doucao8982 2013-02-04 19:30
浏览 54
已采纳

在CakePHP 2.3中使用bcrypt

I noticed in the 3.2 release of CakePHP they added support for hashing using bcrypt. I'd like to take advantage of this however I can't seem to find how to use it properly.

On my User models beforeSave() method I'm doing this:

if(isset($this->data[$this->alias]['password'])) {
    $this->data[$this->alias]['password'] = Security::hash($this->data[$this->alias]['password'], 'blowfish');
    unset($this->data['User']['passwd']);
}

which successfully saves a bcrypt hash in the database for the user account. However, I'm not sure how I'm meant to then log in the user. My users controller has the following login action:

public function login() {
    if($this->request->is('post')) {
        if($this->Auth->login()) {
            $this->redirect($this->Auth->redirect());
        } else {
            $this->Session->setFlash('Invalid username or password, try again.');
        }
    }
}

but it's saying "Invalid username or password" every time, and I'm certain it's the correct email/password. I think it's because the AuthComponent doesn't know it should use bcrypt but I'm not sure.

Any suggestions?

  • 写回答

3条回答 默认 最新

  • dongquanyu5816 2013-02-05 00:59
    关注

    Alright I managed to work it out. Here's the relevant code:

    In AppController.php:

    public $components = array(
    'Session',
    'Auth' => array(
        'authenticate' => array(
            'Blowfish' => array(
                'fields' => array('username' => 'email')
            )
        ),
        'loginRedirect' => array('controller' => 'pages', 'action' => 'home'),
        'logoutRedirect' => array('controller' => 'pages', 'action' => 'home')
    )
);

    In User.php:

    public function beforeSave($options = array()) {
    if(isset($this->data[$this->alias]['password'])) {
        $this->data[$this->alias]['password'] = Security::hash($this->data[$this->alias]['password'], 'blowfish');
        unset($this->data['User']['passwd']);
    }

    return true;
}
    本回答被题主选为最佳回答 , 对您是否有帮助呢?
    评论
查看更多回答(2条)

报告相同问题?

