From 0c750027e913a773a98220c691f01b2391cdae69 Mon Sep 17 00:00:00 2001 From: Sam Anthony Date: Thu, 12 Mar 2026 16:17:19 -0400 Subject: doc: remove authfs passwdhash file --- doc/auth.md | 2 +- doc/authfs.md | 7 +------ 2 files changed, 2 insertions(+), 7 deletions(-) (limited to 'doc') diff --git a/doc/auth.md b/doc/auth.md index e509e44..d3a2924 100644 --- a/doc/auth.md +++ b/doc/auth.md @@ -8,7 +8,7 @@ This is how a new user registers himself in `authfs`, after which he can open se - Creates `/users//` - If it already exists, the username is taken; return error to client - Writes password to `/users//passwd` -- `authfs` ingests and hashes the password. Subsequent reads of `/users//passwdhash` will return the hash (`authfs` discards the cleartext password after it is hashed). +- `authfs` ingests and hashes the password. - If successful, client can now login to obtain a session ## Login diff --git a/doc/authfs.md b/doc/authfs.md index c3d0488..77545e2 100644 --- a/doc/authfs.md +++ b/doc/authfs.md @@ -3,7 +3,6 @@ `users/` `/` `passwd` - `passwdhash` `login` `sessions/` `/` @@ -11,16 +10,12 @@ `/users//` (d) To add a user, create the `/` subdirectory. Authfs -automatically creates the `passwd`, `passwd`, and `login` files +automatically creates the `passwd`, and `login` files inside. Initially the password is nil and login is disabled. `/users//passwd` (w) Writing a (cleartext) password changes the user's password. -`/users//passwdhash` (r) -Read returns an Argon2id hash of the user's password (see -github.com/alexedwards/argon2id). - `/users//login` (rw) To log in and obtain a session, write the user's password to `login` (in cleartext). Then read from `login`. If the password was correct, -- cgit v1.2.3