php verify password hash code example

Example 1: hash a password php

// To hash the password, use
password_hash("MySuperSafePassword!", PASSWORD_DEFAULT)
  
// To compare hash with plain text, use
password_verify("MySuperSafePassword!", $hashed_password)

Example 2: password_verify php

<?php
$hash = password_hash('rasmuslerdorf');
// the password_hash function will encrypt the password into a 60 character string
if (password_verify('rasmuslerdorf', $hash)) {
    echo 'Password is valid!';
} else {
    echo 'Invalid password.';
}
?>
// the only to decrypt is by using the password_verify() function

Example 3: php password_verify

<?php
/*
Currently the default password hashing method is using BCRYPT
This may change in the future if vulnerabilities are found
in BCRYPT

Other options such as PASSWORD_BCRYPT and PASSWORD_ARGON2ID
may be used instead of PASSWORD_DEFAULT
*/
$passwordHash = password_hash('password123', PASSWORD_DEFAULT);
$passwordCandidate = 'password123'; // Password is correct here

/* 
Check the password using password_verify
password_verify() returns bool(true) if the password is correct
If the password is not correct, it returns bool(false)
*/
if (password_Verify($passwordCandidate, $passwordHash)) {
	echo 'Valid password!';
} else {
	echo 'Invalid password!';
}

Tags:

Php Example