9fd3fec149
Subsonic token auth (t=md5(password+salt)) needs a reversibly stored credential; bcrypt password_hash can't serve. NULL means the user has not opted in, forcing apiKey (OpenSubsonic) instead.
8 lines
438 B
SQL
8 lines
438 B
SQL
-- Subsonic's token auth (t = md5(password + salt)) requires the server to
|
|
-- compute md5 over the user's plaintext password. bcrypt (password_hash) is
|
|
-- not reversible, so we store a *separate*, opt-in, plaintext credential used
|
|
-- exclusively for the /rest/* legacy auth path. NULL means the user has not
|
|
-- opted into Subsonic t/s auth and must use apiKey (OpenSubsonic) instead.
|
|
|
|
ALTER TABLE users ADD COLUMN subsonic_password text;
|