[V6] AuthFinder/withAuthFinder always returns Invalid user credentials

[raubinsharya]

I am using Access tokens Guard for auth, when trying to verify user using AuthFinder with correct credential it always returns Invalid user credentials.

Please find the UserModel

import { DateTime } from 'luxon'
import { withAuthFinder } from '@adonisjs/auth'
import hash from '@adonisjs/core/services/hash'
import { compose } from '@adonisjs/core/helpers'
import { BaseModel, beforeSave, column } from '@adonisjs/lucid/orm'
import { DbAccessTokensProvider } from '@adonisjs/auth/access_tokens'

const AuthFinder = withAuthFinder(() => hash.use('bcrypt'), {
  uids: ['email'],
  passwordColumnName: 'password',
})

export default class User extends compose(BaseModel, AuthFinder) {
  @column({ isPrimary: true })
  declare id: number

  @column()
  declare firstName: string

  @column()
  declare middleName: string | null

  @column()
  declare lastName: string | null

  @column()
  declare email: string

  @column()
  declare password: string

  @column.dateTime({ autoCreate: true })
  declare createdAt: DateTime

  @column.dateTime({ autoCreate: true, autoUpdate: true })
  declare updatedAt: DateTime | null

  static accessTokens = DbAccessTokensProvider.forModel(User)

  @beforeSave()
  static async hashPassword(user: User) {
    if (user.$dirty.password) {
      user.password = await hash.make(user.password)
    }
  }
}

[RomainLanz]

Hey @raubinsharya! 👋🏻

You are hashing the password twice. You don't have to use the @beforeSave() hook since the AuthFinder already hash the password for you.

📚 https://docs.adonisjs.com/guides/verifying_user_credentials#hashing-user-password