Problem Statement
You want to be safe online and use different passwords for different websites. However, you are forgetful at times and want to make a program that can match which password belongs to which website without storing the actual password!

This can be done via something called hashing. Hashing is when we take something and convert it into a different, unique identifier. This is done using a hash function. Luckily, there are several resources that can help us with this.

For example, using a hash function called SHA256(...) something as simple as

hello

can be hashed into a much more complex

2cf24dba5fb0a30e26e83b2ac5b9e29e1b161e5c1fa7425e73043362938b9824

Fill out the login(...) function for a website that hashes their passwords. Login should return True if an email's stored password hash in stored_logins is the same as the hash of password_to_check.

(Hint. You will need to use the provided hash_password(...) function. You don't necessarily need to know how it works, just know that hash_password(...) returns the hash for the password!)

In [1]:
from hashlib import sha256  # Importing SHA256 hash function from hashlib module


def login(email, stored_logins, password_to_check):
    """
    Verifies if the provided password matches the stored hashed password for the given email.

    Parameters:
        email (str): The email address of the user trying to log in.
        stored_logins (dict): A dictionary mapping emails to their hashed passwords.
        password_to_check (str): The password input provided by the user during login.

    Returns:
        bool: True if the password matches, False otherwise.
    """
    # Get the hashed version of the input password and compare with stored hash
    return stored_logins[email] == hash_password(password_to_check)


def hash_password(password):
    """
    Hashes a given password using SHA256 and returns its hexadecimal representation.

    Parameters:
        password (str): The plain text password to hash.

    Returns:
        str: SHA256 hashed password in hexadecimal format.
    """
    return sha256(password.encode()).hexdigest()


def main():
    """
    Main function simulates stored login credentials and tests the login function.
    """

    # Predefined hashed login data (emails mapped to SHA256 hashed passwords)
    stored_logins = {
        "example@gmail.com": "5e884898da28047151d0e56f8dc6292773603d0d6aabbdd62a11ef721d1542d8",      # "password"
        "code_in_placer@cip.org": "973607a4ae7b4cf7d96a100b0fb07e8519cc4f70441d41214a9f811577bb06cc",  # "karel"
        "student@stanford.edu": "882c6df720fd99f5eebb1581a1cf975625cea8a160283011c0b9512bb56c95fb"     # "123!456?789"
    }

    # Test login attempts with correct and incorrect passwords
    print(login("example@gmail.com", stored_logins, "word"))         # False
    print(login("example@gmail.com", stored_logins, "password"))     # True

    print(login("code_in_placer@cip.org", stored_logins, "Karel"))   # False
    print(login("code_in_placer@cip.org", stored_logins, "karel"))   # True

    print(login("student@stanford.edu", stored_logins, "password"))  # False
    print(login("student@stanford.edu", stored_logins, "123!456?789"))  # True


# Ensure main() runs when the script is executed directly
if __name__ == '__main__':
    main()


False
True
False
True
False
True
