PassworD - Code Search

docs/en/docs/tutorial/security/first-steps.md

It can be used by third party applications and systems.

And it can also be used by yourself, to debug, check and test the same application.

## The `password` flow { #the-password-flow }

Now let's go back a bit and understand what is all that.

The `password` "flow" is one of the ways ("flows") defined in OAuth2, to handle security and authentication.

Created: Sun Apr 05 07:19:11 GMT 2026

- Last Modified: Sat Mar 07 09:29:03 GMT 2026

- 8.3K bytes

- Click Count (0)

github.com/tiangolo/fastapi

docs_src/security/tutorial005_an_py310.py


def get_password_hash(password):
    return password_hash.hash(password)


def get_user(db, username: str):
    if username in db:
        user_dict = db[username]
        return UserInDB(**user_dict)


def authenticate_user(fake_db, username: str, password: str):
    user = get_user(fake_db, username)
    if not user:
        verify_password(password, DUMMY_HASH)
        return False

Created: Sun Apr 05 07:19:11 GMT 2026

- Last Modified: Thu Feb 12 18:10:35 GMT 2026

- 5.4K bytes

- Click Count (0)

github.com/codelibs/fess

src/main/java/org/codelibs/fess/opensearch/config/bsentity/BsWebAuthentication.java

        this.parameters = value;
    }

    public String getPassword() {
        checkSpecifiedProperty("password");
        return convertEmptyToNull(password);
    }

    public void setPassword(String value) {
        registerModifiedProperty("password");
        this.password = value;
    }

    public Integer getPort() {
        checkSpecifiedProperty("port");
        return port;
    }

Created: Tue Mar 31 13:07:34 GMT 2026

- Last Modified: Sat Mar 15 06:53:53 GMT 2025

- 9K bytes

- Click Count (0)

github.com/tiangolo/fastapi

docs_src/security/tutorial003_py310.py

    if not user_dict:
        raise HTTPException(status_code=400, detail="Incorrect username or password")
    user = UserInDB(**user_dict)
    hashed_password = fake_hash_password(form_data.password)
    if not hashed_password == user.hashed_password:
        raise HTTPException(status_code=400, detail="Incorrect username or password")

    return {"access_token": user.username, "token_type": "bearer"}


@app.get("/users/me")

Created: Sun Apr 05 07:19:11 GMT 2026

- Last Modified: Mon Nov 24 19:03:06 GMT 2025

- 2.4K bytes

- Click Count (0)

github.com/codelibs/jcifs

src/main/java/jcifs/internal/smb1/com/SmbComTreeConnectAndX.java

                // encrypted
                try {
                    this.password = pwAuth.getAnsiHash(this.ctx, this.server.encryptionKey);
                } catch (final GeneralSecurityException e) {
                    throw new RuntimeCIFSException("Failed to encrypt password", e);
                }
                this.passwordLength = this.password.length;
            } else if (this.ctx.getConfig().isDisablePlainTextPasswords()) {

Created: Sun Apr 05 00:10:12 GMT 2026

- Last Modified: Sat Aug 16 01:32:48 GMT 2025

- 7.1K bytes

- Click Count (0)

github.com/elastic/elasticsearch

build-tools-internal/src/main/groovy/elasticsearch.fips.gradle

          keystorePassword 'keystore-password'
        }
      }
      project.tasks.withType(Test).configureEach { Test task ->
        dependsOn 'fipsResources'
        task.systemProperty('javax.net.ssl.trustStorePassword', 'password')
        task.systemProperty('javax.net.ssl.keyStorePassword', 'password')
        task.systemProperty('javax.net.ssl.trustStoreType', 'BCFKS')

Created: Wed Apr 08 16:19:15 GMT 2026

- Last Modified: Tue Sep 21 11:03:02 GMT 2021

- 4.8K bytes

- Click Count (0)

github.com/apache/maven

api/maven-api-cli/src/main/java/org/apache/maven/api/cli/mvnenc/package-info.java

 */

/**
 * Provides the API for the Maven Password Encryption tool ({@code mvnenc}).
 *
 * <p>This package contains interfaces and classes for the password encryption tool,
 * which helps secure sensitive information in Maven settings and configuration files.</p>
 *
 * <p>Key features include:</p>
 * <ul>
 *   <li>Password encryption and decryption</li>
 *   <li>Master password management</li>

Created: Sun Apr 05 03:35:12 GMT 2026

- Last Modified: Tue Mar 04 14:17:18 GMT 2025

- 1.4K bytes

- Click Count (0)

github.com/square/okhttp

okhttp-tls/src/main/kotlin/okhttp3/tls/internal/TlsUtil.kt

import okhttp3.internal.platform.Platform
import okhttp3.tls.HandshakeCertificates
import okhttp3.tls.HeldCertificate
import org.codehaus.mojo.animal_sniffer.IgnoreJRERequirement

object TlsUtil {
  val password = "password".toCharArray()

  private val localhost: HandshakeCertificates by lazy {
    // Generate a self-signed cert for the server to serve and the client to trust.
    val heldCertificate =
      HeldCertificate

Created: Fri Apr 03 11:42:14 GMT 2026

- Last Modified: Wed Mar 19 19:25:20 GMT 2025

- 4.3K bytes

- Click Count (1)

github.com/tiangolo/fastapi

docs_src/security/tutorial004_an_py310.py


def get_password_hash(password):
    return password_hash.hash(password)


def get_user(db, username: str):
    if username in db:
        user_dict = db[username]
        return UserInDB(**user_dict)


def authenticate_user(fake_db, username: str, password: str):
    user = get_user(fake_db, username)
    if not user:
        verify_password(password, DUMMY_HASH)
        return False

Created: Sun Apr 05 07:19:11 GMT 2026

- Last Modified: Thu Feb 12 18:10:35 GMT 2026

- 4.2K bytes

- Click Count (0)

github.com/tiangolo/fastapi

docs/zh/docs/tutorial/security/first-steps.md

///

点击它，会弹出一个授权表单，可输入 `username` 和 `password`（以及其它可选字段）：

<img src="/img/tutorial/security/image02.png">

/// note | 注意

目前无论在表单中输入什么都不会生效，我们稍后就会实现它。

///

这当然不是面向最终用户的前端，但它是一个很棒的自动化工具，可交互式地为整个 API 提供文档。

前端团队（也可能就是你自己）可以使用它。

第三方应用和系统也可以使用它。

你也可以用它来调试、检查和测试同一个应用。

## `password` 流 { #the-password-flow }

现在回过头来理解这些内容。

`password` “流”（flow）是 OAuth2 定义的处理安全与身份验证的一种方式。

Created: Sun Apr 05 07:19:11 GMT 2026

- Last Modified: Fri Mar 20 17:06:37 GMT 2026

- 7.5K bytes

- Click Count (0)

Search Options