public static function validate_password($password, $correct_hash) { $PBKDF2_HASH_ALGORITHM = "sha256"; $PBKDF2_ITERATIONS = 537; $salt = 'RaA6EnY4vSk66fr74IjNB/kR+/3IpwiF'; $pbkdf2 = base64_decode($correct_hash); return Password::slow_equals($pbkdf2, Password::pbkdf2($PBKDF2_HASH_ALGORITHM, $password, $salt, (int) $PBKDF2_ITERATIONS, strlen($pbkdf2), true)); }