Functions for hashing password<\/p>\n
password_hash() \u2013<\/strong><\/p>\n Syntax:<\/strong> string $password<\/strong> \u2013 Password provide by user password_verify() <\/strong> Example \u2013<\/strong><\/p>\n Signup.php<\/strong> index.php (login page)<\/strong>
\n[code language=”php”]
\nstring password_hash(string $password , integer $algo [, array $options ] )
\n[\/code]<\/p>\n
\ninteger $algo<\/strong> \u2013 Password algorithm constant(PASSWORD_DEFAULT and PASSWORD_BCRYPT)
\nPASSWORD_DEFAULT<\/strong> \u2013 uses the BCrypt algorithm to create the hash
\nPASSWORD_BCRYPT<\/strong> \u2013 uses the CRYPT_BLOWFISH algorithm and will return a 60 character string
\n$options<\/strong> \u2013 $options have two indexes.One is cost and another one is salt<\/strong>.
\nCost<\/strong>– Cost is the repetition of algorithm which have default value 10. Which means algorithm will run 10 times to make a strong hash. You can configure your cost value according to your server configuration.
\nSyntax- <\/strong>
\n[code language=”php”]
\n<?php
\n$password=$_POST[‘password’];
\n$options = array(
\n‘salt’ => mcrypt_create_iv(22, MCRYPT_DEV_URANDOM),
\n‘cost’ => 12,
\n);
\n$hashedpass=password_hash($password, PASSWORD_BCRYPT, $options);
\n?>
\n[\/code]<\/p>\n
\npassword_verify() used for checking a password against a password hash, then return a boolean.
\n[code language=”php”]
\nif (password_verify($passowrd, $hashedpass)) {
\necho ‘Password is valid!’;
\n} else {
\necho ‘Invalid password.’;
\n}
\n[\/code]<\/p>\n
\n[code language=”php”]
\n<?php
\n\/\/Database Configuration File
\ninclude(‘config.php’);
\n\/\/error_reporting(0);
\nif(isset($_POST[‘signup’]))
\n{
\n\/\/Getting Post Values
\n$fullname=$_POST[‘fname’];
\n$username=$_POST[‘username’];
\n$email=$_POST[’email’];
\n$mobile=$_POST[‘mobilenumber’];
\n\/\/Password hashing
\n$password=$_POST[‘password’];
\n$options = [‘cost’ => 12];
\n$hashedpass=password_hash($password, PASSWORD_BCRYPT, $options);
\n\/\/ Query for validation of username and email-id
\n$ret=”SELECT * FROM userdata where (UserName=:uname || UserEmail=:uemail)”;
\n$queryt = $dbh -> prepare($ret);
\n$queryt->bindParam(‘:uemail’,$email,PDO::PARAM_STR);
\n$queryt->bindParam(‘:uname’,$username,PDO::PARAM_STR);
\n$queryt -> execute();
\n$results = $queryt -> fetchAll(PDO::FETCH_OBJ);
\nif($queryt -> rowCount() == 0)
\n{
\n\/\/ Query for Insertion
\n$sql=”INSERT INTO userdata(FullName,UserName,UserEmail,UserMobileNumber,LoginPassword) VALUES(:fname,:uname,:uemail,:umobile,:upassword)”;
\n$query = $dbh->prepare($sql);
\n\/\/ Binding Post Values
\n$query->bindParam(‘:fname’,$fullname,PDO::PARAM_STR);
\n$query->bindParam(‘:uname’,$username,PDO::PARAM_STR);
\n$query->bindParam(‘:uemail’,$email,PDO::PARAM_STR);
\n$query->bindParam(‘:umobile’,$mobile,PDO::PARAM_INT);
\n$query->bindParam(‘:upassword’,$hashedpass,PDO::PARAM_STR);
\n$query->execute();
\n$lastInsertId = $dbh->lastInsertId();
\nif($lastInsertId)
\n{
\n$msg=”You have signup Scuccessfully”;
\n}
