Hi,
I need to add support vb5 to a bridge I wrote so I can have member of my community play poker.
I've read and have some info on how vb uses the new $2y format to encrypt using blowfish, My question is do you guys uses a hardcoded salt or you let the php bcrypt library generate it.
I need that info so I can regenerate the same thing to match the hash password stored on the database.
I haven't tested yet but would the compatible call to the php lib will match the one stored in the database. I was playing around with this one precisely.
For example, if I use the above lib:
<?php
require "lib/password.php";
$hash = password_hash('anypassword', PASSWORD_BCRYPT);
echo $hash;
echo "\n";
Would that value in $hash matches with the one stored in the user table as token field?
I don't have problem with the old format $2a, but the new $2y looks tougher to add correct working code to support it. Guess vb will be the first to give me some challenges there!
Any help is greatly appreciated!
Thanks!
/LR
I need to add support vb5 to a bridge I wrote so I can have member of my community play poker.
I've read and have some info on how vb uses the new $2y format to encrypt using blowfish, My question is do you guys uses a hardcoded salt or you let the php bcrypt library generate it.
I need that info so I can regenerate the same thing to match the hash password stored on the database.
I haven't tested yet but would the compatible call to the php lib will match the one stored in the database. I was playing around with this one precisely.
For example, if I use the above lib:
<?php
require "lib/password.php";
$hash = password_hash('anypassword', PASSWORD_BCRYPT);
echo $hash;
echo "\n";
Would that value in $hash matches with the one stored in the user table as token field?
I don't have problem with the old format $2a, but the new $2y looks tougher to add correct working code to support it. Guess vb will be the first to give me some challenges there!
Any help is greatly appreciated!
Thanks!
/LR
Comment