Search Options

Display Count
Sort
Preferred Language
Advanced Search

Results 11 - 17 of 17 for verify_password (0.07 seconds)

  2. github.com/tiangolo/fastapi

    docs/es/docs/tutorial/security/oauth2-jwt.md 

    {* ../../docs_src/security/tutorial004_an_py310.py hl[8,49,51,58:59,62:63,72:79] *}

Cuando `authenticate_user` se llama con un nombre de usuario que no existe en la base de datos, aun así ejecutamos `verify_password` contra un hash ficticio.
    Created: Sun Apr 05 07:19:11 GMT 2026
    - Last Modified: Thu Mar 19 18:15:55 GMT 2026
    - 11.5K bytes
    - Click Count (0)
  3. github.com/tiangolo/fastapi

    docs/uk/docs/tutorial/security/oauth2-jwt.md 

    {* ../../docs_src/security/tutorial004_an_py310.py hl[8,49,51,58:59,62:63,72:79] *}

Коли `authenticate_user` викликається з ім'ям користувача, якого немає в базі даних, ми все одно запускаємо `verify_password` для «підставного» хешу.
    Created: Sun Apr 05 07:19:11 GMT 2026
    - Last Modified: Thu Mar 19 18:27:41 GMT 2026
    - 17.9K bytes
    - Click Count (0)
  4. github.com/tiangolo/fastapi

    docs/fr/docs/tutorial/security/oauth2-jwt.md 

    {* ../../docs_src/security/tutorial004_an_py310.py hl[8,49,51,58:59,62:63,72:79] *}

Lorsque `authenticate_user` est appelée avec un nom d'utilisateur qui n'existe pas dans la base de données, nous exécutons tout de même `verify_password` contre un hachage factice.
    Created: Sun Apr 05 07:19:11 GMT 2026
    - Last Modified: Thu Mar 19 18:37:13 GMT 2026
    - 12.6K bytes
    - Click Count (0)
  5. github.com/tiangolo/fastapi

    docs/ru/docs/tutorial/security/oauth2-jwt.md 

    {* ../../docs_src/security/tutorial004_an_py310.py hl[8,49,51,58:59,62:63,72:79] *}

Когда `authenticate_user` вызывается с именем пользователя, которого нет в базе данных, мы все равно запускаем `verify_password` с использованием фиктивного хэша.
    Created: Sun Apr 05 07:19:11 GMT 2026
    - Last Modified: Thu Mar 19 17:56:20 GMT 2026
    - 19.7K bytes
    - Click Count (0)
  6. github.com/tiangolo/fastapi

    docs/pt/docs/tutorial/security/oauth2-jwt.md 

    {* ../../docs_src/security/tutorial004_an_py310.py hl[8,49,51,58:59,62:63,72:79] *}

Quando `authenticate_user` é chamado com um nome de usuário que não existe no banco de dados, ainda executamos `verify_password` contra um hash fictício.
    Created: Sun Apr 05 07:19:11 GMT 2026
    - Last Modified: Thu Mar 19 18:20:43 GMT 2026
    - 11.6K bytes
    - Click Count (0)
  7. github.com/tiangolo/fastapi

    docs/ko/docs/tutorial/security/oauth2-jwt.md 

    그리고 사용자를 인증하고 반환하는 또 다른 함수도 생성합니다.

{* ../../docs_src/security/tutorial004_an_py310.py hl[8,49,51,58:59,62:63,72:79] *}

`authenticate_user`가 데이터베이스에 존재하지 않는 사용자이름으로 호출되더라도, 여전히 `verify_password`를 더미 해시에 대해 실행합니다.

이렇게 하면 사용자이름이 유효하든 아니든 엔드포인트가 응답하는 데 걸리는 시간이 대략 동일해져, 기존 사용자이름을 열거하는 데 악용될 수 있는 **타이밍 공격**을 방지합니다.

/// note | 참고
    Created: Sun Apr 05 07:19:11 GMT 2026
    - Last Modified: Fri Mar 20 14:06:26 GMT 2026
    - 13K bytes
    - Click Count (0)
  8. github.com/codelibs/fess

    src/main/java/org/codelibs/fess/app/web/admin/user/AdminUserAction.java 

            validate(form, messages -> {}, this::asEditHtml);
        validateAttributes(form.attributes, v -> throwValidationError(v, this::asEditHtml));
        verifyPassword(form, this::asEditHtml);
        verifyToken(this::asEditHtml);
        getUser(form).ifPresent(entity -> {
            try {
                userService.store(entity);
    Created: Tue Mar 31 13:07:34 GMT 2026
    - Last Modified: Fri Jan 02 06:18:24 GMT 2026
    - 21K bytes
    - Click Count (0)
Back to Top