Unable to sign-in

OpenSpecimen uses bcrypt to hash the user passwords before storing them in database. Bcrypt is a one-way hash function based on Blowfish cipher and resistant to brute-force attacks. This hashing mechanism is different from rudimentary mechanisms used in caTissue / OS v1.1. Therefore the old user account passwords won't work. Forgot password function doesn't work unless the email settings are done properly. In lieu of both options, the only option to sign-in to an upgraded instance of OpenSpecimen is to set the admin user account password to hash of a known password as illustrated in below steps:

1. Set the admin user account password to bcrypt hash of "Login0840" (without quotes)

   update catissue_user set password = '$2a$10$b/PrmHpeqglSGSatAocJ3eAjKl6MuuiS8OdxbuFHvK6w9WaILxZ.a' where login_name = 'admin@admin.com'; commit;

   You can replace admin@admin.com with any user login that you want to use for sign-in.

2. Set the admin user account type

   update catissue_user set type = 'SUPER' where login_name = 'admin@admin.com'; commit;

3. Cleanup admin user account roles

   delete from rbac_subject_roles where subject_id = ( select identifier from catissue_user where login_name = 'admin@admin.com' ); commit;

4. Sign-in using username = admin@admin.com and password = Login0840.