This package is the Yesod.Auth.HashDB plugin, originally included as part
of yesod-auth, but now modified to be more secure and placed in a separate
package.
It provides authentication using hashed passwords stored in a database,
and works best in situations where an administrator is involved in
setting up a user with an initial password.
The complete login process, including a default form, is implemented by
this plugin, but the application developer must design the interfaces
for setting up users and allowing them to change their own passwords,
since only the low-level password-setting functions are provided by this
package. (Note that other authentication plugins may be more appropriate
if you wish to use email verification to set up accounts).
Changes
1.7.1
Relax upper bounds to allow persistent-2.9 (for GHC 8.6 versions of Stackage nightly)
Remove testing of GHC below 8.0.2, and lts below 9
1.7
Update for changes in yesod version 1.6, but retain compatibility with previous versions
Remove support for GHC below 7.10, and lts below 6
1.6.2
Use PasswordStore from yesod-auth instead of pwstore-fast (uses cryptonite instead of cryptohash)
1.6.1
Relax upper bound on persistent
1.6.0.1
Fix serious documentation layout problem caused by typo
1.6
This release completes the breaking changes started in 1.5. For details
of upgrading, please see
Upgrading.md.
Complete removal of compatibility with old databases designed for versions before 1.3
Add JSON support
1.5.1.3
Fix test failure with basic-prelude >= 0.6 (#6)
1.5.1.2
Relax upper bound to allow persistent-2.6
1.5.1.1
Minor documentation improvement
Reduce external-library dependencies for tests
1.5.1
Include CSRF token in default form
1.5
This release can break both old code and old database entries. For details
of upgrading, please see
Upgrading.md.
First phase of removing compatibility with old databases designed for versions before 1.3
Remove deprecated utilities (getAuthIdHashDB and pre-defined User data type)