Bcrypt.compare acting super weird

msaul.warion · September 19, 2021, 9:57am

So I store my passwords in a database using bcryp.hash when the user signs up.
And then when I try to login, it actually works… until it stops working! I can login maybe 3-4 times using the same login and then the compare method suddenly returns false and I have to create a new user who can log in until he can’t… SUPER WEIRD RIGHT?!

Here’s my code for the signIn route :

exports.signIn = async (req, res, next) => {
try {

if (!req.body.email || !req.body.password) res.redirect('/')

const user = await User.findOne( {email: req.body.email })
const match = await bcrypt.compare(req.body.password, user.password)

if (match) {
  req.session.email = user.email   
  req.session.userid = user._id   
  res.redirect('/weather')
} else {
  res.redirect('/')
}

} catch (err) {
console.log(err)
}
}

msaul.warion · September 19, 2021, 1:34pm

Ok I found out the big WHY.
I had a pre save middleware to hash the password whenever a new user document is saved, and the problem was on one of my other route when I update the document using the .save() method … and so the password was re-hashed !

Sorry for bothering you with this unsolvable question since I didn’t give you all the necessary informations.

system · March 21, 2022, 1:34am

This topic was automatically closed 182 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Bcrypt hash and compare not working JavaScript	6	11751	January 22, 2021
[SOLVED] bcrypt.compareSync() not understanding hash JavaScript	1	9076	February 2, 2021
Information Security with HelmetJS - Hash and Compare Passwords Asynchronously JavaScript	4	2574	February 2, 2021
Help with bcrypt hash compare JavaScript	6	430	June 1, 2021
freeCodeCamp Challenge Guide: Hash and Compare Passwords Asynchronously Guide	1	5983	January 8, 2025

Bcrypt.compare acting super weird

Related topics