Nathaniel Bailey

The passwords were migrated into the database correctly. Login fails due to verification of the password on login does not work: **Current Password Manager** - PHP - php8.3-fpm - Hashing...

@muhlemmer -- Here you are, password & associated hash stored in our DB. -- Only the first password here was specifically attempted to migrate, the other 4 are from random...

@muhlemmer -- Any update on this? I'm running zitadel v4.2.2 -- We have our project release date and if we can get our password imports working so users don't have...

@muhlemmer Thanks for double checking. I'm not a frontend guy, so I just know where the passwords are stored in the DB and that is does update when I change...

@muhlemmer @veryCrunchy I can confirm the passwords are being peppered before encryption so we will not be able to migrate them: https://github.com/redaxo/redaxo/blob/7bc8552a43850597d268eb128732e18aaa949c03/redaxo/src/core/lib/login/login.php#L611 This ticket can be closed as resolved.

> Perhaps you can patch the application to use pre-hash for verification of current passwords and then rehash with vanilla bcrypt. After all the users are rotated you can import...