cba85/passwordHashing.php

## passwordHashing.php
<?php

// For demonstration purpose only

// Tester de trouver les mots de passe sur https://crackstation.net

$password = 'webstart';

// MD5
echo md5($password);
if ($password === md5($password)) {
  echo 'logged';
}

// SHA1
echo sha1($password);

// Hash
echo hash('sha256', $password);

// Salt
$salt = 'abcdef';
$randomSalt = 'xyz';
$salted = md5($password . $salt . $randomSalt);
echo $salted;
$dbPassword = '...';
if ($dbPassword === $salted) {
  echo 'logged';
}

// Bcrypt / Argon2

/*
SECURED
http://php.net/manual/en/function.crypt.php
http://php.net/manual/en/book.password.php
*/

$hash = password_hash($password, PASSWORD_DEFAULT, [
'cost' => 12,
]);

echo $hash;

var_dump(password_get_info($hash));

if (password_verify($password, $hash)) {
  if (password_needs_rehash($hash, PASSWORD_DEFAULT)) {
      echo 'Needs rehash';
      echo $newHash = password_hash($password, PASSWORD_DEFAULT);
      // Store the new hash
  }
  echo 'logged';
}
	<?php

	// For demonstration purpose only

	// Tester de trouver les mots de passe sur https://crackstation.net

	$password = 'webstart';

	// MD5
	echo md5($password);
	if ($password === md5($password)) {
	echo 'logged';
	}

	// SHA1
	echo sha1($password);

	// Hash
	echo hash('sha256', $password);

	// Salt
	$salt = 'abcdef';
	$randomSalt = 'xyz';
	$salted = md5($password . $salt . $randomSalt);
	echo $salted;
	$dbPassword = '...';
	if ($dbPassword === $salted) {
	echo 'logged';
	}

	// Bcrypt / Argon2

	/*
	SECURED
	http://php.net/manual/en/function.crypt.php
	http://php.net/manual/en/book.password.php
	*/

	$hash = password_hash($password, PASSWORD_DEFAULT, [
	'cost' => 12,
	]);

	echo $hash;

	var_dump(password_get_info($hash));

	if (password_verify($password, $hash)) {
	if (password_needs_rehash($hash, PASSWORD_DEFAULT)) {
	echo 'Needs rehash';
	echo $newHash = password_hash($password, PASSWORD_DEFAULT);
	// Store the new hash
	}
	echo 'logged';
	}