrypt("toomanysecrets")
>>> hash
'$5$rounds=80000$zvpXD3gCkrt7tw.1$QqeTSolNHEfgryc5oMgiq1o8qCEAcmye3FoMSuvgToC'

>>> # verifying the password
>>> sha256_crypt.verify("toomanysecrets", hash)
True
>>> sha256_crypt.verify("joshua", hash)
False

Content Summary

See also

What’s new in Passlib 1.6

Introductory Materials

Installation

requirements & installation instructions

Library Overview

describes how Passlib is laid out

New Application Quickstart

choosing a password hash for new applications

---

Password Hashing Algorithms

passlib.hash

all the password hashes supported by Passlib –

• Overview
• Unix & “Modular Crypt” Hashes
• LDAP / RFC2307 Hashes
• SQL Database Hashes
• MS Windows Hashes
• Other Hashes

PasswordHash interface

examples & documentation of the common hash interface used by all the hash algorithms in Passlib.

CryptContext Objects

passlib.context

provides the CryptContext class, a flexible container for managing and migrating between multiple hash algorithms.

passlib.apps

predefined CryptContext objects for managing the hashes used by MySQL, PostgreSQL, OpenLDAP, and others applications.

passlib.hosts

predefined CryptContext objects for managing the hashes found in Linux & BSD “shadow” files.

Application Helpers

passlib.apache

classes for manipulating Apache’s htpasswd and htdigest files.

passlib.ext.django

Django plugin which monkeypatches support for (almost) any hash in Passlib.

---

Other Documents

Modular Crypt Format

reference listing “modular crypt format” support across Unix systems.

Changelog

Passlib’s release history

Online Resources

Homepage:	http://passlib.googlecode.com
Online Docs:	http://packages.python.org/passlib
Discussion:	http://groups.google.com/group/passlib-users
PyPI:	http://pypi.python.org/pypi/passlib
Downloads:	http://code.google.com/p/passlib/downloads
Source:	http://code.google.com/p/passlib/source