func validateCredentials(attemptedPassword string, actualPasswordHash string) (bool, error) {
if err := bcrypt.CompareHashAndPassword([]byte(actualPasswordHash), []byte(attemptedPassword)); err != nil {
fmt.Printf("validateCredentials error is %v", err)
return false, nil
}
return true, nil
}
我编写了一个如下所示的测试:
func TestAuth_validateCredentials(t *testing.T) {
var actualPassword = "hello123"
actualPasswordHash, _ := bcrypt.GenerateFromPassword([]byte(actualPassword), bcrypt.MinCost)
if valid, err := validateCredentials("username", string(actualPasswordHash)); err != nil {
t.Error("Unexpted error: ", err)
} else if valid {
t.Error("Expected invalid when password is wrong")
}
}
我一直收到这个错误:
validateCredentials error is crypto/bcrypt: hashedPassword is not the hash of the given passwordPASS
我在这里做错了什么?
最佳答案
您传递的是 "username" 而不是 actualPassword
if valid, err := validateCredentials(actualPassword, string(actualPasswordHash))
关于go - 我的 bcrypt 密码验证总是失败,说 hashedPassword 不是给定 passwordPASS 的散列,我们在Stack Overflow上找到一个类似的问题: https://stackoverflow.com/questions/49058692/