Argon2Id Password Hasher and Comparer - Overview (O11)

Stable version 1.0.2 (Compatible with OutSystems 11)

Uploaded

on 13 Jan (3 hours ago)

0.0

(0 ratings)

Details

Implements the award winning Argon2Id password hashing and hash comparison. Argon2 is a modern, memory-hard password hashing function, winner of the 2015 Password Hashing Competition, designed to securely store passwords by making brute-force attacks computationally expensive through tunable memory, time, and parallelism costs, with the recommended variant Argon2id offering a strong hybrid defense against GPU/ASIC and side-channel attacks. It's a key derivation function (KDF) used for credential storage, standardized in RFC 9106.

This implements Argon2id password hashing and password/hash comparison.

Only has 2 actions:

HashPassword - take password as text and returns has as text
VerifyPassword - takes password and hash as text, returns boolean

Based on sample code form here:
https://www.thatsoftwaredude.com/content/14030/implementing-argon2id-password-hashing-in-c

(Yes, I Bought him a coffee. If you find this useful, might be worth buying him one too.)

The main change from his code is that I had to copy the code in for CryptographicOperations.FixedTimeEquals because it's only available in DOT.NET Core for some bizarre reason.

Release notes (1.0.2)

Updated to meet requirements for trusted badge:

Wrapped in module
Added detailed description about relevancy
Added missing descriptions for parameters
Added packages.config to the file list so NuGet packages show correctly

Also converted to function to allow it to be called in IF statements etc.

NOTE: There is "no try" now yet because OutSystems deleted my personal environment.
This will be added as soon as I can obtain an OutSystems personal environment.

License (1.0.2)

BSD-3 license (https://opensource.org/licenses/BSD-3-Clause)

Reviews (0)

Team