On Wednesday, 5 February 2025 at 15:16:10 UTC, seany wrote:
Is there any built in passowrd verification for Vibe.d? Such as
bcrypt.verifypassword(password , hash)?
I looked at this library: https://code.dlang.org/packages/passwd
This is causing linking error ( ld: error: unable to find
library -lbsd) - yes i am on FreeBSD with my hoster. I can't
change it.
I also looked at this one:
https://code.dlang.org/packages/crypto
I can't find a verify password method in it.
Any help would be appreciated. My password is being sent as
string over a secure https connection. The hash is stored as
another string.
Thank you.
There is one crypto package that includes a secure password
hashing/verification implementation and has had it's
implementation vetted.
SecureD: https://code.dlang.org/packages/secured
The algorithm you are looking for is
`securePassword/verifyPassword` methods in `secured.kdf`. By
default this will use SCrypt. PBKDF2 is available for backwards
compatibility but is not recommended for use in new projects.
