Allow having multiple users for admin login.

* Use password hashes via bcrypt. * Trying to reduce the risk of timing attacks against login.
2022-07-07 13:10:57 +02:00 · 2022-07-07 13:10:57 +02:00 · ad2db3427d
commit ad2db3427d
parent 2eb0aab89f
6 changed files with 317 additions and 41 deletions
--- a/package.json
+++ b/package.json
@ -30,6 +30,7 @@
    },
    "dependencies": {
        "async": "^3.2.4",
+        "bcrypt": "^5.0.1",
        "body-parser": "^1.19.1",
        "command-line-args": "^5.2.1",
        "command-line-usage": "^6.1.1",
@ -55,6 +56,7 @@
    },
    "devDependencies": {
        "@types/async": "^3.2.15",
+        "@types/bcrypt": "^5.0.0",
        "@types/command-line-args": "^5.2.0",
        "@types/command-line-usage": "^5.0.2",
        "@types/compression": "^1.7.2",