PHP Bcrypt::checkPassword Examples

Example #1

File: profile.php Project: HadrienX/PhoneDeals

     App::error("Veuillez entrer un email approprié");
 }
 if (!preg_match("#^[0-9]{1,}\$#", $_POST['way_num'])) {
     App::error("Veuillez entrer un numéro de voie approprié");
 }
 if (!preg_match("#^[a-zA-Z0-9._-]{2,30}#", $_POST['way_name'])) {
     App::error("Veuillez entrer un nom de voie approprié");
 }
 if (!preg_match("#^[a-zA-Z0-9._-]{2,30}#", $_POST['city'])) {
     App::error("Veuillez entrer une ville approprié");
 }
 if (!preg_match("#^[0-9]{5}\$#", $_POST['zip_code'])) {
     App::error("Veuillez entrer code postal approprié");
 }
 if (isset($_POST['password']) && $_POST['password'] == $_POST['password-confirm']) {
     if (Bcrypt::checkPassword($_POST['password'], $member->password)) {
         if (isset($_POST['new-password']) && !empty($_POST['new-password'])) {
             if (preg_match("#^[a-zA-Z\\@._-]{2,32}#", $_POST['new-password'])) {
                 $new_password = Bcrypt::hashPassword($_POST['new-password']);
                 Member::changePassword($new_password, $member);
                 $msg->success('Votre mot de passe a bien été modifié', 'index.php?page=profile');
             } else {
                 $msg->error('Veuillez entrer un nouveau mot de passe approprié', 'index.php?page=profile');
             }
         }
     } else {
         echo $msg->error('Le mot de passe entré est incorrect, veuillez réessayer', 'index.php?page=profile');
     }
 } else {
     echo $msg->error('Les deux mots de passe ne correspondent pas', 'index.php?page=profile');
 }

Example #2

File: login.php Project: HadrienX/PhoneDeals

<?php

if (!App::isLogged()) {
    try {
        $email = $_POST['email'];
        $password = $_POST['password'];
        PDOConnexion::setParameters('phonedeals', 'root', 'root');
        $db = PDOConnexion::getInstance();
        $sql = "SELECT id, admin, password FROM member WHERE email = :email";
        $sth = $db->prepare($sql);
        $sth->setFetchMode(PDO::FETCH_CLASS | PDO::FETCH_PROPS_LATE, 'Member');
        $sth->execute(array(':email' => $email));
        $member = $sth->fetch();
        if ($member) {
            if (Bcrypt::checkPassword($password, $member->password)) {
                if ($member->id > 0) {
                    $_SESSION['id'] = $member->id;
                    $_SESSION['email'] = $email;
                    if ($member->admin) {
                        $_SESSION['admin'] = true;
                    }
                }
                App::redirect('index.php?page=home');
            }
        }
        App::error('Identifiants incorrects !');
    } catch (PDOException $e) {
        echo 'Erreur de connexion : ' . $e->getMessage() . '<br />';
        die;
    }
} else {