3pp-mirror/pushbits
1
0
Fork 0
mirror of https://github.com/pushbits/server.git synced 2025-07-21 18:37:47 +02:00
Code Issues Projects Releases Packages Wiki Activity

Replace bcrypt with Argon2

Browse source
This commit is contained in:
eikendev 2020-07-27 21:48:41 +02:00
parent 0b871b2136
commit d8b62f1b80
No known key found for this signature in database
GPG key ID: A1BDB1B28C8EF694
5 changed files with 25 additions and 11 deletions
Download patch file Download diff file Expand all files Collapse all files

26
authentication/credentials/credentials.go
View file

@ -1,20 +1,30 @@
package credentials
import "golang.org/x/crypto/bcrypt"
import (
"log"
// CreatePassword returns a hashed version of the given password.
func CreatePassword(pw string) []byte {
strength := 12
hashedPassword, err := bcrypt.GenerateFromPassword([]byte(pw), strength)
"github.com/alexedwards/argon2id"
)
// CreatePasswordHash returns a hashed version of the given password.
func CreatePasswordHash(password string) []byte {
hash, err := argon2id.CreateHash(password, argon2id.DefaultParams)
if err != nil {
panic(err)
}
return hashedPassword
return []byte(hash)
}
// ComparePassword compares a hashed password with its possible plaintext equivalent.
func ComparePassword(hashedPassword, password []byte) bool {
return bcrypt.CompareHashAndPassword(hashedPassword, password) == nil
func ComparePassword(hash, password []byte) bool {
match, err := argon2id.ComparePasswordAndHash(string(password), string(hash))
if err != nil {
log.Fatal(err)
return false
}
return match
}