Thanks for the answer!
Do you mean using the native PHP hash functions: http://php.net/manual/en/
This certainly can be a solution, but, since it's a PHP core function, couldn't it be integrated inside the Joomla! Framework library?
Currently the Simple.php performs the following:
$salt = $this->getSalt(32);
return md5($password . $salt) . ':' . $salt;
Can't the class be updated so to use password_hash() instead?
Il giorno giovedì 22 settembre 2016 10:52:01 UTC+2, Elena Cenacchi ha scritto:Hi,
I am crypting user passwords, before storing them in the database using the following code in my Model:
Anyhow, I notice that often the password is generated in a wrong format: the string contains invalid characters like . / ecc... If I repeat the procedure one or two times, then finally the password is generated in the correct format, and everything works.
A practical example: let's say I want to store the "test" password:
1st trial stores: 44a561c12a9d6a1279058e2a5e3376
2ns trial stores: f084288fddba112578d2f6d9a37cee
3rd trial stores: b41d97a35f4ed1015ca93738410098
4th trial stores: 563e29fa45b0b5dd2cd1afda6172eb
(and this is valid)
The behavior is random, some time the 1st trial is ok, some others it takes more shots (usually < 5).
Do you have any hint about why this happens?
Framework source code: https://github.com/joomla-
Visit http://developer.joomla.org for more information about developing with Joomla!
You received this message because you are subscribed to the Google Groups "Joomla! Framework Development" group.
To unsubscribe from this group and stop receiving emails from it, send an email to joomla-dev-framework+
unsubscribe AT googlegroups.com.
Visit this group at https://groups.google.com/
Please pardon any errors, this message was sent from my iPhone.