Closed changchengqin closed 5 years ago
In general, hard computational work is an intentional and essential security feature. That's what supplies security against password crackers. If your system can't handle it in reasonable time, either use a faster system for verification or delegate authorization to a service like Google Firebase or Auth0.
Degrading the work time to make it faster would be irresponsible.
There is an open issue which may have a positive impact on performance. You're welcome to contribute to it if the suggestions help.
thank you.
the 'verify' function takes too much time, about 1.3 seconds