/** * Check that the supplied password or key is valid for this user. * * @param string $password The password to verify * @return boolean */ public function checkPassword($password){ $hasher = new \PasswordHash(datastore::HASH_ITERATIONS); // The password for datastores are stored in the datastore. $currentpass = $this->_usermodel->get('password'); return $hasher->checkPassword($password, $currentpass); }
/** * Encrypt user's password using Blowfish algorithm and bcrypt * @param $password * @param $db_pass * @access public * @return boolean */ public function validatePassword($password, $db_pass) { $check_pass = new PasswordHash(8, false); return $check_pass->checkPassword($password, $db_pass); }
/** * compare a password to a hashed password. * * @param string * @param string * @return boolean */ public function checkPassword($password, $hash) { $hasher = new PasswordHash($this->CI->config->item('hash_logarithm', 'appunto-auth/appunto_auth'), $this->CI->config->item('hash_use_portable', 'appunto-auth/appunto_auth')); return $hasher->checkPassword($password, $hash); }
/** * @param $string * @param $storedHash * @return bool */ public function checkString($string, $storedHash) { $hasher = new \PasswordHash($this->_iterationCount, false); $check = $hasher->checkPassword($string, $storedHash); return $check; }
/** * Check a Vanilla hash. * * @param $Password * @param $StoredHash * @return bool */ function checkVanilla($Password, $StoredHash) { $this->Weak = false; if (!isset($StoredHash[0])) { return false; } if ($StoredHash[0] === '_' || $StoredHash[0] === '$') { $Result = parent::checkPassword($Password, $StoredHash); // Check to see if this password should be rehashed to crypt-blowfish. if (!$this->portable_hashes && CRYPT_BLOWFISH == 1 && substr($StoredHash, 0, 3) === '$P$') { $this->Weak = true; } return $Result; } elseif ($Password && $StoredHash !== '*' && ($Password === $StoredHash || md5($Password) === $StoredHash)) { $this->Weak = true; return true; } return false; }
/** * Check a password using Phpass' hash. * * @param string $Password The plaintext password to check. * @param string $StoredHash The password hash stored in the database. * @return bool Returns **true** if the password matches the hash or **false** if it doesn't. */ public function checkPhpass($Password, $StoredHash) { return parent::checkPassword($Password, $StoredHash); }
/** * Change user's email * * @param string $currentPassword Current user password to check if it can be changed * @param string $newEmail New Email */ public function changeEmail($currentPassword, $newEmail) { $this->_db->beginTransaction(); try { $userInfos = $this->_db->fetchFirstRequest('getUserPassword', array(':id' => $this->_userInfos['ID'])); if (!empty($userInfos)) { $hasher = new PasswordHash(8, false); if ($hasher->checkPassword($currentPassword, $userInfos['password'])) { $this->_db->executeRequest('changeUserEmail', array(':email' => $newEmail, ':id' => $this->_userInfos['ID'])); } else { $this->_messenger->add('error', $this->_lang->get('wrongPassword')); } } } catch (Exception $e) { $this->_db->rollBack(); throw $e; } $this->_db->commit(); return true; }