Next: , Previous: , Up: Top  


Password authentication

Password authentication is required for packages uploading. You have to store your authentication data in -passwd file in following format:

username:hashed-password

Empty lines and having # at the beginning are skipped.

Supported hashing algorithms are:

Argon2i (recommended one!)

To get Argon2i hashed-password you can use any of following tools:

Example user foo with password bar can have the following password file entry:

foo:$argon2i$v=19$m=32768,t=3,p=4$OGU5MTM3YjVlYzQwZjhkZA$rVn53v6Ckpf7WH0676ZQLr9Hbm6VH3YnL6I9ONJcIIU
SHA256

You can use your operating system tools:

# BSD-based systems:
$ echo -n "password" | sha256

# GNU/Linux-based systems
$ echo -n "password" | sha256sum

Example user foo with password bar will have the following password file entry:

foo:$sha256$fcde2b2edba56bf408601fb721fe9b5c338d10ee429ea04fae5511b68fbf8fb9

You can refresh passwords by sending SIGHUP signal to the working daemon:

$ pkill -HUP gocheese
$ kill -HUP `pidof gocheese`

Before refreshing it’s recommended to check -passwd file with -passwd-check option to prevent daemon failure.