javier/Stirling-PDF
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

password hashing

Browse Source
This commit is contained in:
Felix Kaspar
2024-05-30 02:08:21 +02:00
parent fc3e2adc82
commit 187b7b3e78
6 changed files with 60 additions and 36 deletions
Download Patch File Download Diff File Expand all files Collapse all files

58
server-node/src/auth/user/user-controller.ts
View File

@@ -1,5 +1,6 @@
import { Error as SequelizeError, Op } from "sequelize";
import { Password, User } from "./user-model";
import { APIKey, Password, User } from "./user-model";
import crypto from "crypto";
type PickOne<T, F extends keyof T> = Pick<T, F> & { [K in keyof Omit<T, F>]?: never };
@@ -28,28 +29,49 @@ export function findOne(params: {id?: number, username?: string, apikey?: string
);
}
export async function verifyPassword(user: User, password: string): Promise<boolean> {
const passwordRecord = await user.getPassword();
if(!passwordRecord) {
throw new Error("This user does not have a password set!");
}
return passwordRecord.password == password; // TODO: Replace with web-crypto
}
// TODO: Allow other authentication methods
export function createUser(params: { username: string, password: string }, cb: (err: SequelizeError | null, user: User | null) => void ) {
User.create({ username: params.username, authenticationMethod: "password" }).then(async user => {
user.setPassword(await Password.create({
password: params.password, // TODO: Replace with web-crypto
})).then(password => {
cb(null, user as any as User)
}).catch(e =>
cb(e, null)
);
User.create({ username: params.username }).then(async (user) => {
const salt = crypto.randomBytes(16).toString('hex');
hashPassword(params.password, salt, async (err, derivedKey) => {
if(err || !derivedKey) {
return cb(err, null);
}
user.setPassword(await Password.create({
password: derivedKey,
salt: salt
})).then(password => {
cb(null, user as any as User);
}).catch(e => {
cb(e, null);
});
})
}).catch(e =>
cb(e, null)
);
}
export function createAPIKey(user: User, apikey?: string) {
export async function verifyPassword(user: User, password: string, cb: (error: Error | null, success: boolean | null) => void) {
const passwordRecord = await user.getPassword();
if(!passwordRecord) {
return cb(new Error("This user does not have a password set!"), null);
}
hashPassword(password, passwordRecord.salt, (err, derivedKey) => {
if(err) return cb(err, null);
return cb(null, passwordRecord.password == derivedKey);
});
}
function hashPassword(password: string, salt: string, cb: (err: Error | null, derivedKey: string | null) => void) {
crypto.pbkdf2(password, salt, 100000, 64, 'sha512', (err, derivedKey) => {
if (err) return cb(err, null);
cb(null, derivedKey.toString('hex'));
});
}
export function createAPIKey(user: User, cb: (err: SequelizeError | null, apikey: APIKey | null) => void ) {
user.addAPIKey()
}