44 lines
1.4 KiB
Nim
44 lines
1.4 KiB
Nim
# --==--==--==--==--==--==--==--==--==--==--==--==--==--==--==-- #
|
|
# Bruno Charest
|
|
# 2022-08-09
|
|
#
|
|
# __ DESCRIPTIONS __
|
|
# password_utils : procedure related password
|
|
#
|
|
# Inspiration of : https://ttj.dk/blog/2019/01/20/setup-a-website-with-nim
|
|
# Copyright 2019 - Thomas T. Jarløv
|
|
# --==--==--==--==--==--==--==--==--==--==--==--==--==--==--==-- #
|
|
|
|
# import md5, bcrypt, math, random, os
|
|
import md5
|
|
import bcrypt
|
|
import random
|
|
randomize()
|
|
|
|
var urandom: File
|
|
let useUrandom = urandom.open("/dev/urandom")
|
|
|
|
proc makeSalt*(): string =
|
|
## Generate random salt. Uses cryptographically secure /dev/urandom
|
|
## on platforms where it is available, and Nim's random module in other cases.
|
|
result = ""
|
|
if useUrandom:
|
|
var randomBytes: array[0..127, char]
|
|
discard urandom.readBuffer(addr(randomBytes), 128)
|
|
for ch in randomBytes:
|
|
if ord(ch) in {32..126}:
|
|
result.add(ch)
|
|
else:
|
|
for i in 0..127:
|
|
result.add(chr(rand(94) + 32)) # Generate numbers from 32 to 94 + 32 = 126
|
|
|
|
proc makeSessionKey*(): string =
|
|
## Creates a random key to be used to authorize a session.
|
|
let random = makeSalt()
|
|
return bcrypt.hash(random, genSalt(8))
|
|
|
|
|
|
proc makePassword*(password, salt: string, comparingTo = ""): string =
|
|
## Creates an MD5 hash by combining password and salt
|
|
let bcryptSalt = if comparingTo != "": comparingTo else: genSalt(8)
|
|
result = hash(getMD5(salt & getMD5(password)), bcryptSalt) |