Awesome work! We have covered a lot regarding password security and how hashing a password works.

It’s extremely important to avoid storing plaintext password in a database and to hash password before storing them in order to protect users.

In this lesson we covered:

• What a hashing algorithm is and how it can be used to protect a plaintext password.

• What a salt is and how it’s used to further secure a hashed password.

• How Rainbow Table attacks are used to crack password hashes.

• How to use bcrypt in order to generate a salt and hash a plaintext password.

• How to use bcrypt in order to compare a retrieved password with a password stored in the database.

• How to implement bcrypt in an actual application and use it via user requests to authenticate users.

Bcrypt is an extremely useful package that does a lot of work behind the scenes for us. By applying it in your application, your users should be safe navigating the authentication process and avoid having their accounts hacked!