Developer password decryption

Question

Developer password decryption

I need to decrypt the password generated during development.

For example, my password is test123test . devise generated this password:

 $2a$10$vGeVVu.E0XGjlNEa0xMCK.R0SEH0aFuyJpefrq01Axz6WSbHApPEu

I need to decrypt the password and send test123test .

+8

passwords ruby-on-rails encryption devise

Camilo.Orozco Mar 6 '13 at 17:15

source share

3 answers

Use the recovery module in Devise to reset the user password.

 devise :database_authenticatable, :registerable, :token_authenticatable, :recoverable, :timeoutable, :trackable, :validatable, :rememberable

Devise will create a reset password form and send the user a reset password message. The user clicks on the link, again resets his password and characters.

+3

Matt Mar 08 '13 at 20:14

source share

What Leito said is right. You cannot get a plain text password back or it can take a long time. Another thing is that you can check if a given password is equal to an encrypted bcrypt calculator.

bcrypt-calculator

a.Look for the BCrypt tester
b. enter the password you want to check ex: test123test
c.enter encrypt encrypted password ex: $ 2a $ 10 $ vGeVVu.E0XGjlNEa0xMCK.R0SEH0aFuyJpefrq01Axz6WSbHApPEu
click calculate.To find password and hash match

+2

praaveen Sep 06 '15 at 8:42

source share

Leito · Accepted Answer · 2013-03-06T17:29:46+0000

You cannot make that whole point.

Bcrypt will let you compare test123test with $2a$10$vGeVVu.E0XGjlNEa0xMCK.R0SEH0aFuyJpefrq01Axz6WSbHApPEu , but it will never give you the plain text password. You might want to ask how to crack the encrypted bcrypt password (very difficult! Almost impossible, I think)

Jose Valim describes the motivation for choosing bcrypt, citing http://codahale.com/how-to-safely-store-a-password/ from the Google Group.

Developer password decryption

More articles: