-
Notifications
You must be signed in to change notification settings - Fork 6.3k
Encrypted Passwords #7233
-
I'm not wild about the password being in plain text in the ~/.config/code-server/config.yaml file. I can't seem to find any options for encrypting this password, or did I miss something?
Another thought is to run it through Nginx and try doing a PAM authentication module (code-server is running on AlmaLinux). Has anyone had any luck with that?
Beta Was this translation helpful? Give feedback.
All reactions
You can use hashed_password instead of password.
Replies: 2 comments 4 replies
-
You can use hashed_password instead of password.
Beta Was this translation helpful? Give feedback.
All reactions
-
Oops, in the yaml it would be hashed-password (dash not underscore).
You can also use a HASHED_PASSWORD environment variable.
Lines 341 to 364 in db5f99d
Beta Was this translation helpful? Give feedback.
All reactions
-
Is there a different way to make that hash? The command specified throws out all kinds of deprecation warnings, including:
inflight@1.0.6: This module is not supported, and leaks memory. Do not use it. Check out lru-cache if you want a good and tested way to coalesce async requests by a key value, which is much more comprehensive and powerful.
Beta Was this translation helpful? Give feedback.
All reactions
-
Oh interesting yeah looks like argon2-cli has not been updated in quite some time. I think the hashes it generates are still probably going to be valid for code-server, but maybe a better way is to install argon2 without npm. This will depend on your operating system, but I believe Ubuntu for example has argon2 in their package repositories.
Beta Was this translation helpful? Give feedback.
All reactions
-
I couldn't find an Alma binary for 9.x, not even in elrepo, so I made a quick Python script using the argon2-cffi module and that works pretty well.
Beta Was this translation helpful? Give feedback.
All reactions
-
🎉 1
-
Awesome, thanks!
Beta Was this translation helpful? Give feedback.