\nelse
\n{
\n$error=”Something went wrong.Please try again”;
\n}
\n}
\nelse
\n{
\n$error=”Username or Email-id already exist. Please try again”;
\n}
\n}
\n?>
\n<!DOCTYPE html>
\n<html lang=”en”>
\n<head>
\n<meta charset=”utf-8″>
\n<title>PDO | Registration Form<\/title>
\n<meta name=”viewport” content=”width=device-width, initial-scale=1″>
\n<link href=”http:\/\/netdna.bootstrapcdn.com\/twitter-bootstrap\/2.3.2\/css\/bootstrap-combined.min.css” rel=”stylesheet”>
\n<script src=”http:\/\/code.jquery.com\/jquery-1.11.1.min.js”><\/script>
\n<script src=”http:\/\/netdna.bootstrapcdn.com\/twitter-bootstrap\/2.3.2\/js\/bootstrap.min.js”><\/script>
\n<style>
\n.errorWrap {
\npadding: 10px;
\nmargin: 0 0 20px 0;
\nbackground: #fff;
\nborder-left: 4px solid #dd3d36;
\n-webkit-box-shadow: 0 1px 1px 0 rgba(0,0,0,.1);
\nbox-shadow: 0 1px 1px 0 rgba(0,0,0,.1);
\n}
\n.succWrap{
\npadding: 10px;
\nmargin: 0 0 20px 0;
\nbackground: #fff;
\nborder-left: 4px solid #5cb85c;
\n-webkit-box-shadow: 0 1px 1px 0 rgba(0,0,0,.1);
\nbox-shadow: 0 1px 1px 0 rgba(0,0,0,.1);
\n}
\n<\/style>
\n<!–Javascript for check username availability–>
\n<script>
\nfunction checkUsernameAvailability() {
\n$(“#loaderIcon”).show();
\njQuery.ajax({
\nurl: “check_availability.php”,
\ndata:’username=’+$(“#username”).val(),
\ntype: “POST”,
\nsuccess:function(data){
\n$(“#username-availability-status”).html(data);
\n$(“#loaderIcon”).hide();
\n},
\nerror:function (){
\n}
\n});
\n}
\n<\/script>
\n<!–Javascript for check email availability–>
\n<script>
\nfunction checkEmailAvailability() {
\n$(“#loaderIcon”).show();
\njQuery.ajax({
\nurl: “check_availability.php”,
\ndata:’email=’+$(“#email”).val(),
\ntype: “POST”,
\nsuccess:function(data){
\n$(“#email-availability-status”).html(data);
\n$(“#loaderIcon”).hide();
\n},
\nerror:function (){
\nevent.preventDefault();
\n}
\n});
\n}
\n<\/script>
\n<\/head>
\n<body>
\n<form class=”form-horizontal” action=” method=”post”>
\n<fieldset>
\n<div id=”legend” style=”padding-left:4%”>
\n<legend class=””>Register | <a href=”index.php”>Sign in<\/a><\/legend>
\n<\/div>
\n<!–Error Message–>
\n<?php if($error){ ?><div class=”errorWrap”>
\n<strong>Error <\/strong> : <?php echo htmlentities($error);?><\/div>
\n<?php } ?>
\n<!–Success Message–>
\n<?php if($msg){ ?><div class=”succWrap”>
\n<strong>Well Done <\/strong> : <?php echo htmlentities($msg);?><\/div>
\n<?php } ?>
\n<div class=”control-group”>
\n<!– Full name –>
\n<label class=”control-label” for=”fullname”>Full Name<\/label>
\n<div class=”controls”>
\n<input type=”text” id=”fname” name=”fname” pattern=”[a-zA-Z\\s]+” title=”Full name must contain letters only” class=”input-xlarge” required>
\n<p class=”help-block”>Full can contain any letters only<\/p>
\n<\/div>
\n<\/div>
\n<div class=”control-group”>
\n<!– Username –>
\n<label class=”control-label” for=”username”>Username<\/label>
\n<div class=”controls”>
\n<input type=”text” id=”username” name=”username” onBlur=”checkUsernameAvailability()” pattern=”^[a-zA-Z][a-zA-Z0-9-_.]{5,12}$” title=”User must be alphanumeric without spaces 6 to 12 chars” class=”input-xlarge” required>
