> For the complete documentation index, see [llms.txt](https://radenkovic.gitbook.io/mariner/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://radenkovic.gitbook.io/mariner/utils/salt-hash.md). # SaltHash ## SaltHash SaltHash provides a safe way of storing passwords in the database, by hashing and salting them. This way, database administrators and potential hackers will not be able to reconstruct the password from the `salt` and `hash` stored in database. Module is based on [bcrypt](https://github.com/kelektiv/node.bcrypt.js). ## Creating salt and hash One should not store password as a string by no means. Instead, every password should be hashed and salted before storing. Additionally, every password should be salted with new, completely random salt string (salt should not be reused across entities). Using `SaltHash` that is pretty straightforward: `SaltHash` function expects one argument: `password`, and returns a `hash`. Please note that hash includes the salt, so there's no need to store `salt` separately. For more information check [bcrypt](https://github.com/kelektiv/node.bcrypt.js). You can specify salt length as second argument in SaltHash function, default is 9, for optimal performance and security. Increasing the number will make hash harder to exploit, but speed of creating hash dramatically falls. ``` import { SaltHash } from 'node-mariner'; const password = await SaltHash('userEnteredPassword', 9); // second argument is optional (salt length) defaults to 8 // store the hash in database, eg. // await User.create({ password, name: 'Test User', email: 'sample@gmail.com' }) ``` ### SaltHashSync Sometimes you may want to create a hash synchronously. You can use `SaltHashSync` function: ``` import { SaltHashSync } from 'node-mariner'; const hash = SaltHashSync('somepassword', 9); // second argument is optional ``` ## Verifying password To verify password, we provide password user entered, real user password and real user salt (from database) we are comparing against to `verifyPassword`: ``` import { verifyPassword } from 'node-mariner'; try { const user = await User.findOne({ email: 'sample@gmail.com' }) await verifyPassword({ enteredPassword: 'asdfasdf', password: user.password, }); // password is correct } catch (e) { // password not correct } ``` All keys are mandatory. | key | type | description | | --------------- | -------- | --------------------------------- | | enteredPassword | `string` | password we are verifying against | | password | `string` | hashed password from database | --- # Agent Instructions This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com. ## Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter, and the optional `goal` query parameter: ``` GET https://radenkovic.gitbook.io/mariner/utils/salt-hash.md?ask=&goal= ``` `ask` is the immediate question: it should be specific, self-contained, and written in natural language. `goal` is optional and describes the broader end goal you are ultimately trying to accomplish on behalf of the user. GitBook uses it to tailor the answer towards what is most useful for that goal. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.