Here’s crypteduser – a simple python / flask HTTP authentication server that uses pbkdf2 to store hashed passwords.

This allows you to store your user authentication on a server (perhaps a VM) outside your main DB server(s) that can be hardened & restricted. Note that this code is just a proof of concept!