dr5648 2016-04-10 18:31
浏览 18
已采纳

注册和登录时,PHP密码哈希不一样[关闭]

When a user registers and logs in, I use the same password_hash function to hash the plain-text password.

password_hash($password, PASSWORD_DEFAULT)

However the password is not the same.

I can prove this another way by simply registering two users with the same password.

For example "admin" turns into "$2y$10$SyqILazLbo4jJVYvxYfwW.WgHUnSi.cRMETWoMjZXwMNa4H4tYELK"

on one user, and "$2y$10$gXfVz6oH4afxAL.7ytFJseZV3VERxbSYXqN7FYsRzH4IrjJw9uyO6" on another. This means the password_hash will never be the same, so user cann ever log in.

What am I doing wrong?

  • 写回答

2条回答 默认 最新

  • dongtou2016 2016-04-10 18:45
    关注

    You need to use password_verify for verifying if password is correct or not. Something like this 

    <?php

$password = "rasmuslerdorf";

$hash =  password_hash($password, PASSWORD_DEFAULT);

if (password_verify($password, $hash)) {
  echo 'Password is valid!';
} else {
  echo 'Invalid password.';
}

?>

    reference page

    本回答被题主选为最佳回答 , 对您是否有帮助呢?
    评论
查看更多回答(1条)

报告相同问题?

悬赏问题

  • ¥15 如何让企业微信机器人实现消息汇总整合
  • ¥50 关于#ui#的问题:做yolov8的ui界面出现的问题
  • ¥15 如何用Python爬取各高校教师公开的教育和工作经历
  • ¥15 TLE9879QXA40 电机驱动
  • ¥20 对于工程问题的非线性数学模型进行线性化
  • ¥15 Mirare PLUS 进行密钥认证?(详解)
  • ¥15 物体双站RCS和其组成阵列后的双站RCS关系验证
  • ¥20 想用ollama做一个自己的AI数据库
  • ¥15 关于qualoth编辑及缝合服装领子的问题解决方案探寻
  • ¥15 请问怎么才能复现这样的图呀