uptime-kuma/server/password-hash.js

const passwordHashOld = require("password-hash");
const bcrypt = require("bcryptjs");
const saltRounds = 10;

/**
 * Hash a password
 * @param {string} password
 * @returns {string}
 */
exports.generate = function (password) {
    return bcrypt.hashSync(password, saltRounds);
};

/**
 * Verify a password against a hash
 * @param {string} password
 * @param {string} hash
 * @returns {boolean} Does the password match the hash?
 */
exports.verify = function (password, hash) {
    if (isSHA1(hash)) {
        return passwordHashOld.verify(password, hash);
    }

    return bcrypt.compareSync(password, hash);
};

/**
 * Is the hash a SHA1 hash
 * @param {string} hash
 * @returns {boolean}
 */
function isSHA1(hash) {
    return (typeof hash === "string" && hash.startsWith("sha1"));
}

/**
 * Does the hash need to be rehashed?
 * @returns {boolean}
 */
exports.needRehash = function (hash) {
    return isSHA1(hash);
};
Autofix on save 3 years ago			`const passwordHashOld = require("password-hash");`
change bcrypt to bcryptjs, use my own prebuilt better-sqlite3, supports more prebuilt 3 years ago			`const bcrypt = require("bcryptjs");`
use bcrypt for password hash 3 years ago			`const saltRounds = 10;`

Add JSDoc to server/* Signed-off-by: Matthew Nickson <mnickson@sidingsmedia.com> 3 years ago			`/**`
			`* Hash a password`
			`* @param {string} password`
			`* @returns {string}`
			`*/`
use bcrypt for password hash 3 years ago			`exports.generate = function (password) {`
			`return bcrypt.hashSync(password, saltRounds);`
Add JSDoc to server/* Signed-off-by: Matthew Nickson <mnickson@sidingsmedia.com> 3 years ago			`};`
use bcrypt for password hash 3 years ago
Add JSDoc to server/* Signed-off-by: Matthew Nickson <mnickson@sidingsmedia.com> 3 years ago			`/**`
			`* Verify a password against a hash`
			`* @param {string} password`
			`* @param {string} hash`
			`* @returns {boolean} Does the password match the hash?`
			`*/`
use bcrypt for password hash 3 years ago			`exports.verify = function (password, hash) {`
			`if (isSHA1(hash)) {`
Add JSDoc to server/* Signed-off-by: Matthew Nickson <mnickson@sidingsmedia.com> 3 years ago			`return passwordHashOld.verify(password, hash);`
use bcrypt for password hash 3 years ago			`}`
Autofix on save 3 years ago
			`return bcrypt.compareSync(password, hash);`
Add JSDoc to server/* Signed-off-by: Matthew Nickson <mnickson@sidingsmedia.com> 3 years ago			`};`
use bcrypt for password hash 3 years ago
Add JSDoc to server/* Signed-off-by: Matthew Nickson <mnickson@sidingsmedia.com> 3 years ago			`/**`
			`* Is the hash a SHA1 hash`
			`* @param {string} hash`
			`* @returns {boolean}`
			`*/`
use bcrypt for password hash 3 years ago			`function isSHA1(hash) {`
Enforce semicolon, fix format globally 3 years ago			`return (typeof hash === "string" && hash.startsWith("sha1"));`
use bcrypt for password hash 3 years ago			`}`

Add JSDoc to server/* Signed-off-by: Matthew Nickson <mnickson@sidingsmedia.com> 3 years ago			`/**`
			`* Does the hash need to be rehashed?`
			`* @returns {boolean}`
			`*/`
use bcrypt for password hash 3 years ago			`exports.needRehash = function (hash) {`
			`return isSHA1(hash);`
Add JSDoc to server/* Signed-off-by: Matthew Nickson <mnickson@sidingsmedia.com> 3 years ago			`};`