node.js - Cannot verify Hashed password in Express using Node js -

-

this how hash , store password in database.

newuser function

 var salt = bcrypt.gensaltsync(10); var hash = bcrypt.hashsync(password, salt); var query="insert user(email,firstname,lastname,logintime,gender,password) values('"+email+"','"+firstname+"','"+lastname+"','"+logintime+"','"+gender+"','"+hash+"')";

this how retrieve , check authenticate

validate function

var query = "select password user email='" + email +  "'"; connection.query(query,function(err,result){     if(err)         {         console.log("error:"+err.message);         }     else         {         if(result.length!==0)          {  var hash=json.stringify(result[0].password); console.log(hash);     console.log(bcrypt.comparesync(password,hash ));   if(bcrypt.comparesync(password, hash)) { callback(err, result); }

this shows false if way shows expected result

var hash = bcrypt.hashsync("sacjap", 8);             //var hash=json.stringify(result[0].password);             console.log(hash);             console.log(bcrypt.comparesync(password,hash ));             if(bcrypt.comparesync(password, hash))                 {             callback(err, result);                 }

so problem whenever password database not working. plz

first of all, answer based on documentation found here: https://github.com/davidwood/node-password-hash

it seems password-hash module tries call 'split' function on second argument provided 'verify' function, assuming string (javascript string split function on mdn). think should check type of 'result' variable, looks me more complex query result object returned database. provided code doesn't give me more information type of connection using here, can't give more specific answer. approach find out how plain string 'result' variable, represent hashed password can hand on 'verify'. wild guess, hope little hint helps solve problem.

side note: module using password hashing appears deprecated, maybe should out alternative.


Comments

Post a Comment

Popular posts from this blog

javascript - Chart.js (Radar Chart) different scaleLineColor for each scaleLine -

-
Image
i try , create radar chart using chart.js has various colours each scaleline, or coloured between scalelines. wondering if possible? from: to: i have working graph, though there doesn't seem method change individual scale lines. kind regards leigh you can extend radar chart type this, so chart.types.radar.extend({ name: "radaralt", initialize: function (data) { chart.types.radar.prototype.initialize.apply(this, arguments); var originalscaledraw = this.scale.draw; var ctx = this.chart.ctx; this.scale.draw = function () { var linewidth = this.linewidth; // bypasses line drawing in originalscaledraw this.linewidth = linewidth; originalscaledraw.apply(this, arguments); ctx.linewidth = this.linewidth; var scale = this; // draw chart.helpers.each(scale.ylabels, function (label, index) { // color of ...
Read more

apache - Error with PHP mail(): Multiple or malformed newlines found in additional_header -

-
suddenly have started receiving above error without changes having been made script. host 1and1 (i know...) the script still works fine on different server, , suspicion there must have been server config change has lead this, although hosts plead ignorance. there's no information on above error @ in google can find - have ideas? server running apache if helps. had similar problem. came out of blue. no php code changed. what changed: php upgraded 5.5.25-1 5.5.26. a security risk in php mail() function has been fixed , newlines in additional_headers allowed no more. because newlines mean: starts email message (and surely don't want inject newlines through headers followed evil message). what have worked fine, e.g. having newlines after headers or passing whole message additional_headers , function no more. solution : sanitize headers. no multiple newlines in additional_headers argument. these count "multiple or malformed newlines":...
Read more

java - Android – MapFragment overlay button shadow, just like MyLocation button -

-
Image
i'm struggling add shadow custom overlay button on google map. goal make custom button google's mylocation button. here's how app looks now: layout.xml <relativelayout xmlns:android="http://schemas.android.com/apk/res/android" xmlns:tools="http://schemas.android.com/tools" xmlns:map="http://schemas.android.com/apk/res-auto" android:layout_height="match_parent" android:layout_width="match_parent" style="@style/apptheme"> <fragment android:layout_width="match_parent" android:layout_height="match_parent" android:id="@+id/map" tools:context=".mapsactivity" android:name="com.google.android.gms.maps.supportmapfragment" android:layout_alignparentend="true" android:layout_alignparentstart="true" android:layout_alignparentbottom="true" ...
Read more