Scrypt for humans

Issue #22 new
Scott Arciszewski
created an issue

I've been surveying bcrypt/scrypt/PBKDF2/Argon2 implementations in various languages. I think this project could benefit from a human-usable password hashing interface.

For example:

I'd propose the following:

  1. Create a wrapper for scrypt.hash() (possibly password_hash()) that returns a string rather than a byte array.
  2. Create a scrypt.password_verify() function that recalculates the password hash and then compares it with the given hash, using hmac.compare_digest() (or equivalent).

I can follow up with a pull request, if you prefer.