How do I extend auth in adonis 4.1 to use a different hashing algorithm

[franciskisiara]

I am using adonis 4.1 but I have legacy express code that generated password hashes for users in the database. The hashes are stored using a different hashing algorithm compared to the one adonis uses.

I have created a custom PapiHashSerializer in app/serializers folder and attached it to the ioc as shown below. However, when I call Hash.verify(password, hashed), I still get false. When I try to console.log anything in the validateCredentials() method in my serializer, I dont get any output so I was wondering when this method is triggered.

On further investigation, I notice a typo, this method is actually defined as validateCredentails() instead of validateCredentials() in the Lucid serializer I am extending. NB ..tails instead of ...tials.

This makes it very difficult to know whether I am heading the right direction or I am completely mistaken in extending auth to make Hash.verify() use a custom algorithm.

The PapiHashSerializer.js file

'use strict'

const sha1 = require('sha1');
const LucidSerializer = require('@adonisjs/auth/src/Serializers/Lucid')

class PapiHashSerializer extends LucidSerializer {
  async validateCredentails (user, password) {
    console.log(user, password) //this just never logs
    if (!user || !user[this._config.password]) {
      return false
    }
    return this.Hash.verify(
      sha1(password),
      user[this._config.password]
    )
  }
}
  
module.exports = PapiHashSerializer

The start/hooks.js file

const { ioc } = require('@adonisjs/fold')
const { hooks } = require('@adonisjs/ignitor')
const PapiHashSerializer = require('../app/Serializers/PapiHashSerializer')

hooks.before.providersRegistered(() => {
  ioc.extend('Adonis/Src/Auth', 'papi', () => {
    const Hash = use('Hash')
    return new PapiHashSerializer(Hash)
  }, 'serializer')
})

The config/auth.js file

'use strict'

/** @type {import('@adonisjs/framework/src/Env')} */
const Env = use('Env')

module.exports = {
  /*
  |--------------------------------------------------------------------------
  | Authenticator
  |--------------------------------------------------------------------------
  |
  | Authentication is a combination of serializer and scheme with extra
  | config to define on how to authenticate a user.
  |
  | Available Schemes - basic, session, jwt, api
  | Available Serializers - lucid, database
  |
  */
  authenticator: 'basic',

  /*
  |--------------------------------------------------------------------------
  | Basic Auth
  |--------------------------------------------------------------------------
  |
  | The basic auth authenticator uses basic auth header to authenticate a
  | user.
  |
  | NOTE:
  | This scheme is not persistent and users are supposed to pass
  | login credentials on each request.
  |
  */
  basic: {
    serializer: 'papi',
    model: 'App/Models/User',
    scheme: 'basic',
    uid: 'email',
    password: 'password'
  },
}