Create a simple authentication system

an alternative to the hopelessly boring hello world examples for an introduction to git

Start creating a script called auth.py

run the script
the script asks for username and password
if the user is known and password is correct ➔ print "Successfully authenticated!"
if the user is known and password is wrong ➔ print "Wrong password!"
if the user is not known ➔ ask to add the user to the password database
if a user has been added ➔ store the updated database to disk

a function get_credentials that asks for username and password
a function authenticate that checks if user is in the password database and that the password is correct
a function add_user to add a new user with its password to the database
a function read_pwdb to read the password database from disk
a function write_pwdb to write the password database to disk

Suggestions:

we are leaking valid usernames ➔ return a generic error if username does not exist or password is wrong
password hashing ➔ do not store passwords in clear text (database could be stolen, admins are nosy). Solution: Do not store passwords at all but only their hashes (database could be stolen)
password salting ➔ different users with same passwords should not have same hash ⟶ cracking one does not crack all: mitigates dictionary attacks, see below

Addition to the basic API:

can you guess the hash collision risk for the proposed solution?
try first a brute force attack: is it feasible?
try a dictionary attack (you can use this list of probable passwords): is it feasible?
think about lookup tables and rainbow tables attacks
what are the trade-offs of the different attacks?

To make it for real:

insecure temporary file (symlink race attack) ⟶ tempfile and its context managers
better way of generating passwords or random tokens: the secrets module
cracking a password database is a form of art, see for example the John the Ripper password cracker, or Hashcat or Brutus

irebollo/2021-bordeaux-git