Welcome Guest, Not a member yet? Register   Sign In
get the hashed password
#1

I am trying to use bcrypt and I know that the hash is always different when the bcrypt is used, but I am told that I should get the hashed password from the database, and use the non hashed password from the login form, use some method magic, and hey, it should work, right?

I won't paste all the code, just sections that are for the password.

Well, for me that isn't the case and I was wondering if you can take a look my code below. Also its not complete, some things you will see just to test.
Reply
#2

Hi, you can read more about how to use password_hash and password_verify here:
https://paragonie.com/blog/2015/04/secur...ersistence
Reply
#3

Paragon Initiative Enterprises Blog

Implementing Secure User Authentication in PHP Applications with Long-Term Persistence (Login with "Remember Me" Cookies)

Also you can look at Myth/Auth and see how Lonnie did it. Great for learning.
What did you Try? What did you Get? What did you Expect?

Joined CodeIgniter Community 2009.  ( Skype: insitfx )
Reply




Theme © iAndrew 2016 - Forum software by © MyBB