uptime-kuma/server/password-hash.js

const passwordHashOld = require("password-hash");
const bcrypt = require("bcryptjs");
const saltRounds = 10;

/**
 * Hash a password
 * @param {string} password
 * @returns {string}
 */
exports.generate = function (password) {
    return bcrypt.hashSync(password, saltRounds);
};

/**
 * Verify a password against a hash
 * @param {string} password
 * @param {string} hash
 * @returns {boolean} Does the password match the hash?
 */
exports.verify = function (password, hash) {
    if (isSHA1(hash)) {
        return passwordHashOld.verify(password, hash);
    }

    return bcrypt.compareSync(password, hash);
};

/**
 * Is the hash a SHA1 hash
 * @param {string} hash
 * @returns {boolean}
 */
function isSHA1(hash) {
    return (typeof hash === "string" && hash.startsWith("sha1"))
}

/**
 * Does the hash need to be rehashed?
 * @returns {boolean}
 */
exports.needRehash = function (hash) {
    return isSHA1(hash);
};