2013-05-20 06:44:35 +00:00
|
|
|
<?php
|
|
|
|
/**
|
2017-06-10 21:33:55 +00:00
|
|
|
* CakePHP(tm) : Rapid Development Framework (https://cakephp.org)
|
2017-06-10 22:10:52 +00:00
|
|
|
* Copyright (c) Cake Software Foundation, Inc. (https://cakefoundation.org)
|
2013-05-20 06:44:35 +00:00
|
|
|
*
|
|
|
|
* Licensed under The MIT License
|
|
|
|
* For full copyright and license information, please see the LICENSE.txt
|
|
|
|
* Redistributions of files must retain the above copyright notice.
|
|
|
|
*
|
2017-06-10 22:10:52 +00:00
|
|
|
* @copyright Copyright (c) Cake Software Foundation, Inc. (https://cakefoundation.org)
|
2017-06-10 21:33:55 +00:00
|
|
|
* @link https://cakephp.org CakePHP(tm) Project
|
2013-06-02 19:34:00 +00:00
|
|
|
* @since CakePHP(tm) v 2.4.0
|
2017-06-10 22:23:14 +00:00
|
|
|
* @license https://opensource.org/licenses/mit-license.php MIT License
|
2013-05-20 06:44:35 +00:00
|
|
|
*/
|
2013-11-18 10:56:00 +00:00
|
|
|
|
2013-05-20 06:44:35 +00:00
|
|
|
App::uses('AbstractPasswordHasher', 'Controller/Component/Auth');
|
|
|
|
App::uses('Security', 'Utility');
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Blowfish password hashing class.
|
|
|
|
*
|
|
|
|
* @package Cake.Controller.Component.Auth
|
|
|
|
*/
|
|
|
|
class BlowfishPasswordHasher extends AbstractPasswordHasher {
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Generates password hash.
|
|
|
|
*
|
|
|
|
* @param string $password Plain text password to hash.
|
|
|
|
* @return string Password hash
|
2017-06-10 22:15:34 +00:00
|
|
|
* @link https://book.cakephp.org/2.0/en/core-libraries/components/authentication.html#using-bcrypt-for-passwords
|
2013-05-20 06:44:35 +00:00
|
|
|
*/
|
|
|
|
public function hash($password) {
|
|
|
|
return Security::hash($password, 'blowfish', false);
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Check hash. Generate hash for user provided password and check against existing hash.
|
|
|
|
*
|
|
|
|
* @param string $password Plain text password to hash.
|
2014-05-31 21:36:05 +00:00
|
|
|
* @param string $hashedPassword Existing hashed password.
|
2014-07-03 13:36:42 +00:00
|
|
|
* @return bool True if hashes match else false.
|
2013-05-20 06:44:35 +00:00
|
|
|
*/
|
|
|
|
public function check($password, $hashedPassword) {
|
|
|
|
return $hashedPassword === Security::hash($password, 'blowfish', $hashedPassword);
|
|
|
|
}
|
|
|
|
|
|
|
|
}
|