documize/core/secrets/password.go

// Copyright 2016 Documize Inc. <legal@documize.com>. All rights reserved.
//
// This software (Documize Community Edition) is licensed under
// GNU AGPL v3 http://www.gnu.org/licenses/agpl-3.0.en.html
//
// You can operate outside the AGPL restrictions by purchasing
// Documize Enterprise Edition and obtaining a commercial license
// by contacting <sales@documize.com>.
//
// https://documize.com

package secrets

import (
	"crypto/rand"
	"encoding/hex"

	"golang.org/x/crypto/bcrypt"
)

// GenerateRandomPassword provides a string suitable for use as a password.
func GenerateRandomPassword() string {
	return GenerateRandom(5)
}

// GenerateSalt provides a string suitable for use as a salt value.
func GenerateSalt() string {
	return GenerateRandom(20)
}

// GenerateRandom returns a string of the specified length using crypo/rand
func GenerateRandom(size int) string {
	b := make([]byte, size)
	rand.Read(b)

	return hex.EncodeToString(b)
}

// GeneratePassword returns a hashed password.
func GeneratePassword(password string, salt string) string {
	pwd := []byte(salt + password)

	// Hashing the password with the cost of 10
	hashedPassword, _ := bcrypt.GenerateFromPassword(pwd, 10)

	return string(hashedPassword)
}

// MatchPassword copares a hashed password with a clear one.
func MatchPassword(hashedPassword string, password string, salt string) bool {
	pwd := []byte(salt + password)

	err := bcrypt.CompareHashAndPassword([]byte(hashedPassword), pwd)

	return err == nil
}
initial commit 2016-07-07 18:54:16 -07:00			`// Copyright 2016 Documize Inc. <legal@documize.com>. All rights reserved.`
			`//`
GenerateRandom function added 2016-07-25 11:40:26 -07:00			`// This software (Documize Community Edition) is licensed under`
initial commit 2016-07-07 18:54:16 -07:00			`// GNU AGPL v3 http://www.gnu.org/licenses/agpl-3.0.en.html`
			`//`
			`// You can operate outside the AGPL restrictions by purchasing`
			`// Documize Enterprise Edition and obtaining a commercial license`
GenerateRandom function added 2016-07-25 11:40:26 -07:00			`// by contacting <sales@documize.com>.`
initial commit 2016-07-07 18:54:16 -07:00			`//`
			`// https://documize.com`

major package structure refactoring 2017-07-18 21:55:17 +01:00			`package secrets`
initial commit 2016-07-07 18:54:16 -07:00
			`import (`
			`"crypto/rand"`
			`"encoding/hex"`

major package structure refactoring 2017-07-18 21:55:17 +01:00			`"golang.org/x/crypto/bcrypt"`
initial commit 2016-07-07 18:54:16 -07:00			`)`

			`// GenerateRandomPassword provides a string suitable for use as a password.`
			`func GenerateRandomPassword() string {`
GenerateRandom function added 2016-07-25 11:40:26 -07:00			`return GenerateRandom(5)`
initial commit 2016-07-07 18:54:16 -07:00			`}`

			`// GenerateSalt provides a string suitable for use as a salt value.`
			`func GenerateSalt() string {`
GenerateRandom function added 2016-07-25 11:40:26 -07:00			`return GenerateRandom(20)`
			`}`

			`// GenerateRandom returns a string of the specified length using crypo/rand`
			`func GenerateRandom(size int) string {`
			`b := make([]byte, size)`
wrap errors up, log at top level only 2017-08-03 10:00:24 +01:00			`rand.Read(b)`

initial commit 2016-07-07 18:54:16 -07:00			`return hex.EncodeToString(b)`
			`}`

			`// GeneratePassword returns a hashed password.`
			`func GeneratePassword(password string, salt string) string {`
			`pwd := []byte(salt + password)`

			`// Hashing the password with the cost of 10`
wrap errors up, log at top level only 2017-08-03 10:00:24 +01:00			`hashedPassword, _ := bcrypt.GenerateFromPassword(pwd, 10)`
initial commit 2016-07-07 18:54:16 -07:00
			`return string(hashedPassword)`
			`}`

			`// MatchPassword copares a hashed password with a clear one.`
			`func MatchPassword(hashedPassword string, password string, salt string) bool {`
			`pwd := []byte(salt + password)`

			`err := bcrypt.CompareHashAndPassword([]byte(hashedPassword), pwd)`

			`return err == nil`
			`}`