At our January monthly meetup MemphisPHP founder Jeremy Kendall will be talking about the Password Validator package that he wrote to ‘…make it (more) trivial to use the new password hash functions in your application. Just add the validator to your authentication script and you’re up and running.’

Password Validator validates password_hash generated passwords, rehashes passwords as necessary, and will upgrade legacy passwords.

Read the introductory blog post: PHP Password Hashing: A Dead Simple Implementation

Password Validator is available for all versions of PHP >= 5.3.7.

Comments

Comments are closed.

Enjoyed this talk and thought the example code were well presented and explained. Also though the use of decorators was an interested way to solve the problem of having to check for returned values.

The talk was excellent. Added a whole new slew of things for me to care about in the future.

Really enjoyed the talk—great explanations for the reasoning to use password_hash and how to use his PasswordValidator library to easily implement in to an application.

As I mentioned to you last night, I'm stuck with phpass for the timebeing, but I still felt like I got a lot out of the talk. For one thing, I'd never have considered decorators as a solution to the returned values problem.

My one suggestion would be to actually wear shoes next time.