How to determine if existing password hash can be upgraded to a newer stronger algorithm in PHP

1 Answer

$hashedPassword  = password_hash("1Xq3@d", PASSWORD_DEFAULT);

echo $hashedPassword . "<br />";
    
if (password_verify("1Xq3@d", $hashedPassword))
    if (password_needs_rehash($hashedPassword, PASSWORD_DEFAULT)) 
    {
        $newHashedPassword = password_hash($plaintextPassword, PASSWORD_DEFAULT);
        echo $newHashedPassword . "<br />";
        // Update the database with the new password hash
    }
 
/*
run: 

$2y$10$JTfFwa6bkw1rSW7rySKHJOqo79C/9852ZipHRdEwxwEfYPn/onYvO
  
*/

70+ SQL courses for beginners and professionals

answered Sep 14, 2017 by avibootz

Most popular tags

How to determine if existing password hash can be upgraded to a newer stronger algorithm in PHP

1 Answer

Related questions