Unable to log in with custom_password_hash

capndave · February 18, 2025, 10:06pm

We created a user in the Import/Export extension. When I try to log in with my username and password, I get a “verification failed for the provided custom_password_hash” error. Is there a limit on the number of rounds supported for the sha512 algorithm, similarly to what’s mentioned here? Anything else it could be?

Python used to generate the JSON:

password = "$6$rounds=656000$.F62OVVCvG7f/Q.n$GKZL5NnA5M0ZderSL8ZOl3eI9kkG/j7MRllpZEoSenC3P8W3qIL9j85oB.ophFW9QnPgtc8fYpuRymYukx2KH." # Original hash from passlib
split = password.split("$")
rounds = split[2].split("=")[1]

# Convert salt to base64 since I saw that in auth0 message boards
# I tried it without doing this and I wasn't able to import the record
salt = split[3]
salt_bytes = salt.encode("ascii")  # get the hash
salt_base64_bytes = base64.b64encode(salt_bytes)
salt_base64 = salt_base64_bytes.decode("ascii")

# Convert checksum to base64 since I saw that in auth0 message boards
# I tried it without doing this and I wasn't able to import the record
checksum = split[4]
password_bytes = checksum.encode("ascii")  # get the hash
password_base64_bytes = base64.b64encode(password_bytes)
password_base64 = password_base64_bytes.decode("ascii")

payload = {
    "email": user["email"],
    "name": user["fullName"],
    "blocked": bool(user["inactive"]),
    "email_verified": False,
    "app_metadata": {
        "user_type": user["userType"],
    },
    "custom_password_hash": {
        "algorithm": "sha512",
        "hash": {
            "value": password_base64,
            "encoding": "base64",
        },
        "salt": {"value": salt_base64, "encoding": "base64"},
    },
}

Resulting JSON:

[
  {
    "email": "my-email@my-email.com",
    "name": "My Name",
    "blocked": false,
    "email_verified": true,
    "app_metadata": { "user_type": "internal" },
    "custom_password_hash": {
      "algorithm": "sha512",
      "hash": {
        "value": "R0taTDVObkE1TTBaZGVyU0w4Wk9sM2VJOWtrRy9qY01SbGxwWkVvU2VuQzNQOFczcUlMOWo4NW9CLm9waEZXOVFuQmd0YzhmWXB1UnltWXVreDJLSC4=",
        "encoding": "base64"
      },
      "salt": { "value": "LkY2Mk9WVkN2RzdmL1Eubg==", "encoding": "base64" }
    }
  }
]

Results in Monitor tool in dashboard when I try to log in:

"details": {
      "error": {
        "message": "Password change required.",
        "reason": "Verification failed for the provided custom_password_hash: {'algorithm':'sha512','hash':{'value':'R0taTDVObkE1TTBaZGVyU0w4Wk9sM...','encoding':'base64'},'salt':{'value':'LkY2Mk...','encoding':'base64'}}"
      }
    },

rueben.tiow · February 19, 2025, 2:10am

Hi @capndave,

I understand that you have been encountering the " Verification failed for the provided custom_password_hash" error.

In these cases, I suggest referring to our Verification Failed for the Provided custom_password_hash knowledge solution for guidance.

Let me know if you have any follow-up questions.

Thanks,
Rueben

capndave · February 19, 2025, 2:11pm

@rueben.tiow Does the 10k rounds limit apply that’s mentioned in the link?

Topic		Replies	Views
Issue when importing user with custom hash password Help auth0 , import , user-import , password-hash , bulk-user-import	0	3373	May 12, 2021
Verification Failed for the Provided custom_password_hash Knowledge Articles	1	28	January 21, 2025
Import user with custom password hash Help user-management , user-import-export	3	1765	March 31, 2023
Import user with custom password hash using pbkdf2 algorithm Help user-management , user-import-export	2	1205	July 17, 2023
Error importing users with custom password hash Help import , user-import , password-hash , bulk-user-import	4	5315	June 11, 2020

Unable to log in with custom_password_hash

Related topics