stackoom
  简体   繁体   中英

How do I check if Bcrypt password is correct?

 原文  2017-04-21 15:35:49       php/ laravel/ bcrypt

Question

I was using md5 to hash my passwords but learned that using bcrypt was more secure.

When using md5, it was easy to check whether a password entered in a form was correct. I simply done 

if(md5($request->password) == $user->password)
   //Login or whatever

So how do I do this using bcrypt? I tried 

if(bcrypt($request->password) == $user->password)

But that isn't working.

2 answers

solution1
 4  2017-04-21 15:38:13

Use the attempt() method: 

if (Auth::attempt(['email' => $email, 'password' => $password]))

The attempt method accepts an array of key/value pairs as its first argument. The values in the array will be used to find the user in your database table.

https://laravel.com/docs/5.4/authentication#authenticating-users

Under the hood attempt() uses password_verify() method to check password.

solution2
 1  2017-04-21 16:53:28

You could also use the check method of the Hash Facade 

if (Hash::check($request->password, $user->password)) {
    // The passwords match...
}

https://laravel.com/docs/5.4/hashing#basic-usage

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question How do I store user password with Bcrypt How do I bcrypt password when inserting into MySQL? Bcrypt check password in codeigniter How do I check the password? How do i check for a match for password in database? HOW do I check if password is updated in a table How do you verify a password with PHP/MySQL using BCRYPT How can I bcrypt a password during Yii2 Migrations? I need to check if the password is correct but it is hashed in the database Login Without Correct Password…How Do I Fix?
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM