darmentrout/generatePassword.php

## generatePassword.php
<?php

// usage: $newpassword = generatePassword(12); // for a 12-char password, upper/lower/numbers.
// functions that use rand() or mt_rand() are not secure according to the PHP manual.

function getRandomBytes( $nbBytes = 32 ){
    $bytes = openssl_random_pseudo_bytes( $nbBytes, $strong );
    if ( false !== $bytes && true === $strong ) {
        return $bytes;
    }
    else {
        throw new \Exception( "Unable to generate secure token from OpenSSL." );
    }
}

// return a random symbol
function generateSymbol(){
    $symbols = ['!', '@', '%', '~'];
    return $symbols[random_int( 0, count($symbols)-1 )];
}

function generatePassword($length){
    $pw_string = substr( preg_replace( "/[^a-zA-Z0-9]/", "", base64_encode( getRandomBytes($length+1) )), 0, $length );
    // insert a random symbol and return the string
    return substr_replace( $pw_string, generateSymbol(), random_int( 1, strlen($pw_string)-1 ), 0 );
}
	<?php

	// usage: $newpassword = generatePassword(12); // for a 12-char password, upper/lower/numbers.
	// functions that use rand() or mt_rand() are not secure according to the PHP manual.

	function getRandomBytes( $nbBytes = 32 ){
	$bytes = openssl_random_pseudo_bytes( $nbBytes, $strong );
	if ( false !== $bytes && true === $strong ) {
	return $bytes;
	}
	else {
	throw new \Exception( "Unable to generate secure token from OpenSSL." );
	}
	}

	// return a random symbol
	function generateSymbol(){
	$symbols = ['!', '@', '%', '~'];
	return $symbols[random_int( 0, count($symbols)-1 )];
	}

	function generatePassword($length){
	$pw_string = substr( preg_replace( "/[^a-zA-Z0-9]/", "", base64_encode( getRandomBytes($length+1) )), 0, $length );
	// insert a random symbol and return the string
	return substr_replace( $pw_string, generateSymbol(), random_int( 1, strlen($pw_string)-1 ), 0 );
	}