Discuss

Using Argon2 Secure Hashes

Using the Argon2 hashing algorithm requires a little different workflow for creating and validating the users using Security Provider. In this tutorial we will show you what’s different and how to create users in your database and validate them on login.

You already know how to create a login system, so we won’t show the whole workflow again, as it’s the same. If you don’t know how how to do this, please check: Security and Login

Creating Users in the Database

When creating the users in your database you need to store their hashed password there. For storing the hashed passwords in your database we recommend using a varchar(255) database field.

In the insert record step, where you insert the users in the database, double click the value for the Password column and click the dynamic data picker button:

Select the password input and click the data formatter icon:

Open Cryptographic and then select Password Hash:

Select the hashing algorithm. We select Argon2id:

Click Select:

And click Select to apply the formatting:

And you are done. The password passed by the password input will be stored in the database hashed with the Argon2id algorithm:

Validate Users with Security Provider

Once you have your users’ passwords hashed and stored in the database, open your login server action. Add a Security Provider step and set it up, as usual:

Select the users table, identity, username and password fields. Click OK:

The difference with Argon2 hashing is that you need to enable the Use Password Hash Verify option:

Then add your login step as usual:

And select your username and password inputs here. Note: you should not apply any formatting for the password input value:

And you are done. These are the specific things in creating users and verifying them on login using the Argon2 hashing algorithm.