\n<span id=”username-availability-status” style=”font-size:12px;”><\/span>
\n<p class=”help-block”>Username can contain any letters or numbers, without spaces 6 to 12 chars <\/p>
\n<\/div>
\n<\/div>
\n<div class=”control-group”>
\n<!– E-mail –>
\n<label class=”control-label” for=”email”>E-mail<\/label>
\n<div class=”controls”>
\n<input type=”email” id=”email” name=”email” placeholder=”” onBlur=”checkEmailAvailability()” class=”input-xlarge” required>
\n<span id=”email-availability-status” style=”font-size:12px;”><\/span>
\n<p class=”help-block”>Please provide your E-mail<\/p>
\n<\/div>
\n<\/div>
\n<div class=”control-group”>
\n<!– Mobile Number –>
\n<label class=”control-label” for=”mobilenumber”>Mobile Number <\/label>
\n<div class=”controls”>
\n<input type=”text” id=”mobilenumber” name=”mobilenumber” pattern=”[0-9]{10}” maxlength=”10″ title=”10 numeric digits only” class=”input-xlarge” required>
\n<p class=”help-block”>Mobile Number Contain only 10 digit numeric values<\/p>
\n<\/div>
\n<\/div>
\n<div class=”control-group”>
\n<!– Password–>
\n<label class=”control-label” for=”password”>Password<\/label>
\n<div class=”controls”>
\n<input type=”password” id=”password” name=”password” pattern=”^\\S{4,}$” onchange=”this.setCustomValidity(this.validity.patternMismatch ? ‘Must have at least 4 characters’ : ”); if(this.checkValidity()) form.password_two.pattern = this.value;” required class=”input-xlarge”>
\n<p class=”help-block”>Password should be at least 4 characters<\/p>
\n<\/div>
\n<\/div>
\n<div class=”control-group”>
\n<!– Confirm Password –>
\n<label class=”control-label” for=”password_confirm”>Password (Confirm)<\/label>
\n<div class=”controls”>
\n<input type=”password” id=”password_confirm” name=”password_confirm” pattern=”^\\S{4,}$” onchange=”this.setCustomValidity(this.validity.patternMismatch ? ‘Please enter the same Password as above’ : ”)”” class=”input-xlarge”>
\n<p class=”help-block”>Please confirm password<\/p>
\n<\/div>
\n<\/div>
\n<div class=”control-group”>
\n<!– Button –>
\n<div class=”controls”>
\n<button class=”btn btn-success” type=”submit” name=”signup”>Signup <\/button>
\n<\/div>
\n<\/div>
\n<\/fieldset>
\n<\/form>
\n<script type=”text\/javascript”>
\n<\/script>
\n<\/body>
\n<\/html>
\n[\/code]<\/p>\n
\n[code language=”php”]
\n<?php
\nsession_start();
\n\/\/Database Configuration File
\ninclude(‘config.php’);
\nerror_reporting(0);
\nif(isset($_POST[‘login’]))
\n{
\n\/\/ Getting username\/ email and password
\n$uname=$_POST[‘username’];
\n$password=$_POST[‘password’];
\n\/\/ Fetch data from database on the basis of username\/email and password
\n$sql =”SELECT UserName,UserEmail,LoginPassword FROM userdata WHERE (UserName=:usname || UserEmail=:usname)”;
\n$query= $dbh -> prepare($sql);
\n$query-> bindParam(‘:usname’, $uname, PDO::PARAM_STR);
\n$query-> execute();
\n$results=$query->fetchAll(PDO::FETCH_OBJ);
\nif($query->rowCount() > 0)
