Fixed #24115 -- Allowed bcrypt hashers to upgrade passwords on rounds change.

Thanks Florian Apolloner for the review.
2025-08-03 02:23:12 +00:00 · 2015-02-26 14:04:24 -05:00 · 2015-02-26 14:04:24 -05:00 · b86abbceb9
commit b86abbceb9
parent e4cf8c8420
3 changed files with 39 additions and 0 deletions
--- a/docs/releases/1.9.txt
+++ b/docs/releases/1.9.txt
@ -56,6 +56,9 @@ Minor features
  subclassed ``django.contrib.auth.hashers.PBKDF2PasswordHasher`` to change the
  default value.

+* The ``BCryptSHA256PasswordHasher`` will now update passwords if its
+  ``rounds`` attribute is changed.
+
 :mod:`django.contrib.gis`
 ^^^^^^^^^^^^^^^^^^^^^^^^^^