This repository has been archived on 2023-09-20. You can view files and clone it, but cannot push or open issues or pull requests.
py-libreauth/README.rst

44 lines
1.6 KiB
ReStructuredText
Raw Normal View History

2017-12-16 19:21:18 +01:00
Python LibreAuth
================
Python bindings to the LibreAuth library.
LibreAuth is a collection of tools for user authentication written in Rust.
Features
--------
This is a work in progress. Some features may not be available.
* Password / passphrase authentication
2017-12-16 19:27:03 +01:00
2017-12-16 19:21:18 +01:00
- ✓ no character-set limitation
- ✓ reasonable lenth limit ([security vs. DOS](http://arstechnica.com/security/2013/09/long-passwords-are-good-but-too-much-length-can-be-bad-for-security/))
- ✓ strong, evolutive and retro-compatible password hashing functions
- ✓ optional NIST Special Publication 800-63B compatibility
2017-12-16 19:27:03 +01:00
2017-12-16 19:21:18 +01:00
* HOTP - HMAC-based One-time Password Algorithm ([OATH](http://www.openauthentication.org/) - [RFC 4226](https://tools.ietf.org/html/rfc4226))
2017-12-16 19:27:03 +01:00
2017-12-16 19:21:18 +01:00
- ✗ the key can be passed as bytes, an ASCII string, an hexadicimal string or a base32 string
- ✗ customizable counter
- ✗ customizable hash function (sha1, sha256, sha512)
- ✗ customizable output length
- ✗ customizable output alphabet
2017-12-16 19:27:03 +01:00
2017-12-16 19:21:18 +01:00
* TOTP - Time-based One-time Password Algorithm ([OATH](http://www.openauthentication.org/) - [RFC 6238](https://tools.ietf.org/html/rfc6238))
2017-12-16 19:27:03 +01:00
2017-12-16 19:21:18 +01:00
- ✗ the key can be passed as bytes, an ASCII string, an hexadicimal string or a base32 string
- ✗ customizable timestamp
- ✗ customizable period
- ✗ customizable initial time (T0)
- ✗ customizable hash function (sha1, sha256, sha512)
- ✗ customizable output length
- ✗ customizable output alphabet
- ✗ customizable positive and negative period tolerance
Requirements
------------
LibreAuth 0.6 or higher.