feat: nový argon2, vracení result

2026-06-19 14:31:05 +00:00 · 2022-10-24 19:54:36 +02:00 · 2022-10-24 19:54:36 +02:00 · 50abef29e3
commit 50abef29e3
parent b7da8d579c
3 changed files with 26 additions and 14 deletions
--- a/core/Cargo.toml
+++ b/core/Cargo.toml
@ -6,7 +6,7 @@ edition = "2021"
 [dependencies]
 portfolio-entity = { path = "../entity" }
 rand = "0.8.5"
-rust-argon2 = "1.0.0"
+argon2 = "0.4.1"
 chrono = "0.4.22"

 [dependencies.sea-orm]
--- a/core/src/crypto.rs
+++ b/core/src/crypto.rs
@ -1,4 +1,6 @@
-use argon2::{self, Config};
+use argon2::{
+    Argon2, PasswordHasher as ArgonPasswordHasher, PasswordVerifier as ArgonPasswordVerifier,
+};
 use rand::Rng;

 pub fn random_8_char_string() -> String {
@ -9,17 +11,26 @@ pub fn random_8_char_string() -> String {
        .collect::<String>()
 }

-pub fn hash_password(password_plaint_text: &str) -> String {
-    let hash = argon2::hash_encoded(
-        password_plaint_text.as_bytes(), 
-        b"secretlytestingeverything",
-        &Config::default()
-    )
-        .unwrap();
+pub fn hash_password(password_plaint_text: &str) -> Result<String, argon2::password_hash::Error> {
+    let password = password_plaint_text.as_bytes();
+    let salt = "c2VjcmV0bHl0ZXN0aW5nZXZlcnl0aGluZw";

-    hash
+    let argon_config = Argon2::default();
+
+    let hash = argon_config.hash_password(password, salt)?;
+
+    return Ok(hash.to_string());
 }

-pub fn verify_password(password_plaint_text: &str, hash: &str) -> bool {
-    argon2::verify_encoded(hash, password_plaint_text.as_bytes()).unwrap()
-}
+pub fn verify_password(
+    password_plaint_text: &str,
+    hash: &str,
+) -> Result<bool, argon2::password_hash::Error> {
+    let argon_config = Argon2::default();
+
+    let parsed_hash = argon2::PasswordHash::new(&hash)?;
+
+    return Ok(argon_config
+        .verify_password(password_plaint_text.as_bytes(), &parsed_hash)
+        .is_ok());
+}
--- a/core/src/mutation.rs
+++ b/core/src/mutation.rs
@ -10,7 +10,8 @@ impl Mutation {
        form_data: candidate::Model,
        plain_text_password: &String,
    ) -> Result<candidate::Model, DbErr> {
-        let hashed_password = hash_password(plain_text_password);
+        // TODO: unwrap pro testing..
+        let hashed_password = hash_password(plain_text_password).unwrap();
        candidate::ActiveModel {
            application: Set(form_data.application), // TODO NEFUNGUJE
            code: Set(hashed_password),