bcrypt

• 암호화 관련 Library ( npm: https://www.npmjs.com/package/bcrypt )
• https://ko.m.wikipedia.org/wiki/암호화_해시_함수

단순 로직

• 비밀번호 + salt ⇒ 해시 ( 특정 알고리즘 ) ⇒ 단방향 암호화 된 문자열 생성

• 권장 사용법

const bcrypt = require('bcrypt');
const saltRounds = 10;
const myPlaintextPassword = 's0/\\/\\P4$$w0rD';
const someOtherPlaintextPassword = 'not_bacon';

• 비동기

bcrypt.genSalt(saltRounds, function(err, salt) {
    bcrypt.hash(myPlaintextPassword, salt, function(err, hash) {
        // Store hash in your password DB.
    });
});

bcrypt.hash(myPlaintextPassword, saltRounds, function(err, hash) {
    // Store hash in your password DB.
});

• 비밀번호 비교

// Load hash from your password DB.
bcrypt.compare(myPlaintextPassword, hash, function(err, result) {
    // result == true
});
bcrypt.compare(someOtherPlaintextPassword, hash, function(err, result) {
    // result == false
});

• promise async +

bcrypt.hash(myPlaintextPassword, saltRounds).then(function(hash) {
    // Store hash in your password DB.
});

// Load hash from your password DB.
bcrypt.compare(myPlaintextPassword, hash).then(function(result) {
    // result == true
});
bcrypt.compare(someOtherPlaintextPassword, hash).then(function(result) {
    // result == false
});

async function checkUser(username, password) {
    //... fetch user from a db etc.

    const match = await bcrypt.compare(password, user.passwordHash);

    if(match) {
        //login
    }

    //...
}