• 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
get the hashed password

#1
I am trying to use bcrypt and I know that the hash is always different when the bcrypt is used, but I am told that I should get the hashed password from the database, and use the non hashed password from the login form, use some method magic, and hey, it should work, right?

I won't paste all the code, just sections that are for the password.

Well, for me that isn't the case and I was wondering if you can take a look my code below. Also its not complete, some things you will see just to test.
Reply

#2
Hi, you can read more about how to use password_hash and password_verify here:
https://paragonie.com/blog/2015/04/secur...ersistence
Reply

#3
Paragon Initiative Enterprises Blog

Implementing Secure User Authentication in PHP Applications with Long-Term Persistence (Login with "Remember Me" Cookies)

Also you can look at Myth/Auth and see how Lonnie did it. Great for learning.
What did you Try? What did you Get? What did you Expect?

Joined CodeIgniter Community 2009.  ( Skype: insitfx )
Reply


Digg   Delicious   Reddit   Facebook   Twitter   StumbleUpon  


  Theme © 2014 iAndrew  
Powered By MyBB, © 2002-2020 MyBB Group.