Encrypt / decrypt passwords with node.js

Question

Encrypt / decrypt passwords with node.js

I am working with bcrypt

nodejs module .

I am happy that it encrypts and compares passwords, but it cannot be decrypted.

I'm interested in:

How do you encrypt / decrypt passwords with nodejs (which module or method are you using)?
Is there a trick to decrypt passwords encoded with the module bcrypt

?

Thank!

+3

node.js bcrypt

Ludo Feb 14 At 9:51 am

source to share

2 answers

A much better way to do this is to use this node module https://github.com/davidwood/node-password-hash , which can encrypt your password, and also let you encrypt the encrypted version with the actual one.

+1

khurrum qureshi Feb 14 13 at 12:34

source to share

Roger lipscombe · Accepted Answer · 2013-02-14T09:54:50+0000

You don't decrypt passwords with bcrypt - it's a one-way algorithm. What you do is store a hash of the original (salt) password. Then you hash (salted) guesses. If the hashes match, then the assumption is correct.

For example, you can do this:

// "password"
var stored_hash = '$2a$10$vxliJ./aXotlnxS9HaJoXeeASt48.ddU7sHNOpXC/cLhgzJGdASCe'
bcrypt.compare(guess, stored_hash, function(err, res) {

});

~~Note that I did not do this with saline, so you will need to do this.~~ node-bcrypt

salt the default hash.

Encrypt / decrypt passwords with node.js

More articles: