UNPKG

@sl-nx/couch-pwd

Version:

CouchDB salt and password generation with PBKDF2

github.com/sl-nx/couch-pwd

sl-nx/couch-pwd

58 lines (41 loc) 1.16 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
# @sl-nx/couch-pwd ## An up-to-date version of couch-pwd that is actually published. Hash and compare passwords with the crypto's pbkdf2. Heavily inspired by [node-pwd](https://github.com/visionmedia/node-pwd). Uses the following values as defaults: - iterations = 10 - keylen = 20 - size = 16 - encoding = 'hex' - digest = 'SHA1' The resulting salt and password Strings are the same you'd get when you save a user to CouchDB and let CouchDB do all the hashing for you. Module has two goals - verify user passwords without making requests to `/_session` API - use the same hashing algorithm for other databases ## Installation ```bash npm install couch-pwd ``` ## Example On signup generate a salt / password hash, and save it somewhere: ```js var pwdModule = require('couch-pwd'); var pwd = new pwdModule(); pwd.hash('my password', function (err, salt, hash) { user.salt = salt; user.hash = hash; }); ``` To authenticate load and compare: ```js var pwdModule = require('couch-pwd'); var pwd = new pwdModule(); pwd.hash('submitted password', user.salt, function (err, hash) { if (user.hash == hash) { // yay } }); ``` ## License MIT