Menu
I am developing a NodeJS and ReactJS based web application in which I am trying to hash the passwords in multiple routes, one for registration and other for changing password.
For this purpose, I am generating the salt outside both routes so they both utilize the same salt like this:
const salt = bcrypt.genSalt(10);
Now inside the routes, the has is being generated like this:
user.password = await bcrypt.hash(newPassword, salt);
But when I run this, it gives the following console error:
Illegal arguments: string, object
The hashing operation was working fine when I was generating the salt inside the individual routes. What could be the reason?
559
asked Oct 21 '25 15:10
In case anyone else runs into this.
Don't forget to await the genSalt function like so:
const salt = await bcrypt.genSalt(10);
The error: Illegal arguments: string, object tries to explain that one of the arguments passed to the hash function is invalid, since it's type is invalid.
In this case it's the second argument (salt) which expects a string/number but receives an object (the promise object that's returned if you don't await).
Hope that helps 🙂
137
If it helps anyone out there, I've had the same issue but my genSalt code was fine.
My problem was that I had some users whose passwords were uninitialized, so no salt had been generated and it was the bcrypt.compare function that was failing because it was trying to compare to NULL
26
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With
