zias/kunstenkamp
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix:use cloudflare's crypto lib for passwords

Browse Source
This commit is contained in:
2026-03-03 14:59:45 +01:00
parent e6f52e6a73
commit e7b3d7260f
1 changed files with 17 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

17
packages/auth/src/index.ts
View File

@@ -1,3 +1,4 @@
import { randomBytes, scryptSync } from "node:crypto";
import { db } from "@kk/db"; import { db } from "@kk/db";
import * as schema from "@kk/db/schema/auth"; import * as schema from "@kk/db/schema/auth";
import { env } from "@kk/env/server"; import { env } from "@kk/env/server";
@@ -14,6 +15,22 @@ export const auth = betterAuth({
trustedOrigins: [env.CORS_ORIGIN], trustedOrigins: [env.CORS_ORIGIN],
emailAndPassword: { emailAndPassword: {
enabled: true, enabled: true,
// Use Cloudflare's native scrypt via node:crypto for better performance
// This avoids CPU time limit errors on Cloudflare Workers
password: {
hash: async (password) => {
const salt = randomBytes(16).toString("hex");
const hash = scryptSync(password, salt, 64).toString("hex");
return `${salt}:${hash}`;
},
verify: async ({ hash, password }) => {
const [salt, key] = hash.split(":");
if (!salt || !key) return false;
const keyBuffer = Buffer.from(key, "hex");
const hashBuffer = scryptSync(password, salt, 64);
return keyBuffer.equals(hashBuffer);
},
},
}, },
user: { user: {
additionalFields: { additionalFields: {