apex-bcrypt

Bcrypt implementation in the Salesforce Apex language, based on the JavaScript library bcrypt.js

Security considerations

Besides incorporating a salt to protect against rainbow table attacks, bcrypt is an adaptive function: over time, the iteration count can be increased to make it slower, so it remains resistant to brute-force search attacks even with increasing computation power. (see)

The maximum input length is 72 bytes (note that UTF8 encoded characters use up to 4 bytes) and the length of generated hashes is 60 characters.

Deploy to Salesforce

Usage

To hash a password:

String salt = Bcrypt.genSalt(10);
String hash = Bcrypt.hash('mypassword', salt);
// Store hash in Salesforce.

To check a password:

// Load hash from Salesforce.
Bcrypt.compare('mypassword', hash); // true
Bcrypt.compare('not_mypassword', hash); // false

Auto-gen a salt and hash:

String hash = Bcrypt.hash('mypassword');
// OR to specify the number of rounds
String hash = Bcrypt.hash('mypassword', 8);

Name		Name	Last commit message	Last commit date
Latest commit History 8 Commits
Bcrypt.cls		Bcrypt.cls
Bcrypt.cls-meta.xml		Bcrypt.cls-meta.xml
BcryptImplementation.cls		BcryptImplementation.cls
BcryptImplementation.cls-meta.xml		BcryptImplementation.cls-meta.xml
BcryptTest.cls		BcryptTest.cls
BcryptTest.cls-meta.xml		BcryptTest.cls-meta.xml
LICENSE		LICENSE
README.md		README.md
Radix64Encoder.cls		Radix64Encoder.cls
Radix64Encoder.cls-meta.xml		Radix64Encoder.cls-meta.xml

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

apex-bcrypt

Security considerations

Deploy to Salesforce

Usage

About

Releases

Packages

Languages

License

PierreVanobbergen/apex-bcrypt

Folders and files

Latest commit

History

Repository files navigation

apex-bcrypt

Security considerations

Deploy to Salesforce

Usage

About

Topics

Resources

License

Stars

Watchers

Forks

Releases

Packages 0

Languages

Packages