yv01p/Umbraco-CMS
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Refactored code for FIPS compliance support. Added/converted to using a more generic Hash() method instead of directly using MD5.

Browse Source
This commit is contained in:
Jason Prothero
2017-05-10 13:35:28 -07:00
parent 67e2c911f7
commit d8811d6b46
10 changed files with 102 additions and 84 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
src/Umbraco.Core/Security/BackOfficeUserStore.cs
View File

@@ -494,7 +494,7 @@ namespace Umbraco.Core.Security
//the stamp cannot be null, so if it is currently null then we'll just return a hash of the password
return Task.FromResult(user.SecurityStamp.IsNullOrWhiteSpace()
? user.PasswordHash.ToMd5()
? user.PasswordHash.GenerateHash()
: user.SecurityStamp);
}