Skip to content

Custom function to validate the password hash (wa_password_verify) #348

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 7 commits into
base: master
Choose a base branch
from
Open

Custom function to validate the password hash (wa_password_verify) #348

wants to merge 7 commits into from

Conversation

@dielshin
Copy link
Contributor

@dielshin dielshin commented Dec 14, 2021

It's time to do something about storing passwords in md5 🤪

dielshin and others added 4 commits May 6, 2020 20:39
@dielshin
Send API token via header
faa1785 
Sending an API token via the GET-parameter is not always safe. Need a way to do this safely, for example, through the header.

SR: https://developers.webasyst.ru/forum/35999/ispolzovanie-api-s-bezopasnoy-peredachey-tokena/#comment116939
@dielshin
Merge pull request #1 from dielshin/api-token-via-header
67c4d8e 
Send API token via header
Merge branch 'master' of github.com:webasyst/webasyst-framework
c0ca281 
# Conflicts:
#	wa-system/api/waAPIController.class.php
Calling a custom function to validate the password hash (wa_password_…
1a2d011 
…verify)
@justbackend
Copy link

justbackend commented Dec 18, 2021

How can i download

@WinterSilence
Copy link
Contributor

WinterSilence commented Jan 22, 2022
edited
Loading

you can define wa_password_hash() and generate password hash as you wish

webasyst-framework/wa-system/contact/waContact.class.php

Line 1320 in 3a502bf

if (function_exists('wa_password_hash')) {

@dielshin
Copy link
Contributor Author

dielshin commented Feb 1, 2022

and generate password hash as you wish

Read how the password_verify function works

Leonix pushed a commit that referenced this pull request Mar 18, 2022
This merges pull request #348
5d24719 
Squashed commit of the following:

commit 9999ce9
Author: Di Elshin <[email protected]>
Date:   Thu Mar 17 17:36:57 2022 +0300

    Update waVerificationChannelSMS.class.php

commit cf44051
Author: Di Elshin <[email protected]>
Date:   Thu Mar 17 16:58:41 2022 +0300

    Update waVerificationChannelSMS.class.php

commit 1ef7b4d
Author: Di Elshin <[email protected]>
Date:   Thu Mar 17 16:57:31 2022 +0300

    Update waVerificationChannelEmail.class.php

commit 1a2d011
Author: Dmitry Elshin <[email protected]>
Date:   Tue Dec 14 14:56:21 2021 +0300

    Calling a custom function to validate the password hash (wa_password_verify)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@dielshin @justbackend @WinterSilence