Pbkdf2 password hashing library for Elixir.
Pbkdf2 is a well-tested password-based key derivation function that can be configured to remain slow and resistant to brute-force attacks even as computational power increases.
If you want the Pbkdf2 output to be in binary (raw) or hex format, you might find Plug.Crypto.KeyGenerator more convenient.
In version 1.0, pbkdf2_elixir has been updated to implement the Comeonin and Comeonin.PasswordHash behaviours.
It now has the following two additional convenience functions:
add_hash/2
- same as Comeonin.Pbkdf2.add_hash in Comeonin version 4
- hashes a password and returns a map with the password hash
check_pass/3
- same as Comeonin.Pbkdf2.check_pass in Comeonin version 4
- takes a user struct and password as input and verifies the password
- Add pbkdf2_elixir to the
deps
section of your mix.exs file:
def deps do
[
{:pbkdf2_elixir, "~> 1.0"}
]
end
- Optional: during tests (and tests only), you may want to reduce the number of rounds so it does not slow down your test suite. If you have a config/test.exs, you should add:
config :pbkdf2_elixir, :rounds, 1
See the Comeonin wiki for more information on the following topics:
- algorithms
- requirements
- deployment
- including information about using Docker
- references
There are many ways you can contribute to the development of this library, including:
- reporting issues
- improving documentation
- sharing your experiences with others
- making a financial contribution
First of all, I would like to emphasize that this software is offered free of charge. However, if you find it useful, and you would like to buy me a cup of coffee, you can do so at paypal.
http://hexdocs.pm/pbkdf2_elixir
BSD.