mirror
/
wg-easy
mirror of https://github.com/wg-easy/wg-easy
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
1075 Commits
9 Branches
18 Tags
34 MiB
 
 
 
 
 
Tree: f732270aa9
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'f732270aa9'
${ noResults }
wg-easy/How_to_generate_an_bcrypt_h...

1.4 KiB
Raw Blame History

Generating bcrypt-hashed password

Since version 14 of wg-easy, a password hashed with bcrypt is needed instead of the plain-text password string. This doc explains how to generate the hash based on a plain-text password.

Using Docker + node

The easiest way to generate a bcrypt password hash with wgpw is using docker and node:

docker run ghcr.io/wg-easy/wg-easy node -e 'const bcrypt = require("bcryptjs"); const hash = bcrypt.hashSync("YOUR_PASSWORD", 10); console.log(hash.replace(/\$/g, "$$$$"));'

The hashed password will get printed on your terminal. Copy it and use on the PASSWORD_HASH environment variable.

If you are using docker run for running wg-easy, you must enclose the hash string in single quotes ('...').

Using Docker + wgpw

wg-password (wgpw) is a script that generates bcrypt password hashes. You can use it with docker:

docker run ghcr.io/wg-easy/wg-easy wgpw YOUR_PASSWORD

You will see an output similar to this:

PASSWORD_HASH='$2b$12$coPqCsPtcFO.Ab99xylBNOW4.Iu7OOA2/ZIboHN6/oyxca3MWo7fW'

In this example, the $2b$12$coPqCsPtcFO.Ab99xylBNOW4.Iu7OOA2/ZIboHN6/oyxca3MWo7fW string is your hashed password. For using it with docker-compose, you need to escape the $ characters by adding another $ before them, or they will get interpreted as variables. The final password you can use in docker-compose will look like this:

$$2b$$12$$coPqCsPtcFO.Ab99xylBNOW4.Iu7OOA2/ZIboHN6/oyxca3MWo7fW