Refs #27468 -- Changed default Signer algorithm to SHA-256.

2025-10-31 09:41:08 +00:00 · 2020-02-13 20:55:48 +01:00
parent 4bb33bb074
commit 71c4fb7beb
5 changed files with 86 additions and 14 deletions
--- a/docs/releases/3.1.txt
+++ b/docs/releases/3.1.txt
@@ -404,6 +404,14 @@ Security
  origins. If you need the previous behavior, explicitly set
  :setting:`SECURE_REFERRER_POLICY` to ``None``.

+* The default :class:`django.core.signing.Signer` algorithm is changed to the
+  SHA-256. Support for signatures made with the old SHA-1 algorithm remains
+  until Django 4.0.
+
+  Also, the new ``algorithm`` parameter of the
+  :class:`~django.core.signing.Signer` allows customizing the hashing
+  algorithm.
+
 Serialization
 ~~~~~~~~~~~~~