\n{
\nforeach ($results as $row) {
\n$hashpass=$row->LoginPassword;
\n}
\n\/\/verifying Password
\nif (password_verify($password, $hashpass)) {
\n$_SESSION[‘userlogin’]=$_POST[‘username’];
\necho “<script type=’text\/javascript’> document.location = ‘welcome.php’; <\/script>”;
\n} else {
\necho “<script>alert(‘Wrong Password’);<\/script>”;
\n}
\n}
\n\/\/if username or email not found in database
\nelse{
\necho “<script>alert(‘User not registered with us’);<\/script>”;
\n}
\n}
\n?>
\n<!DOCTYPE html>
\n<html lang=”en”>
\n<head>
\n<meta charset=”utf-8″>
\n<!– This file has been downloaded from Bootsnipp.com. Enjoy! –>
\n<title>PDO | Login form<\/title>
\n<meta name=”viewport” content=”width=device-width, initial-scale=1″>
\n<link href=”http:\/\/netdna.bootstrapcdn.com\/bootstrap\/3.2.0\/css\/bootstrap.min.css” rel=”stylesheet”>
\n<script src=”http:\/\/code.jquery.com\/jquery-1.11.1.min.js”><\/script>
\n<script src=”http:\/\/netdna.bootstrapcdn.com\/bootstrap\/3.2.0\/js\/bootstrap.min.js”><\/script>
\n<\/head>
\n<body>
\n<link href=”\/\/maxcdn.bootstrapcdn.com\/font-awesome\/4.1.0\/css\/font-awesome.min.css” rel=”stylesheet”>
\n<div id=”login-overlay” class=”modal-dialog”>
\n<div class=”modal-content”>
\n<div class=”modal-header”>
\n<h4 class=”modal-title” id=”myModalLabel”>Login Form<\/h4>
\n<\/div>
\n<div class=”modal-body”>
\n<div class=”row”>
\n<div class=”col-xs-6″>
\n<div class=”well”>
\n<form id=”loginForm” method=”post”>
\n<div class=”form-group”>
\n<label for=”username” class=”control-label”>Username \/ Email id<\/label>
\n<input type=”text” class=”form-control” id=”username” name=”username” required=”” title=”Please enter you username or Email-id” placeholder=”email or username” >
\n<span class=”help-block”><\/span>
\n<\/div>
\n<div class=”form-group”>
\n<label for=”password” class=”control-label”>Password<\/label>
\n<input type=”password” class=”form-control” id=”password” name=”password” placeholder=”Password” value=”” required=”” title=”Please enter your password”>
\n<span class=”help-block”><\/span>
\n<\/div>
\n<button type=”submit” class=”btn btn-success btn-block” name=”login”>Login<\/button>
\n<\/form>
\n<\/div>
\n<\/div>
\n<div class=”col-xs-6″>
\n<p class=”lead”>Register now for <span class=”text-success”>FREE<\/span><\/p>
\n<ul class=”list-unstyled” style=”line-height: 2″>
\n<li><span class=”fa fa-check text-success”><\/span> Lorem ipsum dolor sit amet<\/li>
\n<li><span class=”fa fa-check text-success”><\/span>Lorem ipsum dolor sit amet<\/li>
\n<li><span class=”fa fa-check text-success”><\/span>Lorem ipsum dolor sit amet<\/li>
\n<li><span class=”fa fa-check text-success”><\/span>Lorem ipsum dolor sit amet<\/li>
\n<li><span class=”fa fa-check text-success”><\/span> Lorem ipsum dolor sit amet<\/li>
\n<\/ul>
\n<p><a href=”signup.php” class=”btn btn-info btn-block”>Yes please, register now!<\/a><\/p>
\n<\/div>
\n<\/div>
\n<\/div>
\n<\/div>
\n<\/div>
\n<script type=”text\/javascript”>
\n<\/script>
\n<\/body>
\n<\/html>
\n[\/code]<\/p>\n\n