PasswordEncryptor_LegacyPHPHash

class PasswordEncryptor_LegacyPHPHash extends PasswordEncryptor_PHPHash

Legacy implementation for SilverStripe 2.1 - 2.3, which had a design flaw in password hashing that caused the hashes to differ between architectures due to floating point precision problems in base_convert().

See http://open.silverstripe.org/ticket/3004

Methods

static Array
get_encryptors()

No description

from PasswordEncryptor
static PasswordEncryptor
create_for_algorithm(String $algorithm)

No description

from PasswordEncryptor
String
encrypt(String $password, String $salt = null, Member $member = null)

Return a string value stored in the {@link Member->Password} property.

String
salt(String $password, Member $member = null)

Return a string value stored in the {@link Member->Salt} property.

from PasswordEncryptor
check($hash, $password, $salt = null, $member = null)

This usually just returns a strict string comparison, but is necessary for retain compatibility with password hashed with flawed algorithms - see {@link PasswordEncryptor_LegacyPHPHash} and {@link PasswordEncryptor_Blowfish}

__construct(String $algorithm)

No description

from PasswordEncryptor_PHPHash
string
getAlgorithm()

No description

from PasswordEncryptor_PHPHash

Details

in PasswordEncryptor at line 25
static Array get_encryptors()

Return Value

Array Map of encryptor code to the used class.

in PasswordEncryptor at line 34
static PasswordEncryptor create_for_algorithm(String $algorithm)

Parameters

String $algorithm

Return Value

PasswordEncryptor

Exceptions

PasswordEncryptor_NotFoundException

at line 311
String encrypt(String $password, String $salt = null, Member $member = null)

Return a string value stored in the {@link Member->Password} property.

The password should be hashed with {@link salt()} if applicable.

Parameters

String $password Cleartext password to be hashed
String $salt (Optional)
Member $member (Optional)

Return Value

String Maximum of 512 characters.

in PasswordEncryptor at line 78
String salt(String $password, Member $member = null)

Return a string value stored in the {@link Member->Salt} property.

Parameters

String $password Cleartext password
Member $member (Optional)

Return Value

String Maximum of 50 characters

at line 322
check($hash, $password, $salt = null, $member = null)

This usually just returns a strict string comparison, but is necessary for retain compatibility with password hashed with flawed algorithms - see {@link PasswordEncryptor_LegacyPHPHash} and {@link PasswordEncryptor_Blowfish}

Parameters

$hash
$password
$salt
$member

in PasswordEncryptor_PHPHash at line 278
__construct(String $algorithm)

Parameters

String $algorithm A PHP built-in hashing algorithm as defined by hash_algos()

in PasswordEncryptor_PHPHash at line 291
string getAlgorithm()

Return Value

string