vic/comeonin_ecto_password

Ecto type for saving encrypted passwords using Comeonin

Source code at GitHub https://github.com/elixircnx/comeonin

{
  "defaultBranch": "master",
  "description": "Ecto type for saving encrypted passwords using Comeonin",
  "fullName": "vic/comeonin_ecto_password",
  "homepage": "https://github.com/elixircnx/comeonin",
  "language": "Elixir",
  "name": "comeonin_ecto_password",
  "pushedAt": "2025-07-15T04:41:45Z",
  "stargazersCount": 35,
  "updatedAt": "2025-07-15T04:41:48Z",
  "url": "https://github.com/vic/comeonin_ecto_password"
}

Comeonin Ecto Password

A custom Ecto type for storing encrypted passwords using Comeonin

For ecto 1 compatibility use the ecto-1 branch.

Version 3.x is compatible with comeonin ~> 5.0, use version 2.x for compatibility with older versions.

Usage

On your schema, define secure fields with this type:

field :password, Comeonin.Ecto.Password

Then on your changeset simply cast from plain-text params

changeset
|> cast(attrs, [:password])
|> validate_required([:password])

After casting the password will already be encrypted in the changeset, and can be saved to your table’s string column.

To check for validity, do something like:

user = Repo.get_by(User, email: "me@example.org")
Comeonin.Ecto.Password.valid?("plain_password", user.password)

Configuration

In your environment file, choose one of Pbkdf2, Bcrypt, Argon2. The default is ‘Pbkdf2, but you still need to include it in your mix.exs`!

config :comeonin, Ecto.Password, Pbkdf2

# when using pkbdf2
config :comeonin, :pbkdf2_rounds, 120_000
config :comeonin, :pbkdf2_salt_len, 512

# when using bcrypt
config :comeonin, :bcrypt_log_rounds, 14

Also, be sure to look at comeonin config

Installation

Available in Hex, the package can be installed as:

Add comeonin_ecto_password to your list of dependencies in mix.exs:

def deps do
  [{:comeonin_ecto_password, "~> 3.0.0"}]
end