From cc18d9e6e03105b7c5f8db55f49599d734a76cde Mon Sep 17 00:00:00 2001
From: Warren <warren@momentry.ddns.net>
Date: Sat, 16 May 2026 23:25:36 +0800
Subject: [PATCH] fix: Use correct bcrypt hash for admin password
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Critical fix:
- Generated correct bcrypt hash using test framework
- Hash: $2b$12$w8Gp3zUJL2xycng58WViKeTH7zACnNBWURgZZwyyFJSkDr5l2/mpK (60 chars)
- Password: admin123
- Test verify result: true ✅

Database updates:
- PostgreSQL admins.password (60 chars)
- SQLite sftpgo_admins.password_hash (60 chars)

Test result:
✅ Admin login returns valid token
✅ Token expires in 24 hours

Problem solved:
- Previous hashes were incorrect
- bcrypt::verify() now returns true

Files:
- data/auth.sqlite
---
 data/auth.sqlite | Bin 73728 -> 73728 bytes
 1 file changed, 0 insertions(+), 0 deletions(-)

diff --git a/data/auth.sqlite b/data/auth.sqlite
index 856cb36588e644a6d1e0c8bba0e1143ad25dab17..d7efdeb9568914fea52b3840dde3e69e3ad5d493 100644
GIT binary patch
delta 263
zcmZoTz|wGlWr8$g@kAMC#^Q|$(`6ZLCjXG#z}gejs9-&Lt=v2iOT}t(fczq+o|w&F
z<X`iPT5&LoGNz>F=G$;FOEQ)x78RxDS#SQL|COKHiiMez(FR0d6YxL9&nPl^f4ni+
zsQCXt-sUg)LJcg+4E)NQ1r;RugB$%s_{AGpd3ia-8-p2GSy@>UQ*tx&RE&~T42@LE
zE!+!?t3thej4CRV^U_T%!oxDXQ$sw=s~ny4{G7r=gVLj-$}20~yn?e`icE8i^m7Zm
ZCzt)N0bBSVWa0KN{EYwkc|{nI007BhP<j9W

delta 263
zcmZoTz|wGlWr8%L$3z)tMvsjN(`6Y|CjXG#z}h{(Q9*g~TDf^3mWtBk0Qp5s-Sanp
zk$=rEs>H!8%9xUxo3FyfEXi1&SX7jnr@Z-#{#Sl(B^G8*Mimf&O~C&YKO@iN{qe?N
zqvHPqd7HoF3pKDLFz_dA7F3Yr4{r2h<QH#b<>loRZwzK&Wo2baOv%m6Q!z?XF*H&!
zN=wrVN%Boi4RuZnt*T0M_02ZU(hG3PPOeIF3N>jI<lz(NMb|sI?0*f|!v7!(w}0Vh
L{LjzJ!+-<;@O(`9