1.3 KiB
1.3 KiB
Menu = quart_imp.auth/authenticate_password
Title = authenticate_password - quart_imp.auth
from quart_imp.auth import authenticate_password
authenticate_password(
input_password: str,
database_password: str,
database_salt: str,
encryption_level: int = 512,
pepper_length: int = 1,
pepper_position: t.Literal["start", "end"] = "end"
) -> bool
For use in password hashing.
To be used alongside the quart_imp.auth / encrypt_password function.
Takes the plain input password, the stored hashed password along with the stored salt and will try every possible combination of pepper values to find a match.
Note:
- You must know the pepper length used to hash the password.
- You must know the position of the pepper used to hash the password.
- You must know the encryption level used to hash the password.
Authentication Scenario:
Plain password: "password"
Generated salt: "^%$*" (randomly generated)
Generated pepper (length 1): "A" (randomly generated)
Pepper position: "end"
input_password = "password"
database_password = "a1b2c3d4e5f6g7h8i9j0k1l2m3n4o5p6q7r8s9t0..." # pulled from database
database_salt = "^%$*" # pulled from database
authenticate_password(
input_password,
database_password,
database_salt
) # >>> True