This repository was archived by the owner on Jan 1, 2026. It is now read-only.
This repository was archived by the owner on Jan 1, 2026. It is now read-only.
Find the right model for rehashing #3
Description
The initial argument for the expired method was to allow for continuous rehashing of passwords on sign up as they became too weak (as defined by days).
The problem with the current expired method is that it is actually cumbersome to use in practice during a sign in, as you would have to hash the same password twice given the way verify works.