mealie/core/security/hasher.py

from functools import lru_cache
from typing import Protocol

import bcrypt

from mealie.core.config import get_app_settings


class Hasher(Protocol):
    def hash(self, password: str) -> str:
        ...

    def verify(self, password: str, hashed: str) -> bool:
        ...


class FakeHasher:
    def hash(self, password: str) -> str:
        return password

    def verify(self, password: str, hashed: str) -> bool:
        return password == hashed


class BcryptHasher:
    def hash(self, password: str) -> str:
        password_bytes = password.encode("utf-8")
        hashed = bcrypt.hashpw(password_bytes, bcrypt.gensalt())
        return hashed.decode("utf-8")

    def verify(self, password: str, hashed: str) -> bool:
        password_bytes = password.encode("utf-8")
        hashed_bytes = hashed.encode("utf-8")
        return bcrypt.checkpw(password_bytes, hashed_bytes)


@lru_cache(maxsize=1)
def get_hasher() -> Hasher:
    settings = get_app_settings()

    if settings.TESTING:
        return FakeHasher()

    return BcryptHasher()
fix: group creation (#1126) * fix: unify group creation - closes #1100 * tests: disable password hashing during testing * tests: fix email config tests 2022-04-02 19:33:15 -08:00			`from functools import lru_cache`
			`from typing import Protocol`

refactor to use bcrypt directly 2024-01-24 22:03:16 +00:00			`import bcrypt`
fix: group creation (#1126) * fix: unify group creation - closes #1100 * tests: disable password hashing during testing * tests: fix email config tests 2022-04-02 19:33:15 -08:00
			`from mealie.core.config import get_app_settings`


			`class Hasher(Protocol):`
			`def hash(self, password: str) -> str:`
			`...`

			`def verify(self, password: str, hashed: str) -> bool:`
			`...`


			`class FakeHasher:`
			`def hash(self, password: str) -> str:`
			`return password`

			`def verify(self, password: str, hashed: str) -> bool:`
			`return password == hashed`


refactor to use bcrypt directly 2024-01-24 22:03:16 +00:00			`class BcryptHasher:`
fix: group creation (#1126) * fix: unify group creation - closes #1100 * tests: disable password hashing during testing * tests: fix email config tests 2022-04-02 19:33:15 -08:00			`def hash(self, password: str) -> str:`
refactor to use bcrypt directly 2024-01-24 22:03:16 +00:00			`password_bytes = password.encode("utf-8")`
			`hashed = bcrypt.hashpw(password_bytes, bcrypt.gensalt())`
			`return hashed.decode("utf-8")`
fix: group creation (#1126) * fix: unify group creation - closes #1100 * tests: disable password hashing during testing * tests: fix email config tests 2022-04-02 19:33:15 -08:00
			`def verify(self, password: str, hashed: str) -> bool:`
refactor to use bcrypt directly 2024-01-24 22:03:16 +00:00			`password_bytes = password.encode("utf-8")`
			`hashed_bytes = hashed.encode("utf-8")`
			`return bcrypt.checkpw(password_bytes, hashed_bytes)`
fix: group creation (#1126) * fix: unify group creation - closes #1100 * tests: disable password hashing during testing * tests: fix email config tests 2022-04-02 19:33:15 -08:00

			`@lru_cache(maxsize=1)`
			`def get_hasher() -> Hasher:`
			`settings = get_app_settings()`

			`if settings.TESTING:`
			`return FakeHasher()`

refactor to use bcrypt directly 2024-01-24 22:03:16 +00:00			`return BcryptHasher()`