Bcrypt.compare not comparing the passwords
Question
I have a bcrypt.compare function, but it couldn't compare the passwords rather any password entered was able to return status ok. See the code below and help me out.Thanks
bcrypt.compare(req.body.password, users.password).then(
(valid) => {
if (!valid) {
return res.status(401).json({
error: new Error('Incorrect password!')
});
}
const token = jwt.sign(
{ userId: users._id },
'RANDOM_TOKEN_SECRET',
{ expiresIn: '24h' }
);
res.status(200).json({
userId: users._id,
token: 'token'
});
}
).catch(
(error) => {
res.status(500).json({
error: error
});
}
);
1 answers
solution1
0 2020-05-13 15:46:26
I once had some like this before. How long is your password column or table? Bcrypt hashes the password with an string greater than 60 chars. Is it your column on that range?
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.
Related Question
bcrypt.compare cb is not a function error
Is bcrypt.compare vulnerable to timing attack
bcrypt.compare promise always returns false
users is not defined in nodejs at bcrypt.compare
Bcrypt.compare always returns true
Bcrypt.compare not executing in chai/mocha tests, but executing in code
bcrypt.compare from bcryptjs always returns false
bcrypt.compare cannot set response headers in nextjs
Bcrypt not consistently comparing passwords in Node.js
Unsure of how to unit test password validation function that uses bCrypt.compare(), getting undefined
Related Tags