ash_authentication
v3.11.10

View Source AshAuthentication.HashProvider behaviour (ash_authentication v3.11.10)

A behaviour providing password hashing.

Summary

Callbacks

hash(input)

Given some user input as a string, convert it into it's hashed form.

simulate()

Attempt to defeat timing attacks by simulating a password hash check.

valid?(input, hash)

Check if the user input matches the hash.

Callbacks

Link to this callback

hash(input)

View Source 
@callback hash(input :: String.t()) :: {:ok, hash :: String.t()} | :error

Given some user input as a string, convert it into it's hashed form.

Link to this callback

simulate()

View Source 
@callback simulate() :: false

Attempt to defeat timing attacks by simulating a password hash check.

See Bcrypt.no_user_verify/1 for more information.

Link to this callback

valid?(input, hash)

View Source 
@callback valid?(input :: String.t(), hash :: String.t()) :: boolean()

Check if the user input matches the hash.