cluce Posted July 9, 2007 Share Posted July 9, 2007 I have the following salt function... <?php function genHash($Text, $salt = null) { if ($salt === null) { $salt = substr(md5(uniqid(rand(), true)), 0, SALT_LENGTH); } else { $salt = substr($salt, 0, SALT_LENGTH); } return $salt.sha1($salt.$Text); } ?> my INSERT query is .... $sql = "INSERT INTO employees (username, password, f_name, l_name, email) VALUES ('$username', genhash('$password'), '$f_name', '$l_name', '$email')"; mysqli_query($mysqli, $sql); which works as far as I can see my query to get logon info to match the password is... //create and issue the query $sql = "SELECT username, f_name, l_name FROM employees WHERE username = '$checkuser' AND password = 'genHash($checkpassword, 1)' LIMIT 1"; $result = mysqli_query($mysqli, $sql) or die(header("Location: error.html")); can someone tell me if I am matching this right at login? Link to comment https://forums.phpfreaks.com/topic/59125-trying-to-match-a-salt-password-at-login-but-not-working/ Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.