pass-hasher
Advanced tools
Readme
pass-hasher installation is possible from npm
npm install pass-hasher --save --save-exat
The pass-hasher is a little and simple package which used the bcrypt package for create salt and hashing the password. The pass-hasher in another side add the random generated pepper on user password for to be more secured.
pass-hasher is have three simple methods.
const passHasher = require('pass-hasher')
// for beggining is possible to set how many salt rounds to have (by default = 14)
let securityStuff = passHasher.generateKeys('username', 'password')
// passHasher.generateKeys is return the object with hash and salt parameters
// {
// salt: '$2a$14$YW9hTocIftJFw.P1Bshlee',
// hash: '$2a$14$YW9hTocIftJFw.P1BshleeVDS8Rzjk6fGXMSOFXIyUKknIt/y0DyO'
// }
let salt = 'some salt from password db' // get salt from password db
// return hashing string for current password
let hash = passHasher.checkPassword('username', 'password', salt)
let hash = 'some hash from password db' // get hash from password db
// return boolean variable do can user authenticate with that password and username
let isAuthenticated = passHasher.checkPassword('username', 'password', salt, hash)
FAQs
Generate hashing string and salt and pepper for your user username and password
The npm package pass-hasher receives a total of 2 weekly downloads. As such, pass-hasher popularity was classified as not popular.
We found that pass-hasher demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
A new report explores how advancements in LLMs are enhancing cyber threats, including polymorphic malware, personalized spearphishing, and the risk of hijacking customer service bots.
Security News
ESLint has approved an RFC that adds support for TypeScript configuration files, which is aimed at improving the developer experience and recognizing changes in the evolving JavaScript ecosystem.
Security News
The NVD is facing a significant backlog with over 12,500 CVEs awaiting analysis, and more than 50% of known exploited vulnerabilities (KEVs) left unenriched since mid-February.