ergo/irc/passwd/unsalted.go

// Copyright (c) 2012-2014 Jeremy Latt
// released under the MIT license

package passwd

import (
	"encoding/base64"
	"errors"

	"golang.org/x/crypto/bcrypt"
)

var (
	// ErrEmptyPassword means that an empty password was given.
	ErrEmptyPassword = errors.New("empty password")
)

// GenerateEncodedPassword returns an encrypted password, encoded into a string with base64.
func GenerateEncodedPassword(passwd string) (encoded string, err error) {
	if passwd == "" {
		err = ErrEmptyPassword
		return
	}
	bcrypted, err := bcrypt.GenerateFromPassword([]byte(passwd), bcrypt.MinCost)
	if err != nil {
		return
	}
	encoded = base64.StdEncoding.EncodeToString(bcrypted)
	return
}

// DecodePasswordHash takes a base64-encoded password hash and returns the appropriate bytes.
func DecodePasswordHash(encoded string) (decoded []byte, err error) {
	if encoded == "" {
		err = ErrEmptyPassword
		return
	}
	decoded, err = base64.StdEncoding.DecodeString(encoded)
	return
}

// ComparePassword compares a given password with the given hash.
func ComparePassword(hash, password []byte) error {
	return bcrypt.CompareHashAndPassword(hash, password)
}

// ComparePasswordString compares a given password string with the given hash.
func ComparePasswordString(hash []byte, password string) error {
	return ComparePassword(hash, []byte(password))
}
Attempt to add mostly-correct license info at the top of each file... track this stuff a bit better 2016-06-15 13:50:56 +02:00			`// Copyright (c) 2012-2014 Jeremy Latt`
			`// released under the MIT license`

Split passwd into its' own subpackage 2017-10-05 16:03:53 +02:00			`package passwd`
move password handling into a single file 2014-03-02 00:10:04 +01:00
			`import (`
			`"encoding/base64"`
			`"errors"`
Attempt to add mostly-correct license info at the top of each file... track this stuff a bit better 2016-06-15 13:50:56 +02:00
			`"golang.org/x/crypto/bcrypt"`
move password handling into a single file 2014-03-02 00:10:04 +01:00			`)`

			`var (`
Fixing warnings and golint stuff 2016-10-13 09:36:44 +02:00			`// ErrEmptyPassword means that an empty password was given.`
			`ErrEmptyPassword = errors.New("empty password")`
move password handling into a single file 2014-03-02 00:10:04 +01:00			`)`

Fixing warnings and golint stuff 2016-10-13 09:36:44 +02:00			`// GenerateEncodedPassword returns an encrypted password, encoded into a string with base64.`
move password handling into a single file 2014-03-02 00:10:04 +01:00			`func GenerateEncodedPassword(passwd string) (encoded string, err error) {`
			`if passwd == "" {`
Fixing warnings and golint stuff 2016-10-13 09:36:44 +02:00			`err = ErrEmptyPassword`
move password handling into a single file 2014-03-02 00:10:04 +01:00			`return`
			`}`
			`bcrypted, err := bcrypt.GenerateFromPassword([]byte(passwd), bcrypt.MinCost)`
			`if err != nil {`
			`return`
			`}`
			`encoded = base64.StdEncoding.EncodeToString(bcrypted)`
			`return`
			`}`

Fixing warnings and golint stuff 2016-10-13 09:36:44 +02:00			`// DecodePasswordHash takes a base64-encoded password hash and returns the appropriate bytes.`
			`func DecodePasswordHash(encoded string) (decoded []byte, err error) {`
move password handling into a single file 2014-03-02 00:10:04 +01:00			`if encoded == "" {`
Fixing warnings and golint stuff 2016-10-13 09:36:44 +02:00			`err = ErrEmptyPassword`
move password handling into a single file 2014-03-02 00:10:04 +01:00			`return`
			`}`
			`decoded, err = base64.StdEncoding.DecodeString(encoded)`
			`return`
			`}`

Fixing warnings and golint stuff 2016-10-13 09:36:44 +02:00			`// ComparePassword compares a given password with the given hash.`
move password handling into a single file 2014-03-02 00:10:04 +01:00			`func ComparePassword(hash, password []byte) error {`
			`return bcrypt.CompareHashAndPassword(hash, password)`
			`}`
Allow WEBIRC from specified hosts 2017-10-15 08:18:14 +02:00
			`// ComparePasswordString compares a given password string with the given hash.`
			`func ComparePasswordString(hash []byte, password string) error {`
			`return ComparePassword(hash, []byte(password))`
			`}`