There are still problems with straight hashing like rainbow tables or brute-force attacks. The best solution today for dealing with passwords is BCrypt. BCrypt is a hashing algorithm that is intentionally slow, making brute-force attacks too expensive to do.
Like JWT, it’s not really important to understand how it works, just how to use it. To find the
bcrypt hash of your pass password, you can calculate it inside a Node console:
- Chapter 7. Building Authentication in Node.js
- from Write Modern Web Apps with the MEAN Stack: Mongo, Express, AngularJS, and Node.js
- Publisher: Peachpit Press
- Released: September 2014
Share this highlighthttp://www.safaribooksonline.com/a/write-modern-web/53897/