increased bcrypt rounds to 14 for strong security

Kuzma02 · Kuzma02 · commit 091997fcc1ee · 2025-09-13T14:53:36.000+02:00
diff --git a/app/api/register/route.ts b/app/api/register/route.ts
@@ -12,7 +12,7 @@ export const POST = async (request: any) => {
     return new NextResponse("Email is already in use", { status: 400 });
   }
 
-  const hashedPassword = await bcrypt.hash(password, 5);
+  const hashedPassword = await bcrypt.hash(password, 14);
 
   try {
     await prisma.user.create({
diff --git a/server/controllers/users.js b/server/controllers/users.js
@@ -14,7 +14,7 @@ async function getAllUsers(request, response) {
 async function createUser(request, response) {
   try {
     const { email, password, role } = request.body;
-    const hashedPassword = await bcrypt.hash(password, 5);
+    const hashedPassword = await bcrypt.hash(password, 14);
 
     const user = await prisma.user.create({
       data: {
@@ -34,7 +34,7 @@ async function updateUser(request, response) {
   try {
     const { id } = request.params;
     const { email, password, role } = request.body;
-    const hashedPassword = await bcrypt.hash(password, 5);
+    const hashedPassword = await bcrypt.hash(password, 14);
     const existingUser = await prisma.user.findUnique({
       where: {
         id: id,
diff --git a/server/controllers/wishlist.js b/server/controllers/wishlist.js
@@ -1,6 +1,5 @@
 const { PrismaClient } = require("@prisma/client");
 const prisma = new PrismaClient();
-const bcrypt = require("bcryptjs");
 
 async function getAllWishlist(request, response) {
   try {

Original file line number	Diff line number	Diff line change
`@@ -12,7 +12,7 @@ export const POST = async (request: any) => {`
`12`	`12`	`return new NextResponse("Email is already in use", { status: 400 });`
`13`	`13`	`}`
`14`	`14`
`15`		`- const hashedPassword = await bcrypt.hash(password, 5);`
	`15`	`+ const hashedPassword = await bcrypt.hash(password, 14);`
`16`	`16`
`17`	`17`	`try {`
`18`	`18`	`await prisma.user.create({`