Class DefaultPasswordHasher

Default password hashing class.

Namespace: Cake\Auth

Property Summary

$_config protected

array

Runtime config
$_configInitialized protected

bool

Whether the config property has already been configured with defaults
$_defaultConfig protected

array

Default config for this object.

Method Summary

__construct() public

Constructor
_configDelete() protected

Delete a single config key
_configRead() protected

Read a config variable
_configWrite() protected

Write a config variable
check() public

Check hash. Generate hash for user provided password and check against existing hash.
config() public

Usage
configShallow() public

Merge provided config with existing config. Unlike config() which does a recursive merge for nested keys, this method does a simple merge.
hash() public

Generates password hash.
needsRehash() public

Returns true if the password need to be rehashed, due to the password being created with anything else than the passwords generated by this class.

Method Detail

__construct() ¶ public

__construct(array $config = [])

Constructor

Parameters

array $config optional: Array of config.

_configDelete() ¶ protected

_configDelete(string $key): void

Delete a single config key

Parameters

string $key: Key to delete.

Returns

void

Throws

Cake\Core\Exception\Exception
if attempting to clobber existing config

_configRead() ¶ protected

_configRead(string|null $key): mixed

Read a config variable

Parameters

string|null $key: Key to read.

Returns

mixed

_configWrite() ¶ protected

_configWrite(string|array $key, mixed $value, bool|string $merge = false): void

Write a config variable

Parameters

string|array $key: Key to write to.
mixed $value: Value to write.
bool|string $merge optional: True to merge recursively, 'shallow' for simple merge, false to overwrite, defaults to false.

Returns

void

Throws

Cake\Core\Exception\Exception
if attempting to clobber existing config

check() ¶ public

check(string|array $password, string $hashedPassword): bool

Check hash. Generate hash for user provided password and check against existing hash.

Parameters

string|array $password: Plain text password to hash.
string $hashedPassword: Existing hashed password.

Returns

bool

True if hashes match else false.

config() ¶ public

config(string|array|null $key = null, mixed|null $value = null, bool $merge = true): mixed

Usage

Reading the whole config:

$this->config();

Reading a specific value:

$this->config('key');

Reading a nested value:

$this->config('some.nested.key');

Setting a specific value:

$this->config('key', $value);

Setting a nested value:

$this->config('some.nested.key', $value);

Updating multiple config settings at the same time:

$this->config(['one' => 'value', 'another' => 'value']);

Parameters

string|array|null $key optional: The key to get/set, or a complete array of configs.
mixed|null $value optional: The value to set.
bool $merge optional: Whether to recursively merge or overwrite existing config, defaults to true.

Returns

mixed

Config value being read, or the object itself on write operations.

Throws

Cake\Core\Exception\Exception
When trying to set a key that is invalid.

configShallow() ¶ public

configShallow(string|array $key, mixed|null $value = null): $this

Merge provided config with existing config. Unlike config() which does a recursive merge for nested keys, this method does a simple merge.

Setting a specific value:

$this->config('key', $value);

Setting a nested value:

$this->config('some.nested.key', $value);

Updating multiple config settings at the same time:

$this->config(['one' => 'value', 'another' => 'value']);

Parameters

string|array $key: The key to set, or a complete array of configs.
mixed|null $value optional: The value to set.

Returns

$this

The object itself.

hash() ¶ public

hash(string|array $password): bool|string

Generates password hash.

Parameters

string|array $password: Plain text password to hash.

Returns

bool|string

Password hash or false on failure

Links

http://book.cakephp.org/3.0/en/core-libraries/components/authentication.html#hashing-passwords

needsRehash() ¶ public

needsRehash(string $password): bool

Returns true if the password need to be rehashed, due to the password being created with anything else than the passwords generated by this class.

Returns true by default since the only implementation users should rely on is the one provided by default in php 5.5+ or any compatible library

Parameters

string $password: The password to verify

Returns

bool

Property Detail

`$_config` ¶ protected

Runtime config

Type

array

`$_configInitialized` ¶ protected

Whether the config property has already been configured with defaults

Type

bool

`$_defaultConfig` ¶ protected

Default config for this object.

Options

hashType - Hashing algo to use. Valid values are those supported by $algo argument of password_hash(). Defaults to PASSWORD_DEFAULT
hashOptions - Associative array of options. Check the PHP manual for supported options for each hash type. Defaults to empty array.

Type

array

Namespaces

Class DefaultPasswordHasher

Property Summary

Method Summary

__construct() public

_configDelete() protected

_configRead() protected

_configWrite() protected

check() public

config() public

Usage

configShallow() public

hash() public

needsRehash() public

Method Detail

__construct() ¶ public

Parameters

_configDelete() ¶ protected

Parameters

Returns

Throws

_configRead() ¶ protected

Parameters

Returns

_configWrite() ¶ protected

Parameters

Returns

Throws

check() ¶ public

Parameters

Returns

config() ¶ public

Usage

Parameters

Returns

Throws

configShallow() ¶ public

Parameters

Returns

hash() ¶ public

Parameters

Returns

Links

needsRehash() ¶ public

Parameters

Returns

Property Detail

$_config ¶ protected

Type

$_configInitialized ¶ protected

Type

$_defaultConfig ¶ protected

Options

Type

`$_config` ¶ protected

`$_configInitialized` ¶ protected

`$_defaultConfig` ¶ protected