/**
* Method to verify password
*
* @param string $hash
* @param string $attemptedPassword
* @return boolean
*/
public function verifyPassword($hash, $attemptedPassword)
{
$pw = false;
$salt = !empty($this->encryptionOptions['salt']) ? $this->encryptionOptions['salt'] : null;
if (!empty($this->encryptionOptions['secret'])) {
$attemptedPassword .= $this->encryptionOptions['secret'];
}
switch ($this->encryption) {
case Auth::ENCRYPT_NONE:
$pw = $hash == $attemptedPassword;
break;
case Auth::ENCRYPT_MD5:
$pw = $hash == md5($attemptedPassword);
break;
case Auth::ENCRYPT_SHA1:
$pw = $hash == sha1($attemptedPassword);
break;
case Auth::ENCRYPT_CRYPT:
$crypt = new Crypt\Crypt();
$crypt->setSalt($salt);
$pw = $crypt->verify($attemptedPassword, $hash);
break;
case Auth::ENCRYPT_BCRYPT:
$crypt = new Crypt\Bcrypt();
$crypt->setSalt($salt);
// Set cost and prefix, if applicable
if (!empty($this->encryptionOptions['cost'])) {
$crypt->setCost($this->encryptionOptions['cost']);
}
if (!empty($this->encryptionOptions['prefix'])) {
$crypt->setPrefix($this->encryptionOptions['prefix']);
}
$pw = $crypt->verify($attemptedPassword, $hash);
break;
case Auth::ENCRYPT_MCRYPT:
$crypt = new Crypt\Mcrypt();
$crypt->setSalt($salt);
// Set cipher, mode and source, if applicable
if (!empty($this->encryptionOptions['cipher'])) {
$crypt->setCipher($this->encryptionOptions['cipher']);
}
if (!empty($this->encryptionOptions['mode'])) {
$crypt->setMode($this->encryptionOptions['mode']);
}
if (!empty($this->encryptionOptions['source'])) {
$crypt->setSource($this->encryptionOptions['source']);
}
$pw = $crypt->verify($attemptedPassword, $hash);
break;
case Auth::ENCRYPT_CRYPT_MD5:
$crypt = new Crypt\Md5();
$crypt->setSalt($salt);
$pw = $crypt->verify($attemptedPassword, $hash);
break;
case Auth::ENCRYPT_CRYPT_SHA_256:
$crypt = new Crypt\Sha(256);
$crypt->setSalt($salt);
// Set rounds, if applicable
if (!empty($this->encryptionOptions['rounds'])) {
$crypt->setRounds($this->encryptionOptions['rounds']);
}
$pw = $crypt->verify($attemptedPassword, $hash);
break;
case Auth::ENCRYPT_CRYPT_SHA_512:
$crypt = new Crypt\Sha(512);
$crypt->setSalt($salt);
// Set rounds, if applicable
if (!empty($this->encryptionOptions['rounds'])) {
$crypt->setRounds($this->encryptionOptions['rounds']);
}
$pw = $crypt->verify($attemptedPassword, $hash);
break;
}
return $pw;
}
public function testShaBitsException()
{
$this->setExpectedException('Pop\\Crypt\\Exception');
$crypt = new Crypt\Sha();
$crypt->setBits(100);
}
/**
* Static method encrypt a field value
*
* @param string $value
* @param int $encryption
* @param array $options
* @return string
*/
public static function encrypt($value, $encryption, $options = array())
{
$encValue = $value;
$salt = !empty($options['salt']) ? $options['salt'] : null;
// Encrypt the value
switch ($encryption) {
case Auth::ENCRYPT_CRYPT_SHA_512:
$crypt = new Crypt\Sha(512);
$crypt->setSalt($salt);
// Set rounds, if applicable
if (!empty($options['rounds'])) {
$crypt->setRounds($options['rounds']);
}
$encValue = $crypt->create($value);
break;
case Auth::ENCRYPT_CRYPT_SHA_256:
$crypt = new Crypt\Sha(256);
$crypt->setSalt($salt);
// Set rounds, if applicable
if (!empty($options['rounds'])) {
$crypt->setRounds($options['rounds']);
}
$encValue = $crypt->create($value);
break;
case Auth::ENCRYPT_CRYPT_MD5:
$crypt = new Crypt\Md5();
$crypt->setSalt($salt);
$encValue = $crypt->create($value);
break;
case Auth::ENCRYPT_MCRYPT:
$crypt = new Crypt\Mcrypt();
$crypt->setSalt($salt);
// Set cipher, mode and source, if applicable
if (!empty($options['cipher'])) {
$crypt->setCipher($options['cipher']);
}
if (!empty($options['mode'])) {
$crypt->setMode($options['mode']);
}
if (!empty($options['source'])) {
$crypt->setSource($options['source']);
}
$encValue = $crypt->create($value);
break;
case Auth::ENCRYPT_BCRYPT:
$crypt = new Crypt\Bcrypt();
$crypt->setSalt($salt);
// Set cost and prefix, if applicable
if (!empty($options['cost'])) {
$crypt->setCost($options['cost']);
}
if (!empty($options['prefix'])) {
$crypt->setPrefix($options['prefix']);
}
$encValue = $crypt->create($value);
break;
case Auth::ENCRYPT_CRYPT:
$crypt = new Crypt\Crypt();
$crypt->setSalt($salt);
$encValue = $crypt->create($value);
break;
case Auth::ENCRYPT_SHA1:
$encValue = sha1($value);
break;
case Auth::ENCRYPT_MD5:
$encValue = md5($value);
break;
case Auth::ENCRYPT_NONE:
$encValue = $value;
break;
}
return $encValue;
}
<?php
require_once '../../bootstrap.php';
use Pop\Crypt;
try {
$sha = new Crypt\Sha();
$hash = $sha->create('12password34');
echo $hash . '<br/ >';
if ($sha->verify('12password34', $hash)) {
echo 'Verified!<br />';
} else {
echo 'NOT Verified!<br />';
}
} catch (\Exception $e) {
echo $e->getMessage();
}