/**
* Method to verify password
*
* @param string $hash
* @param string $attemptedPassword
* @return boolean
*/
public function verifyPassword($hash, $attemptedPassword)
{
$pw = false;
$salt = !empty($this->encryptionOptions['salt']) ? $this->encryptionOptions['salt'] : null;
if (!empty($this->encryptionOptions['secret'])) {
$attemptedPassword .= $this->encryptionOptions['secret'];
}
switch ($this->encryption) {
case Auth::ENCRYPT_NONE:
$pw = $hash == $attemptedPassword;
break;
case Auth::ENCRYPT_MD5:
$pw = $hash == md5($attemptedPassword);
break;
case Auth::ENCRYPT_SHA1:
$pw = $hash == sha1($attemptedPassword);
break;
case Auth::ENCRYPT_CRYPT:
$crypt = new Crypt\Crypt();
$crypt->setSalt($salt);
$pw = $crypt->verify($attemptedPassword, $hash);
break;
case Auth::ENCRYPT_BCRYPT:
$crypt = new Crypt\Bcrypt();
$crypt->setSalt($salt);
// Set cost and prefix, if applicable
if (!empty($this->encryptionOptions['cost'])) {
$crypt->setCost($this->encryptionOptions['cost']);
}
if (!empty($this->encryptionOptions['prefix'])) {
$crypt->setPrefix($this->encryptionOptions['prefix']);
}
$pw = $crypt->verify($attemptedPassword, $hash);
break;
case Auth::ENCRYPT_MCRYPT:
$crypt = new Crypt\Mcrypt();
$crypt->setSalt($salt);
// Set cipher, mode and source, if applicable
if (!empty($this->encryptionOptions['cipher'])) {
$crypt->setCipher($this->encryptionOptions['cipher']);
}
if (!empty($this->encryptionOptions['mode'])) {
$crypt->setMode($this->encryptionOptions['mode']);
}
if (!empty($this->encryptionOptions['source'])) {
$crypt->setSource($this->encryptionOptions['source']);
}
$pw = $crypt->verify($attemptedPassword, $hash);
break;
case Auth::ENCRYPT_CRYPT_MD5:
$crypt = new Crypt\Md5();
$crypt->setSalt($salt);
$pw = $crypt->verify($attemptedPassword, $hash);
break;
case Auth::ENCRYPT_CRYPT_SHA_256:
$crypt = new Crypt\Sha(256);
$crypt->setSalt($salt);
// Set rounds, if applicable
if (!empty($this->encryptionOptions['rounds'])) {
$crypt->setRounds($this->encryptionOptions['rounds']);
}
$pw = $crypt->verify($attemptedPassword, $hash);
break;
case Auth::ENCRYPT_CRYPT_SHA_512:
$crypt = new Crypt\Sha(512);
$crypt->setSalt($salt);
// Set rounds, if applicable
if (!empty($this->encryptionOptions['rounds'])) {
$crypt->setRounds($this->encryptionOptions['rounds']);
}
$pw = $crypt->verify($attemptedPassword, $hash);
break;
}
return $pw;
}
public function testBcrypt()
{
$crypt = new Crypt\Bcrypt();
$crypt->setSalt('Test Salt');
$crypt->setCost('40');
$this->assertEquals('31', $crypt->getCost());
$crypt->setCost('03');
$this->assertEquals('04', $crypt->getCost());
$crypt->setPrefix('$2a$');
$crypt->setCost('10');
$this->assertEquals('Test Salt', $crypt->getSalt());
$this->assertEquals('$2a$', $crypt->getPrefix());
$this->assertEquals('10', $crypt->getCost());
$hash = $crypt->create('12password34');
$this->assertTrue($crypt->verify('12password34', $hash));
}
/**
* Static method encrypt a field value
*
* @param string $value
* @param int $encryption
* @param array $options
* @return string
*/
public static function encrypt($value, $encryption, $options = array())
{
$encValue = $value;
$salt = !empty($options['salt']) ? $options['salt'] : null;
// Encrypt the value
switch ($encryption) {
case Auth::ENCRYPT_CRYPT_SHA_512:
$crypt = new Crypt\Sha(512);
$crypt->setSalt($salt);
// Set rounds, if applicable
if (!empty($options['rounds'])) {
$crypt->setRounds($options['rounds']);
}
$encValue = $crypt->create($value);
break;
case Auth::ENCRYPT_CRYPT_SHA_256:
$crypt = new Crypt\Sha(256);
$crypt->setSalt($salt);
// Set rounds, if applicable
if (!empty($options['rounds'])) {
$crypt->setRounds($options['rounds']);
}
$encValue = $crypt->create($value);
break;
case Auth::ENCRYPT_CRYPT_MD5:
$crypt = new Crypt\Md5();
$crypt->setSalt($salt);
$encValue = $crypt->create($value);
break;
case Auth::ENCRYPT_MCRYPT:
$crypt = new Crypt\Mcrypt();
$crypt->setSalt($salt);
// Set cipher, mode and source, if applicable
if (!empty($options['cipher'])) {
$crypt->setCipher($options['cipher']);
}
if (!empty($options['mode'])) {
$crypt->setMode($options['mode']);
}
if (!empty($options['source'])) {
$crypt->setSource($options['source']);
}
$encValue = $crypt->create($value);
break;
case Auth::ENCRYPT_BCRYPT:
$crypt = new Crypt\Bcrypt();
$crypt->setSalt($salt);
// Set cost and prefix, if applicable
if (!empty($options['cost'])) {
$crypt->setCost($options['cost']);
}
if (!empty($options['prefix'])) {
$crypt->setPrefix($options['prefix']);
}
$encValue = $crypt->create($value);
break;
case Auth::ENCRYPT_CRYPT:
$crypt = new Crypt\Crypt();
$crypt->setSalt($salt);
$encValue = $crypt->create($value);
break;
case Auth::ENCRYPT_SHA1:
$encValue = sha1($value);
break;
case Auth::ENCRYPT_MD5:
$encValue = md5($value);
break;
case Auth::ENCRYPT_NONE:
$encValue = $value;
break;
}
return $encValue;
}
<?php
require_once '../../bootstrap.php';
use Pop\Crypt;
try {
$bc = new Crypt\Bcrypt();
$hash = $bc->create('12password34');
echo $hash . '<br/ >';
if ($bc->verify('12password34', $hash)) {
echo 'Verified!<br />';
} else {
echo 'NOT Verified!<br />';
}
} catch (\Exception $e) {
echo $e->getMessage();
}
