There are many hashing algorithms, most of which are not secure because they are easy to brute force. With brute-force attacks, hackers continuously try sending data through a hashing algorithm until something matches. To best protect the user passwords, bcrypt will be our hashing algorithm of choice. Bcrypt is purposely designed to be inefficient and slow (milliseconds rather than microseconds) for the computer to process, thereby making it harder to brute force. To add bcrypt to our project, the package flask-bcrypt will need to be installed and added as a dependency on our requirements.txt, as follows:

...flask-bcrypt...

The flask-bcrypt package will have to be initialized. This is done in the auth module, auth/__