# Licensed to the Apache Software Foundation (ASF) under one # or more contributor license agreements. See the NOTICE file # distributed with this work for additional information # regarding copyright ownership. The ASF licenses this file # to you under the Apache License, Version 2.0 (the # "License"); you may not use this file except in compliance # with the License. You may obtain a copy of the License at # # http://www.apache.org/licenses/LICENSE-2.0 # # Unless required by applicable law or agreed to in writing, # software distributed under the License is distributed on an # "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY # KIND, either express or implied. See the License for the # specific language governing permissions and limitations # under the License. # import bcrypt def hash_password(password: str) -> str: """ Apply bcrypt hash algorithm to password. Args: password (str): Password to hash Returns: str: Hashed password """ password_bytes = password.encode('utf-8') salt = bcrypt.gensalt() hashed_password = bcrypt.hashpw(password_bytes, salt) return hashed_password.decode('utf-8') def verify_password(password: str, hashed_password: str) -> bool: """ Verify if hashed password matches password. Args: password (str): The plain password to verify hashed_password (str): The saved hashed password Returns: bool: True if hashed password matches password. False otherwise """ return bcrypt.checkpw(password.encode('utf-8'), hashed_password.encode('utf-8'))