From f1fc4c761dcb057a2f274f0d8816db6d1ea04309 Mon Sep 17 00:00:00 2001
From: ASPP Student <student@localhost>
Date: Mon, 26 Aug 2024 15:25:38 +0300
Subject: [PATCH] hash the password.

---
 auth.py | 18 ++++++++++++++++--
 1 file changed, 16 insertions(+), 2 deletions(-)

diff --git a/auth.py b/auth.py
index 410ff3c..3d8d072 100644
--- a/auth.py
+++ b/auth.py
@@ -1,6 +1,7 @@
 import json
 import sys
 from getpass import getpass
+import hashlib
 
 PWDB_PATH = 'pwdb.json'
 
@@ -10,10 +11,10 @@ def get_credentials():
     return (username, password)
 
 def authenticate(username, password, pwdb):
-    return password == pwdb[username]
+    return pwhash(password) == pwdb[username]
 
 def add_user(username, pwdb):
-    pwdb[username] = input(f'Enter password for {username}: ')
+    pwdb[username] = pwhash(input(f'Enter password for {username}: '))
     return pwdb
 
 def read_pwdb(PWDB_PATH):
@@ -24,6 +25,19 @@ def read_pwdb(PWDB_PATH):
         pwdb = {}
     return pwdb
 
+# def get_salt(username):
+#     ''' will return a unique variable'''
+
+#     salt = 
+#     return salt
+
+
+def pwhash(password):
+    hashed_pass = hashlib.sha256(password.encode('utf-8')).hexdigest()
+    return hashed_pass
+
+
+
 def write_pwdb(pwdb, PWDB_PATH):
     pwdb_file = open(PWDB_PATH, 'wt')
     json.dump(pwdb, pwdb_file)