DEV Community

Discussion on: Best way to store password in DB

Collapse
 
davidszabo97 profile image
Dávid Szabó
  1. HTTPS
  2. Use bcrypt. It's not an authentication package... Please define what does authentication package mean.
Collapse
 
yashwanth2804 profile image
kambala yashwanth

like passport.js or other helper libraries,
thanks

Collapse
 
davidszabo97 profile image
Dávid Szabó

OK then please go on with bcrypt (npmjs.com/package/bcrypt). It's a standard for hashing passwords. (It's almost the same algorithm that's in PHP pssword_hash)

It's not rocket science, really. You don't need to understand how it works, though I guess you will need to speak up about how it works but you can find various sources about that. (codahale.com/how-to-safely-store-a...)

Thread Thread
 
yashwanth2804 profile image
kambala yashwanth

thanks CAP!!!