fn_registry

dataforge/fn_registry

Fork 0

Commit Graph

Author	SHA1	Message	Date
egutierrez	eff5771b03	feat: jwt_generate, jwt_validate, password_hash, password_verify Fase 2 del issue 0010 — auth core: - jwt_generate/validate: HS256 manual con crypto/hmac + crypto/sha256 - password_hash/verify: wrappers de golang.org/x/crypto/bcrypt (cost 12 default) - JWT rechaza alg != HS256 para mitigar ataque 'alg=none' - hmac.Equal para comparacion constant-time de firmas	2026-04-18 17:39:00 +02:00

Author

SHA1

Message

Date

egutierrez

eff5771b03

feat: jwt_generate, jwt_validate, password_hash, password_verify

Fase 2 del issue 0010 — auth core:
- jwt_generate/validate: HS256 manual con crypto/hmac + crypto/sha256
- password_hash/verify: wrappers de golang.org/x/crypto/bcrypt (cost 12 default)
- JWT rechaza alg != HS256 para mitigar ataque 'alg=none'
- hmac.Equal para comparacion constant-time de firmas

2026-04-18 17:39:00 +02:00

1 Commits