Remix.run Logo
vivzkestrel 8 months ago

one of the most crucial packages that use node-gyp are bcrypt and argon2. Both are needed heavily for password hashing while implementing authentication and while pure js alternatives are available, they run terribly

speedgoose 8 months ago | parent | next [-]

That would be a good argument to not implement authentication again and go with a solid authentication and authorisation software like Keycloak, Zitadel, or Ory Kratos.

vivzkestrel 8 months ago | parent [-]

if only integrating keycloak was simple eh?

speedgoose 8 months ago | parent [-]

If you are dealing with argon2 and bcrypt, I think you coud manage some JWT hell.

itsjzt 8 months ago | parent | prev [-]

Use bcryptjs https://www.npmjs.com/package/bcryptjs

vivzkestrel 8 months ago | parent [-]

i did mention "and while pure js alternatives are available, they run terribly"

incrudible 8 months ago | parent [-]

Slow is much faster than it not working at all. If this is a project that you might not touch for months or years, perhaps having fast bcrypt is not that important.