Hashing passwords with Bcrypt and node.js

Hashing passwords with Bcrypt and node.js

Posted 7 years ago By Ajay Gupta 90803
Share

In my last tutorial, I had explained how to register users and authenticate a user with their password without using any encryption layer but that was not good practice to store password in the table.

In this tutorial, I will tell you how to use basic encryption layer to store password using bcrypt module in Node.js

This is the proper way to save password in the database using bcrypt module.

There are 2 ways to hash the password - sync and async by using the bcrypt module.

Make sure you are using a stable version of node because the module does not support unstable versions.

To use the bcrypt module in Node.js, install it via NPM.

$ npm install bcrypt --save

Once you have installed the bcrypt module, include it in your node application.

// require the bcrypt module
var bcrypt = require('bcrypt');
Synchronous Usase

First generate the salt and then hash the password with the salt.

var salt = bcrypt.genSaltSync(10);
var hash = bcrypt.hashSync(req.body.password, salt);
-- OR --
var hash = bcrypt.hashSync(req.body.password, 10);

To authenticate the incoming password string with the hash stored in the database :

bcrypt.compareSync(req.body.password, hash);

If requested password match with the hash password then compareSync will return true.

Asynchronous Usase

You can go with Asynchronous method in following way :

bcrypt.hash(req.body.password, 10, function(err, hash) {
    // Store hash password in your Database.
});

To compare the requested password with database password, you can use following line of code :

bcrypt.compare(req.body.password, hash, function(err, res) {
    // res == true
});

A complete example to authenticate password from hash password :

  1. module.exports.authenticate=function(req,res){
  2.     var email=req.body.email;
  3.     var password=req.body.password;
  4.     connection.query('SELECT * FROM users WHERE email = ?',[email], function (error, results, fields) {
  5.       if (error) {
  6.           res.json({
  7.             status:false,
  8.             message:'there are some error with query'
  9.             })
  10.       }else{
  11.         if(results.length >0){
  12.             bcrypt.compare(password, results[0].password, function(err, ress) {
  13.                 if(!ress){
  14.                     res.json({
  15.                       status:false,                  
  16.                       message:"Email and password does not match"
  17.                     });
  18.                 }else{                    
  19.                     res.json({
  20.                         status:true,
  21.                         message:"Successfully Login"
  22.                     })
  23.                 }
  24.             });         
  25.         }
  26.         else{
  27.           res.json({
  28.               status:false,
  29.             message:"Email does not exits"
  30.           });
  31.         }
  32.       }
  33.     });
  34. }

Now you can use bcrypt module in Node.js to save hash password in the database.

Tags :

How To Web Development Node.js

Related Posts

Laravel 5 - confirmation box for delete a member f...
Laravel 5 - Multiple Images Uploading with drag an...
Laravel PHP Create Folder and Upload file to googl...
How to install Laravel 5.3
MySQLi Prepared Statements - Insert Value in datab...
laravel 5 TokenMismatchException in VerifyCsrfToke...
Working with jQuery DataTables server-side process...
Laravel Intervention Summernote Editor to get uplo...
New Features in Laravel 5.3
New features and changes in Laravel 5.4
Insert Data into MySQL Database
Laravel Eloquent where between two dates from Data...
How to disable created_at and updated_at timestamp...
What is $this Variable Vs self?
How to Use Multiple Database Connections in Larave...
Enable MySQL’s slow query log without a restart
Laravel 5 - Multiple Images Uploading with drag an...
How to get local time from UTC using Moment.JS wit...
Submit PHP Bootstrap Form without Page Refresh usi...
New features and changes in Laravel 5.4
Static Methods and Properties in PHP with Example
How to insert multiple records in table Laravel 5
Dynamic Treeview with jQuery & Laravel PHP Framewo...
Laravel 5.4 User Role and Permissions with Spatie...
Nodemon reload the server on code change automatic...
How to create a zip archive file for download in...
Laravel PHP - Cropping and uploading an image with...
Laravel custom middleware for 301 redirection to n...
Submit PHP Bootstrap Form without Page Refresh usi...
Auto Load More Data on Page Scroll with jQuery and...
Get enum options values in laravel eloquent
Laravel 5.3 - Customizing pagination templates wit...
PHP MySQLi prepared statement select multiple rows
How to create divided multi-scrolling pages using...
How to set and get config variable in Laravel 5
Laravel 5 get all records from table where two col...
Set up Paypal Payment Gateway Integration in Larav...
How to set global view variables using composer or...
Understanding AngularJS Controllers and scope inhe...
Laravel 8 - How to move file from one folder to an...
Laravel 5.5 Create Custom Middleware with an examp...
jQuery - disable context menu right click, cut, co...
Laravel 5 package for handling column sorting with...
Laravel 8 - How to copy file from one folder to an...
AngularJS Remove Hashtag From The Routing URL – $l...
Phone: (+91) 8800417876
Noida, 201301

© 2016 All Rights Reserved | Contact Us | Terms of use | Privacy Policy