node-argon2
Nest
node-argon2 | Nest | |
---|---|---|
11 | 312 | |
1,797 | 64,419 | |
- | 1.3% | |
7.2 | 9.9 | |
8 days ago | 7 days ago | |
JavaScript | TypeScript | |
MIT License | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
node-argon2
-
A Step-by-Step Guide to Implement JWT Authentication in NestJS using Passport
â Why is hashing and salting passwords mandatory? A salt is simply a random data used as an additional input to the hashing function to safeguard your password. The random string from the salt makes the hash unpredictable. A password hash involves converting the password into an alphanumeric string using specialized algorithms. Hashing and salting are irreversible and ensure that even if someone gains access to the hashed passwords, they will not be able to decrypt them to recover the original passwords. Hystorically bcrypt is recognized as the best hashing algorithm. However, in terms of robustness against all the new cryptographic attacks targeting hashing algorithms, the current clear winner is argon2. However, since the âyouth" (2015) of this algorithm, I chose to use bcrypt
-
Best Node hashing algorithm option?
Argon2: this is the newest highly recommended algorithm, and recommended by OWASP. (Edit: originally linked to a low-download library.)
- Quick notes on cryptography for js devs
- What is the best way to encrypt a password using NodeJS?
- Authentication with Next.js - The do's and don'ts, and why next-auth is your friend [ part 1 of 2 ]
-
How to sign out user after a period of time
Though I am using bcrypt to hash passwords, recommended approach currently is argon2
-
Correct parameters to migrate from Bcrypt to Argon2 for express?
As per security.stackexchange.com the recommended number of rounds for Bcrypt is a number such that it takes atleast 250 ms to hash your password. Argon2 on the other hand takes multiple parameters it seems. What is the equivalent configuration you need for Argon2? I am talking about an express webserver here with passportjs if that helps
-
Password hashing with bcrypt vs bcryptjs vs pgcrypto (database layer)
If you already have Bcrypt & want to start converting to Argon2, check out this guide â https://github.com/ranisalt/node-argon2/wiki/Migrating-from-another-hash-function
-
Logging in and hashing passwords in svelte
You can look at the argon2 npm (https://www.npmjs.com/package/argon2).
- "They [Google] don't [hash passwords on client side, and nobody does" "This is why it's so easy to hack into their servers. All of the IT people working for those companies have no clue what security truly is"
Nest
-
NestJS tip: how to change HTTP server timeouts
When using the NestJS framework, sometimes you may need to change some default timeout. You can define them just like you'd do in a plain Node.js HTTP server like so:
-
Containerize your multi-services app with docker compose
Back: a graphQL server built with Nestjs
-
Full Stack Web Development Concept map
NestJS - opinionated more scalable, but harder to learn docs
-
Don't go all-in Clean Architecture: An alternative for NestJS applications
Pragmatically, we can apply this to a Nest application by creating an Interface for our services, separating the Presenter layer (Controller) from the Use Case (Services):
- Utilizando Testcontainers para Testes de Integração com NestJS e Prisma ORM
-
A Gentle Introduction to Containerization and Docker
Itâs a text document that contains all the commands a user could call to assemble an image. Letâs check an example of a Dockerfile for a nodejs app in this case it will be a NestJS app and then explain each part.
-
Scalable REST APIs with NestJS: A Testing-Driven Approach
describe('Create bookmarks', () => { const dto: CreateBookmarkDto = { title: 'NestJS', link: 'https://nestjs.com/', }; it('should create bookmark', () => { return pactum .spec() .post('/bookmarks') .withHeaders({ Authorization: 'Bearer $S{userAt}', }) .withBody(dto) .expectStatus(201) .stores('bookmarkId', 'id')//store the bookmark id in the variable bookmarkId .expectBodyContains(dto.title) .expectBodyContains(dto.link) }); });
-
Rust GraphQL APIs for NodeJS Developers: Introduction
In my usual NodeJS tech stack, which includes GraphQL, NestJS, SQL (predominantly PostgreSQL with MikroORM), I encountered these limitations. To overcome them, I've developed a new stack utilizing Rust, which still offers some ease of development:
-
A Step-by-Step Guide to Implement JWT Authentication in NestJS using Passport
The purpose of this article is to provide a step-by-step guide for implementing authentication system in a NestJS project using the Passport middleware module.
-
From Frontend to Backend
That's exactly where I am. My manager gave me these links, that cover a lot of those words the backend uses, so I can identify what they mean and how to use them. 1. For inspiration and concepts: https://github.com/Sairyss/domain-driven-hexagon 2. Suggested to read the documentation for nest.js. They apply such concepts I don't understand: https://nestjs.com/
What are some alternatives?
crypto-hash - Tiny hashing module that uses the native crypto API in Node.js and the browser
SailsJS - Realtime MVC Framework for Node.js
CyberChef - The Cyber Swiss Army Knife - a web app for encryption, encoding, compression and data analysis
Koa - Expressive middleware for node.js using ES2017 async functions
next-auth - Authentication for the Web.
loopback-next - LoopBack makes it easy to build modern API applications that require complex integrations.
Passport - Simple, unobtrusive authentication for Node.js.
feathers - The API and real-time application framework
SofleKeyboard - A split keyboard based on Lily58, Crkbd and Helix keyboards
Ts.ED - :triangular_ruler: Ts.ED is a Node.js and TypeScript framework on top of Express to write your application with TypeScript (or ES6). It provides a lot of decorators and guideline to make your code more readable and less error-prone. âď¸ Star to support our work!
Keycloak - Open Source Identity and Access Management For Modern Applications and Services
Moleculer - :rocket: Progressive microservices framework for Node.js