Goal-Calibration

History

Yisroel Baum b1247d2fa1 add PasswordHasher interface with bcrypt implementation Introduce an injectable abstraction over password_hash and password_verify so callers can be swapped for a fast fake in tests without paying bcrypt's CPU cost. The bcrypt implementation is a direct passthrough using PASSWORD_DEFAULT, matching the prior inline behavior, so existing stored hashes continue to verify. Wired into the DI container alongside the other auth primitives (Clock, TokenGenerator). No callers reference it yet, so production behavior is unchanged.	2026-04-26 09:06:17 +03:00
..
app.php	wire auth routes and middleware groups	2026-04-24 13:28:58 +03:00
container.php	add PasswordHasher interface with bcrypt implementation	2026-04-26 09:06:17 +03:00

add PasswordHasher interface with bcrypt implementation

Introduce an injectable abstraction over password_hash and
password_verify so callers can be swapped for a fast fake in tests
without paying bcrypt's CPU cost. The bcrypt implementation is a
direct passthrough using PASSWORD_DEFAULT, matching the prior inline
behavior, so existing stored hashes continue to verify.

Wired into the DI container alongside the other auth primitives
(Clock, TokenGenerator). No callers reference it yet, so production
behavior is unchanged.

2026-04-26 09:06:17 +03:00

app.php

wire auth routes and middleware groups

2026-04-24 13:28:58 +03:00

container.php

add PasswordHasher interface with bcrypt implementation

2026-04-26 09:06:17 +03:00