mirror of
https://github.com/Cockatrice/Cockatrice.git
synced 2026-04-27 07:48:01 -07:00
992e28797f
* support hashed passwords in register and resetPassword * lint * support hashedPasswords for accountActivation * use salt in post-register login step Co-authored-by: Jeremy Letto <jeremy.letto@datasite.com>
31 lines
990 B
TypeScript
31 lines
990 B
TypeScript
import sha512 from 'crypto-js/sha512';
|
|
import Base64 from 'crypto-js/enc-base64';
|
|
|
|
const HASH_ROUNDS = 1_000;
|
|
const SALT_LENGTH = 16;
|
|
|
|
export const hashPassword = (salt: string, password: string): string => {
|
|
let hashedPassword = salt + password;
|
|
for (let i = 0; i < HASH_ROUNDS; i++) {
|
|
// WHY DO WE DO IT THIS WAY?
|
|
hashedPassword = sha512(hashedPassword);
|
|
}
|
|
|
|
return salt + Base64.stringify(hashedPassword);
|
|
};
|
|
|
|
export const generateSalt = (): string => {
|
|
const characters = '0123456789ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz'
|
|
|
|
let salt = '';
|
|
for (let i = 0; i < SALT_LENGTH; i++) {
|
|
salt += characters.charAt(Math.floor(Math.random() * characters.length));
|
|
}
|
|
|
|
return salt;
|
|
}
|
|
|
|
export const passwordSaltSupported = (serverOptions, webClient): number => {
|
|
// Intentional use of Bitwise operator b/c of how Servatrice Enums work
|
|
return serverOptions & webClient.protobuf.controller.Event_ServerIdentification.ServerOptions.SupportsPasswordHash;
|
|
}
|