✨ Increase strenght of password hashing algorithm

And enable password update mechanism on login
2025-06-11 20:41:39 +02:00 · 2023-03-09 17:36:17 +01:00 · 2023-03-09 17:36:17 +01:00 · 76b931108e
commit 76b931108e
parent 84dc3c8fd9
2 changed files with 21 additions and 12 deletions
--- a/backend/src/app/auth.clj
+++ b/backend/src/app/auth.clj
@ -6,15 +6,18 @@

 (ns app.auth
  (:require
-   [buddy.hashers :as hashers]))
+   [buddy.hashers :as hashers]
+   [promesa.exec :as px]))
+
+(def default-params
+  {:alg :argon2id
+   :memory (* 32768 2)
+   :iterations 5
+   :parallelism (px/get-available-processors)})

 (defn derive-password
  [password]
-  (hashers/derive password
-                  {:alg :argon2id
-                   :memory 16384
-                   :iterations 20
-                   :parallelism 2}))
+  (hashers/derive password default-params))

 (defn verify-password
  [attempt password]