@inspire-platform/sails-hook-auth/config/auth.js

Passport-based User Authentication system for sails.js applications.

module.exports.auth = {
  bcrypt: {
    rounds: 8
  },

  /**
   * Password options
   */
  password: {

    /**
     * OWASP password strength config.
     *
     * @external https://www.npmjs.com/package/owasp-password-strength-test#configuring
     */
    owasp: {
      allowPassphrases: true,
      maxLength: 128,
      minLength: 10,
      minPhraseLength: 20,
      minOptionalTestsToPass: 3,
    },

    /**
     * Password cannot contain any of these user attribute values.
     */
    userAttributeScan: [
      {attribute: 'username', description: 'Username'},
      {attribute: 'firstName', description: 'First Name'},
      {attribute: 'lastName', description: 'Last Name'},
    ],

    /**
     * Failed login attempts lockout configuration
     */
    lockout: {
      // toggle
      enable: false,
      // number of failed attempts that results in lockout
      attempts: 3,
      // lockout duration in whole seconds
      wait: 300
    },

    /**
     * Two factor authentication configuration
     */
    twoFactor: {
      protocols: ['totp'],
      revokeOnLogout: false,
      verify: (user, token, next) => {
        return next(new Error(`Two factor verify callback must be implemented`));
      }
    }

  },

};