堆栈内存溢出
  简体   繁体   English

Node.js bcrypt比较函数始终返回false

[英]Node.js bcrypt compare function always returns false

 原文  2016-10-05 13:52:48       javascript/ node.js/ mongodb/ https/ bcrypt

问题描述

I need a way to compare two hashed passwords before performing a post request in node js. 我需要一种在节点js中执行发布请求之前比较两个哈希密码的方法。 The hashed password is stored in a mongoDB database. 哈希密码存储在mongoDB数据库中。 I've narrowed my mistake down to these possible areas. 我已将错误缩小到这些可能的范围。 

//Part 1
router.post('/signIn', function (req, res) {

if(errors){
    console.log(errors);
    res.render('signIn', {
        errors: errors
    });

}else {
    module.exports = function (passport) {
        passport.authenticate('local',{successRedirect: '/dashboard', failureRedirect: '/', failureFlash: true})
    },
        module.exports = function (passport) {
            passport.use(new LocalStrategy(
                function (username, password, done) {
                    User.getUserByUsername(inputUser, function (err, user) {
                        if (err) throw err;
                        if (!user) {
                            req.flash('error_msg','Unknown Username');
                            return done(null, false);
                        }
                        User.comparePassword(inputPwd, user, hash, function (err, isMatch) {
                            if (err) throw err;
                            if (isMatch) {
                                req.flash('error_msg','Unknown Password');
                                return done(null, user);
                            } else {
                                return done(null, false);
                            }
                        })
                    })
                }))
    },
        module.exports = function (passport) {
            passport.serializeUser( function (user, done) {
                done(null, user.id());
            });
    },
        module.exports = function (passport) {
            passport.deserializeUser( function (id, done) {
                User.getUserById(id, function (err, user) {
                    done(err, user);
                });
            });
    };
    res.redirect('/users/dashboard');
}

});

These parts are from different files. 这些部分来自不同的文件。 

//Part 2:
module.exports.createUser = function (newUser, callback) {
    bcrypt.hash(newUser.password, 10, function(err, hash) {
        newUser.password = hash;
        newUser.save(callback);
    });
}


module.exports.getUserByUsername = function (username, callback) {
var query = {username: username};
User.findOne(query, callback);
}


module.exports.comparePassword = function (password, hash, callback ) {
bcrypt.compare(password, hash, function(err, isMatch) {
    if (err) throw err;
    callback(null, isMatch);
    console.log(isMatch);
});
}

1 个解决方案

解决方案1
 0  2016-10-05 14:23:06

Ok, you have made quite some mistakes, i hope i found all. 好的,您犯了很多错误,我希望我能找到所有的错误。 I will go through them via comments in your code: 我将通过您代码中的注释对它们进行遍历: 

function (username, password, done) {
    // inputUser is undefined, shouldn't that be username?
    User.getUserByUsername(inputUser, function (err, user) {
        if (err) throw err; // you should never throw in async callbacks! use done(err) instead
        if (!user) {
            req.flash('error_msg','Unknown Username');
            return done(null, false);
        }
        // all your input arguments are undefined! Where does inputPwd, user and has coe from?
        // inputPassword should be password i guess, hash idk, maybe user.hash?
        // also your arguments are wrong
        User.comparePassword(inputPwd, user, hash, function (err, isMatch) {
            if (err) throw err; // again, don't throw!
            if (isMatch) {
                req.flash('error_msg','Unknown Password');
                return done(null, user);
            } else {
                return done(null, false);
            }
        })
    })
}));

Now a corrected version: 现在是一个更正的版本: 

function (username, password, done) {
    User.getUserByUsername(username, function (err, user) {
        if (err) return done(err);
        if (!user) {
            req.flash('error_msg','Unknown Username');
            return done(null, false);
        }
        User.comparePassword(password, user.password, function (err, isMatch) {
            if (err) return done(err);
            if (isMatch) {
                req.flash('error_msg','Unknown Password');
                return done(null, user);
            } else {
                return done(null, false);
            }
        })
    })
}));

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 Node.js bcrypt compare 返回 false 以获得正确的密码 - Node.js bcrypt compare returns false for correct password 节点 bcrypt 的比较总是返回 false - Node bcrypt's compare always returns false bcrypt.compare承诺始终返回false - bcrypt.compare promise always returns false Bcrypt 的比较在 Node.Js 中不起作用 - Bcrypt's compare is not working in Node.Js 来自 bcryptjs 的 bcrypt.compare 总是返回 false - bcrypt.compare from bcryptjs always returns false Bcrypt compare() 总是返回 false - Bcrypt compare() always return false Bcrypt 比较总是返回 false - Bcrypt compare always returning false JS函数始终返回False - JS Function Always Returns False Node.js,Vue.js和Passport.js。 .isAuthenticated()总是返回false? Axios标题可能吗? - Node.js, Vue.js and Passport.js. .isAuthenticated() always returns false? Axios headers possibly? 查询发电机数据库的 node.js function 总是返回 undefined - node.js function that queries a dynamo database always returns undefined
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM