Who is already using this function, tell me how to properly organize the processing of passwords with its help so as not to spoil authorization with a password and protect the hash in the database?
approx.
which column to use in the MySQL database
how long should the column be
function handling example
let's say during registration the server receives the password, then it processes it with the help of ala
$finite_password password_hash($password, PASSWORD_DEFAULT); then you write $ finite_password into the database (you can make a field like varchar (255), as recommended on php).
Edit (thanks @ fine). When logging in
password_verify ($(пароль полученный от пользователя), $(хешированный пароль из базы)) password_verify returns TRUE or FALSE, if the value is TRUE then you authorize, and if FALSE is an error, everything is ready. I hope I understand your question correctly.
which column to use in the MySQL database
any suitable. for example, text .
how long should the column be
for example, default.
function handling example
for example, from the documentation page :
$ php -r 'echo password_hash("rasmuslerdorf", PASSWORD_DEFAULT)."\n";' $2y$10$.vGA1O9wmRjrwAVXD98HNOgsNpDczlqm3Jq7KnEd1rVAGv3Fykk1a 
Source: https://ru.stackoverflow.com/questions/437155/
All Articles