golang-lib/web/auth/lib_password.go

package auth

import (
	"golang.org/x/crypto/bcrypt"
)

var PasswordHashCost = bcrypt.DefaultCost

// HashPassword  - create new hash of password
func HashPassword(password string) (string, error) {
	p, err := bcrypt.GenerateFromPassword([]byte(password), PasswordHashCost)
	if err != nil {
		return "", err
	}
	return string(p), nil
}

// ValidatePassword - check if given password is equal to saved hash
func ValidatePassword(hash, password string) bool {
	err := bcrypt.CompareHashAndPassword([]byte(hash), []byte(password))
	return err == nil
}
web/auth: split password function 2021-06-22 18:17:52 +02:00			`package auth`

			`import (`
			`"golang.org/x/crypto/bcrypt"`
			`)`

web/auth: make hash cost for password configurable - faster testing 2021-07-22 14:50:23 +02:00			`var PasswordHashCost = bcrypt.DefaultCost`

web/auth: split password function 2021-06-22 18:17:52 +02:00			`// HashPassword - create new hash of password`
			`func HashPassword(password string) (string, error) {`
web/auth: make hash cost for password configurable - faster testing 2021-07-22 14:50:23 +02:00			`p, err := bcrypt.GenerateFromPassword([]byte(password), PasswordHashCost)`
web/auth: split password function 2021-06-22 18:17:52 +02:00			`if err != nil {`
			`return "", err`
			`}`
			`return string(p), nil`
			`}`

			`// ValidatePassword - check if given password is equal to saved hash`
			`func ValidatePassword(hash, password string) bool {`
			`err := bcrypt.CompareHashAndPassword([]byte(hash), []byte(password))`
			`return err == nil`
			`}`