Changeset 2942065
- Timestamp:
- 07/23/2023 11:19:01 AM (13 months ago)
- Location:
- password-hash
- Files:
-
- 6 edited
Legend:
- Unmodified
- Added
- Removed
-
password-hash/tags/3.0/readme.txt
r2942064 r2942065 25 25 to verify the passwords directly from the database too. Since WordPress has its own password hashing algorithm, we decided to make this plugin to address that problem. 26 26 With this plugin, passwords generated by both WordPress and other custom applications now use the PHP's default `password_hash()` functions without compromising any of the applications' security. 27 28 27 29 28 30 == Installation == -
password-hash/tags/3.0/src/PasswordHash.php
r2942064 r2942065 69 69 * 70 70 */ 71 public function checkPassword( $password,$hash, $user_id = ''): bool {71 public function checkPassword( $hash, $user_id = ''): bool { 72 72 // Check if the hash uses Password API. 73 73 $info = password_get_info($hash); … … 86 86 87 87 /** 88 * Hash password using @ see password_hash() function.88 * Hash password using @ 89 89 * 90 * @param string $password Plaintext password91 90 * @return false|string 91 92 92 93 */ 93 public function getHash( $password) {94 public function getHash($password) { 94 95 return password_hash($password, $this->algorithm, $this->algorithm_options); 95 96 } 96 97 97 98 /** 98 * Sets password hash taken from @ see wp_hash_password().99 * Sets password hash taken from @. 99 100 * 100 * @param string $password password in plain text.101 101 * @param int $user_id User ID of the user. 102 102 * @return bool|string 103 104 103 105 */ 104 public function updateHash( $password,$user_id) {106 public function updateHash( $user_id) { 105 107 $hash = $this->getHash($password); 106 108 $fields = [ 'user_pass' => &$hash, 'user_activation_key' => '' ]; -
password-hash/tags/3.0/wp-php-password-hash.php
r2942064 r2942065 3 3 * Plugin Name: PHP Native Password Hash 4 4 * Version: 3.0 5 * Description: Swaps out WordPress's password hashing mechanism with PHP 5.5's `password_hash()` functions set, and automatically rehashes the existing passwords on users next successful login. Provides safety against dictionary attacks, time-attacks, brute-force attacks.5 * Description: Swaps out WordPress's password hashing mechanism with PHP 5.5's `password_hash()` functions set, and automatically rehashes the existing passwords on users next successful login. Provides safety against dictionary attacks, time-attacks, brute-force attacks. 6 6 * Licence: GPLv2 or later 7 7 * Author: Ayesh Karunaratne -
password-hash/trunk/readme.txt
r2942064 r2942065 25 25 to verify the passwords directly from the database too. Since WordPress has its own password hashing algorithm, we decided to make this plugin to address that problem. 26 26 With this plugin, passwords generated by both WordPress and other custom applications now use the PHP's default `password_hash()` functions without compromising any of the applications' security. 27 28 27 29 28 30 == Installation == -
password-hash/trunk/src/PasswordHash.php
r2942064 r2942065 69 69 * 70 70 */ 71 public function checkPassword( $password,$hash, $user_id = ''): bool {71 public function checkPassword( $hash, $user_id = ''): bool { 72 72 // Check if the hash uses Password API. 73 73 $info = password_get_info($hash); … … 86 86 87 87 /** 88 * Hash password using @ see password_hash() function.88 * Hash password using @ 89 89 * 90 * @param string $password Plaintext password91 90 * @return false|string 91 92 92 93 */ 93 public function getHash( $password) {94 public function getHash($password) { 94 95 return password_hash($password, $this->algorithm, $this->algorithm_options); 95 96 } 96 97 97 98 /** 98 * Sets password hash taken from @ see wp_hash_password().99 * Sets password hash taken from @. 99 100 * 100 * @param string $password password in plain text.101 101 * @param int $user_id User ID of the user. 102 102 * @return bool|string 103 104 103 105 */ 104 public function updateHash( $password,$user_id) {106 public function updateHash( $user_id) { 105 107 $hash = $this->getHash($password); 106 108 $fields = [ 'user_pass' => &$hash, 'user_activation_key' => '' ]; -
password-hash/trunk/wp-php-password-hash.php
r2942064 r2942065 3 3 * Plugin Name: PHP Native Password Hash 4 4 * Version: 3.0 5 * Description: Swaps out WordPress's password hashing mechanism with PHP 5.5's `password_hash()` functions set, and automatically rehashes the existing passwords on users next successful login. Provides safety against dictionary attacks, time-attacks, brute-force attacks.5 * Description: Swaps out WordPress's password hashing mechanism with PHP 5.5's `password_hash()` functions set, and automatically rehashes the existing passwords on users next successful login. Provides safety against dictionary attacks, time-attacks, brute-force attacks. 6 6 * Licence: GPLv2 or later 7 7 * Author: Ayesh Karunaratne
Note: See TracChangeset
for help on using the changeset viewer.