Creating a password field in mysql
Posted: Wed Nov 16, 2005 3:55 pm
How do you create a password field in mysql that is encrypted like the one on the user table in the mysql database that controls access to the DBMS?
A community of PHP developers offering assistance, advice, discussion, and friendship.
http://forums.devnetwork.net/
Code: Select all
alter table users add OLD_PASSWORD(password) varchar(15);Code: Select all
$query = "insert into myTable (username,password) values ('burrito','".md5("taco")."')";Code: Select all
$query = "insert into myTable (username,password) values ('burrito', md5('taco'))";Code: Select all
$username = 'hawleyjr';
$password = 'abc123';Code: Select all
define('HASH_LEN',20);
//CREATE SALT
$salt = substr(sha1(time()),HASH_LEN);
//create password
$password = $salt . sha1( $salt . $password);
//QUERY:
"INSERT INTO myTable set username = '$username',pass = '$password'"Code: Select all
//QUERY:
"SELECT pass FROM myTable where username = '$username'"
//FROM QUERY:
$passFromDB = 'ccb8e9d800e210ea45da40c25e653e9c4c08d504997bf3d05f14d0fddcbb';
//GET SALT
$salt = substr($passFromDB ,HASH_LEN);
//VALIDATE PASSWORD
if($salt . sha1( $salt . $password) == $passFromDB){
//VALID USERNAME/PASS
}else{
//INVALID USERNAME/PASS
}