python - werkzeug.security.check_password_hash takes too long -


check_password_hash taking longer expected. tested werkzeug 0.12 , 0.9. test below shows checking password taking 2 seconds. why take long?

the project uses gae -google app engine. , deployed on gae. not sure if gae has werkzeug libraries overwrite 1 have installed. use gae sdk version 1.9.50

def verify_password(self, password):     logging.info(self.password_hash)     logging.info(str(datetime.now()))     result = check_password_hash(self.password_hash, password)     logging.info(str(datetime.now()))     return result 
hash:pbkdf2:sha256:...................................... 2017-07-28 13:52:14.904270 2017-07-28 13:52:17.041060

================= edit 1 ============ ok, seems haven't cleared libraries folder completely. have tried multiple times , upgrading werkzeug==0.9.6 werkzeug==0.12 solves problem. downgrading 0.9.6 returns problem back.

that fixed problem on machine. on gae server delay still there. ================= edit 2 ============ after creating minimalistic project, tested again , on gae behavior same. saw in database there 2 types of passwords: 1 sha1 , other sha256. sha1 working fast on gae well.

at beginning thought problem because of difference between sha1 , sha256. real problem comes number of iterations used when password created. http://werkzeug.pocoo.org/docs/0.12/utils/#werkzeug.security.generate_password_hash

using makes password decoding fast again.

generate_password_hash(password, method='pbkdf2:sha256:200')

in database had passwords both types because have upgraded library run time. 

pbkdf2:sha1:1000$....... pbkdf2:sha256:50000$......

so difference between first , second 1 huge because of 1000 vs 50000 iterations.


Comments

Post a Comment

Popular posts from this blog

javascript - Create a stacked percentage column -

i have collection of data : var data = [ {"p301a":"10","p301b":"7","p301c":"7","p301d":"3","p301e":"8","p301f":"8","p301g":"8","p301h":"8","p301i":"8","p301j":"8","p301k":"8","p301l":"8","p301m":"8","p301n":"8","p301o":"8","age":"31-40 years","profesion":"2","position":"2"}, {"p301a":"5","p301b":"4","p301c":"4","p301d":"4","p301e":"4","p301f":"4","p301g":"4","p301h":"4","p301i":"4","p301j":"4","p301k":"4...
Read more

Optimising Firebase database by automatically overwriting data -

in firebase app have following structure: posts latest all users can write posts > latest . want limit entries 20 posts save space in database. , posts beyond 20 unnecessary never shown on homepage. how can limit posts 20, when user writes posts > latest posts @ end drop off (be deleted) automatically? this sample should you. you need : const max_log_count = 20; exports.removeold = functions.database.ref('/posts/latest/{postid}').oncreate(event => { const parentref = event.data.ref.parent; return parentref.once('value').then(snapshot => { if (snapshot.numchildren() >= max_log_count) { let childcount = 0; const updates = {}; snapshot.foreach(function(child) { if (++childcount <= snapshot.numchildren() - max_log_count) { updates[child.key] = null; } }); // update parent. removes children. ...
Read more

javascript - Angular UI-Grid customTemplate directive causing rows to load slowly/? -

Image
each grid cell can have more 1 customtemplate loaded. have directive holds watcher on model_col_field listen cell updates on scroll when dom rows updated , recompile celltemplate . without watcher , $compile rows repeat on scroll, showing same set of rows. is there more angular way of approaching or way improve performance? relevant controller code: create gridoptions.data & gridoptions.columndefs : var customtemp = '<div ng-repeat="opt in grid.appscope.colvalueoptionsmodel" ng-init="tempstring=model_col_field.clazz+opt.key;"><comparison-directive dbo="model_col_field" attobj="opt" fff="grid.appscope.getattributetemplate(tempstring)" /></div>'; $scope.gridoptions.columndefs = [ { name:'yindex',pinnedleft:true,celltemplate: customtemp, displayname:'index'}, { name:'col1',celltemplate: customtemp}, { name:'col2',celltemplate: c...
Read more