Fix #4641 -- Make usage of argon2id optional (#4643)

2026-05-03 14:54:04 +00:00 · 2024-11-26 17:31:27 +01:00
parent 391eda25da
commit 7dd455ce15
3 changed files with 19 additions and 2 deletions
--- a/doc/admin/config.rst
+++ b/doc/admin/config.rst
@@ -288,6 +288,7 @@ Example::
    [django]
    secret=j1kjps5a5&4ilpn912s7a1!e2h!duz^i3&idu@_907s$wrz@x-
    debug=off
+    passwords_argon2=on

 ``secret``
    The secret to be used by Django for signing and verification purposes. If this
@@ -303,6 +304,10 @@ Example::

    .. WARNING:: Never set this to ``True`` in production!

+``passwords_argon``
+    Use the ``argon2`` algorithm for password hashing. Disable on systems with a small number of CPU cores (currently
+    less than 8).
+
 ``profile``
    Enable code profiling for a random subset of requests. Disabled by default, see
    :ref:`perf-monitoring` for details.