  • CakePHP 2.3使用bcrypt php
    2013-02-04 19:30
    回答 3 已采纳 Alright I managed to work it out. Here's the relevant code: In AppController.php: public $compon
  • Cakephp 2.3显示图像 php
    2013-07-02 21:30
    回答 1 已采纳 For things that need to have public access for visualization, like css or js files... or in this c
  • cakephp使用PHP Gender扩展 php
    2018-12-05 16:32
    回答 1 已采纳 Without your CakePHP code I can only guess but yes, most likely the namespace creates the problem.
  • PHP使用命令行工具
    2021-03-03 23:34
    2.有许多强大的框架(比如CakePHP和CodeIgniter),让您能够像Rails程序员一样高效。3.能够与MySQL、PostgreSQL、Microsoft?SQLServer,甚至Oracle通信。4.能够轻松地与JavaScript框架集成,比如script.aculo.us和...
  • CakePHP3使用OAuth 2 php
    2016-11-28 17:02
    回答 1 已采纳 You can use UseMuffin/OAuth2 plugin for this purpose. See https://github.com/UseMuffin/OAuth2 for
  • 使用phpunit在cakephp进行硒测试 php selenium
    2017-03-22 14:16
    回答 1 已采纳 I figured a way to get selenium integrated with phpunit in my app with a lot of help from @ndm, he
  • 如何在CakePHP 3使用postGIS php postgresql
    2015-12-15 20:28
    回答 1 已采纳 I got the CakePHP query working with this: $stops = $this->Stops->find('all') ->
  • superBake:CakePHP 2.3.x的superBake存储库
    2021-05-10 09:08
    这意味着该插件应始终与CakePHP的新版本一起使用 只需几个简单的步骤即可对其进行测试: 下载CakePHP (例如)和superBake。 准备Cake并将superBake解压缩到app/Plugin或plugins名为Sb的文件夹使用以下行将...
  • CakePHP 2.3,$ this-> Session-> read('Auth.User.field')是否安全? php
    2013-09-08 19:16
    回答 1 已采纳 Well, depending on the type of authentication, AuthComponent::user() (it's a static method in Cake
  • 如何检查cakephp-2.3控制器使用的型号? php
    2013-03-22 06:47
    回答 1 已采纳 You may try get_class() to find out if it is really using the 'User' model, or a generic 'AppModel
  • cakephp 2.3 - 更改密码方法错误 php
    2013-07-16 15:24
    回答 1 已采纳 Try setting the user id before checking if the user exists Assuming you are trying to change the
  • CakePHP php框架 v5.0.7
    2024-04-07 10:34
    cakephp.org站点的Sites in the wild页面可以看到当前使用CakePHP框架的网站列表。 CakePHP 是一个运用了诸如ActiveRecord、Association Data Mapping、Front Controller和MVC等著名设计模式的快速开发框架。该...
  • SocketException权限被拒绝 - CakePHP 2.3 centos php
    2013-03-06 12:24
    回答 2 已采纳 Apparently your PHP is not allowed to connect to the specified SMTP server. Did you properly confi
  • CakePHP php框架-PHP
    2021-06-20 07:01
    cakephp.org站点的Sites in the wild页面可以看到当前使用CakePHP框架的网站列表。</p><p>CakePHP 是一个运用了诸如ActiveRecord、Association Data Mapping、Front Controller和MVC等著名设计模式的快速开发框架...
  • cakephp打印sql语句的方法
    2020-12-19 14:26
    将以下语句复制到你的代码,可以打印出在这之前所有的sql语句: $sources = ConnectionManager::sourceList(); if (!isset($logs)): $logs = array(); foreach ($sources as $source): $db =& ConnectionManager::...
  • CakePHP(PHP框架) v3.6.5
    2020-10-12 04:38
    CakePHP是一个快速开发PHP的框架,其使用了一些常见的设计模式如ActiveRecord,Association Data Mapping,Front Controller以及MVC。其主要目标在于提供一个令任意水平的PHP开发人员都能够快速开
  • CakePHP (PHP框架)-PHP
    2021-06-20 00:49
    <p>CakePHP是一个快速开发PHP的框架,其使用了一些常见的设计模式如ActiveRecord,Association Data Mapping,Front Controller以及MVC。其主要目标在于提供一个令任意水平的PHP开发人员都能够快速开发web应用的...
  • CakePHP(PHP快速开发框架) v4.2.6 最新版
    2023-11-03 23:28
    Cakephp是一款专用于php开发的编程工具,能够为强悍的程序员们提供...CakePHP是一个用来开发php的框架,目前已经更新到了3.6.8版本,这是一个机遇MVC的php开发框,可以帮助编程人员快速开发作品,信息全面,使用方面
  • CakePHP php框架 v3.4.9
    2020-11-30 04:23
    CakePHP是一个用PHP编写的开源Web应用框架,不过其模型是用Ruby on Rails设计的。作为PHP世界的Rails,CakePHP采纳了RoR的许多优秀特性,成熟度较高。在cakephp.org站点的Sites in the wild页面可以看
  • CakePHP php框架 v3.8.3
    2020-09-30 09:31
    CakePHP是一个用PHP编写的开源Web应用框架,不过其模型是用Ruby on Rails设计的。作为PHP世界的Rails,CakePHP采纳了RoR的许多优秀特性,成熟度较高。在cakephp.org站点的Sites in the wild页面可以看
  • 没有解决我的问题, 去提问

悬赏问题

  • ¥15 LiBeAs的带隙等于0.997eV,计算阴离子的N和P
  • ¥15 关于#windows#的问题:怎么用WIN 11系统的电脑 克隆WIN NT3.51-4.0系统的硬盘
  • ¥15 matlab有关常微分方程的问题求解决
  • ¥15 perl MISA分析p3_in脚本出错
  • ¥15 k8s部署jupyterlab,jupyterlab保存不了文件
  • ¥15 ubuntu虚拟机打包apk错误
  • ¥199 rust编程架构设计的方案 有偿
  • ¥15 回答4f系统的像差计算
  • ¥15 java如何提取出pdf里的文字?
  • ¥100 求三轴之间相互配合画圆以及直线的算法