github-starred/better-auth
2
0
Fork 0
mirror of https://github.com/better-auth/better-auth.git synced 2026-05-22 22:32:01 -05:00
Code Issues 2.5k Packages Projects Releases 112 Wiki Activity

reafctor(haveibeenpwned): add try catch and timeout

Browse Source
This commit is contained in:
Bereket Engida
2025-11-20 14:27:45 -08:00
parent 9ca43e3372
commit 2c2b990aa2
1 changed files with 12 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files

19
packages/better-auth/src/plugins/haveibeenpwned/index.ts
View File

@@ -29,6 +29,7 @@ async function checkPasswordCompromise(
"Add-Padding": "true",
"User-Agent": "BetterAuth Password Checker",
},
timeout: 5000, // 5s timeout
},
);
@@ -81,15 +82,19 @@ export const haveIBeenPwned = (options?: HaveIBeenPwnedOptions | undefined) => {
password: {
...ctx.password,
async hash(password) {
const c = await getCurrentAuthContext();
if (!c.path || !paths.includes(c.path)) {
try {
const c = await getCurrentAuthContext();
if (!c.path || !paths.includes(c.path)) {
return ctx.password.hash(password);
}
await checkPasswordCompromise(
password,
options?.customPasswordCompromisedMessage,
);
return ctx.password.hash(password);
} catch (e) {
return ctx.password.hash(password);
}
await checkPasswordCompromise(
password,
options?.customPasswordCompromisedMessage,
);
return ctx.password.hash(password);
},
},
},