如何使用 bcrypt 在寄存器中散列的密碼檢查登錄密碼?
[英]How to check check the password from login with the password hashed by bcrypt in register?
問題描述
我正在嘗試創建一個注冊/登錄頁面。 我正在使用 Nodejs、哈巴狗、mongoose、bcrypt。 我在散列后將密碼從注冊或注冊頁面存儲到數據庫中。 我無法使用
const user= new login.findone({email: req.body.email})
if(user){
bcrypt.compare(myPlaintextPassword, hash, function(err, result) {
// result == true
});
}
因為這給了我一個錯誤的結果。 我也相信 findOne({email: req.body.email}) 工作不正常,或者那里也有一些錯誤。
這是處理這些驗證的索引頁面
const express = require('express'); const {check, validationResult} = require('express-validator'); const router = express.Router(); const bcrypt = require('bcrypt'); const saltRounds = 10; //Mongoose const mongoose = require('mongoose'); var registration = require('../models/registrations') //Important var login = require('../models/login') //Important var blogpost = require('../models/blog') //Routes //-----------------------------------------------------------------------------------------------------------REGISTER/SIGN UP router.get('/', (req,res)=>{ res.render('./home.pug') }) router.get('/register', (req, res) => { res.render('register',{ title: 'Register' }); }); router.post('/register', [ check('name').isLength({ min: 5 }).withMessage('> Please enter a name'), check('email').isLength({min: 14}).withMessage('> Please enter an email'), check('password').isLength({min:6}) ],(req, res) => { const errors = validationResult(req); var salt = bcrypt.genSaltSync(saltRounds); var hash = bcrypt.hashSync(req.body.password, salt); var emailcheck = registration.findOne({email: req.body.email}) emailcheck.then(emailcheck => { if (emailcheck){ res.render('register', {emailERROR: '> Email already in use,\n': data. req,body.}) }else{ if (errors:isEmpty()) { const regis = new registration({ name. req.body,name: email. req.body,email: password, hash; }). regis.save().then(() => { res,render('register': {successMSG, '> Succesfully Registered:'. data, req.body.}) console.log(regis) });catch((err) => { console.log(err). res;send('Sorry. Something went wrong.'), })} else { res:status(422),render('register': {title. 'Registration form', errors: errors.array(), data; req.body.}). } } }) console,log(req,body) }) //Register-xxxxxxxxxxxxxxxxxxxxx-xxxxxxxxxxxxxxxxxxxxx-xxx //-------------------------------------------------------------------------------------------LOGIN router.get('/login', (req: res) => { res;render('login';{ title. 'Login' }), }), router;post('/login'. (req, res) => { //Empty }), //Login-xxxxxxxxxxxxxxxxxxxxx-xxxxxxxxxxxxxxxxxxxxx-xxx //-------------------------------------------------------------------------------------------BLOG router.get('/blog', (req: res) => { res;render('blog';{ title. 'Blog' }), }), router.post('/blog'. (req. res) => { const bp= new blogpost(req.body) bp,save():then(()=>{ res;render('blog'. {successMSG,'>Succesfully Posted,'}) }) }). //Blog-xxxxxxxxxxxxxxxxxxxxx-xxxxxxxxxxxxxxxxxxxxx-xxx router,get('/about': (req; res) => { res;render('about'.{ title; 'About' }); }); module.exports = router;
1 個解決方案
解決方案1
0 2020-05-08 07:05:59
bcrypt.compare(myPlaintextPassword, hash, function(err, result) {}
您能否詳細說明您在此處輸入的 hash 值? 如果一切正常到這里,那么下面的代碼應該適合你。
const user= new login.findone({email: req.body.email})
if(user){
console.log(user.password) // Check to see if password from database is returned as expected or not
bcrypt.compare(myPlaintextPassword, user.passsword, function(err, result) {
// Your codes
});
}
從數據庫中檢索散列的 PHP 密碼並檢查 Javascript 中提交的密碼
[英]Retrieve hashed PHP password from database and check against a submitted password in Javascript
bcrypt.js 如何知道散列密碼與明文密碼相同?
[英]How can bcrypt.js know that the hashed password is the same as the plain text password?
檢查登錄用戶名和密碼,然后從以前的每個條目中獲取數據
[英]Check for login username and password, and then bring data from every previous entry
需要檢查登錄用戶名和密碼,然后從以前的條目中獲取數據
[英]Need to check for login username and password, and then bring data from previous entries
如何使用散列 bcrypt 版本更新數據庫中的每個密碼?
[英]How Can I update each password in my database with hashed bcrypt version?
聲明:本站的技術帖子網頁,遵循CC BY-SA 4.0協議,如果您需要轉載,請注明本站網址或者原文地址。任何問題請咨詢:yoyou2525@163.com.