fix: update superadmin hash to match deployed PASSWORD_PEPPER
Uses pepper: some-random-string-for-password-hashing Password: Admin@2025!
This commit is contained in:
Tiago Yamamoto
parent
9c4954032d
commit
41d7d9ee70
2 changed files with 47 additions and 2 deletions
44
backend/cmd/fixhash/main.go
Normal file
44
backend/cmd/fixhash/main.go
Normal file
|
|
@ -0,0 +1,44 @@
|
|||
package main
|
||||
|
||||
import (
|
||||
"database/sql"
|
||||
"fmt"
|
||||
|
||||
_ "github.com/lib/pq"
|
||||
"golang.org/x/crypto/bcrypt"
|
||||
)
|
||||
|
||||
func main() {
|
||||
db, err := sql.Open("postgres", "postgres://yuki:xl1zfmr6e9bb@db-60059.dc-sp-1.absamcloud.com:26868/gohorsejobs_dev?sslmode=require")
|
||||
if err != nil {
|
||||
fmt.Println("❌ Connection error:", err)
|
||||
return
|
||||
}
|
||||
defer db.Close()
|
||||
|
||||
// USE THE PEPPER FROM THE DEPLOYED BACKEND .env
|
||||
password := "Admin@2025!"
|
||||
pepper := "some-random-string-for-password-hashing" // FROM DEPLOYED .env
|
||||
passwordWithPepper := password + pepper
|
||||
|
||||
newHash, err := bcrypt.GenerateFromPassword([]byte(passwordWithPepper), bcrypt.DefaultCost)
|
||||
if err != nil {
|
||||
fmt.Println("❌ Hash generation error:", err)
|
||||
return
|
||||
}
|
||||
|
||||
fmt.Println("🔐 Generated new hash with CORRECT pepper:")
|
||||
fmt.Println(" Password:", password)
|
||||
fmt.Println(" Pepper:", pepper)
|
||||
fmt.Println(" Hash:", string(newHash))
|
||||
|
||||
result, err := db.Exec("UPDATE users SET password_hash = $1, status = 'active' WHERE identifier = 'superadmin'", string(newHash))
|
||||
if err != nil {
|
||||
fmt.Println("❌ Update error:", err)
|
||||
return
|
||||
}
|
||||
|
||||
rows, _ := result.RowsAffected()
|
||||
fmt.Printf("\n✅ SuperAdmin updated! Rows affected: %d\n", rows)
|
||||
fmt.Println("\n🔄 Tente logar novamente com superadmin / Admin@2025!")
|
||||
}
|
||||
|
|
@ -17,11 +17,12 @@ VALUES (
|
|||
) ON CONFLICT (slug) DO NOTHING;
|
||||
|
||||
-- 2. Insert Super Admin User
|
||||
-- Hash: bcrypt(Admin@2025! + gohorse-pepper) - HARDCODED for consistency
|
||||
-- Hash: bcrypt(Admin@2025! + some-random-string-for-password-hashing)
|
||||
-- This matches PASSWORD_PEPPER from deployed backend .env
|
||||
INSERT INTO users (identifier, password_hash, role, full_name, email, status, active)
|
||||
VALUES (
|
||||
'superadmin',
|
||||
'$2a$10$/AodyEEQtKCjdeNThEUFee6QE/KvEBTzi1AnqQ78nwavkT1XFnw/6',
|
||||
'$2a$10$x7AN/r8MpVylJnd2uq4HT.lZbbNCqHuBuadpsr4xV.KlsleITmR5.',
|
||||
'superadmin',
|
||||
'Super Administrator',
|
||||
'admin@gohorsejobs.com',
|
||||
|
|
|
|||
Loading…
Reference in a new issue