Welcome Guest, Not a member yet? Register   Sign In
CodeIgniter Forums CodeIgniter 4 CodeIgniter 4 Support Password hashing before save
Password hashing before save
  • Offline pippuccio76
    Senior Member
  • ****
  • Posts: 465
    Threads: 199
    Joined: Jun 2017
    Reputation: 2
#1
08-04-2020, 12:14 PM

HI , how can i hash the password before save ?  I use the ci function $model->save()  (without parameter)
Reply
  • Offline jreklund
    Administrator
  • *******
  • Posts: 1,408
    Threads: 3
    Joined: Aug 2017
    Reputation: 42
Reply
  • Offline demyr
    Senior Member
  • ****
  • Posts: 313
    Threads: 17
    Joined: Sep 2018
    Reputation: 6
#3
08-04-2020, 01:43 PM

You can use password_hash - PASSWORD_BCRYPT. For example, on registration you can send the password to the DB :

PHP Code:
$model->save(
           [
        'admin_name' => $this->request->getVar('admin_name'),
        'admin_email' => $this->request->getVar('admin_email'),
        'admin_password' =>password_hash($this->request->getVar('admin_password'), PASSWORD_BCRYPT)
           


On Login :

First retrieve the password from db. For example keep it under a name "$hashed_one".

Then either receive what the user types :

PHP Code:
$admin_password $this->request->getVar('admin_password'); 

And (or receive what the user types here) in the final step:  Match them

PHP Code:
if(password_verify($this->request->getVar('admin_password'),$hashed_one)){

            $start_this_session_please =[
            'admin_email' => $admin_email,
            'admin_password' => $admin_password,
         'admin_name' => $admin_name
          ];
      $session = \Config\Services::session();
      $session->set($start_this_session_please);
      return redirect()->to(site_url('/administrator/dashboard'));
etc
Reply




Theme © iAndrew 2016 - Forum software by © MyBB