Code Examples -> How to check that the encrypted password in the database is what the user enters? Used to verify mod_auth

	Join us on FaceBook
	Submit Your Code
	Poker Tournaments
	Poker Guide for Developers
	SEO Monitor
	UpTime Monitor
	My Favorite Examples
	My Favorite Articles
	Update Your Profile

More Weber Sites
	PHP Code Search
	Web Development Forums
	Learn MySQL Playing Trivia
	PHPBB2 Templates
	Web Development Resources
	Web Development Content
	Internet Security Software

Recommended Links
	PHPClasses
	PHP Editor
	PHP Jobs
	Vision.To Design
	Ajax Tutorials
	PHP Programming Help
	PHP/MySQL Programming
	Webmaster Resources
	Webmaster Forum
	XML meta language
	website builder

Recommended
	פרייסז - הכח לקנות עובר לידיים שלך
	Texas Holdem Poker Evangelists


BACK		ADD A COMMENT		SEND TO A FRIEND		ADD TO MY FAVORITES		ADD CODE EXAMPLES		PRINT

PHP Code Examples

Title :	How to check that the encrypted password in the database is what the user enters? Used to verify mod_auth_mysql encrypted passwords.
Categories :	MySQL, Databases, Authentication	Boaz Yahav
Date :	Sep 03rd 2001
Grade :	1 of 5 (graded 4 times)
Viewed :	10665
File :	No file for this code example.
Images :	No Images for this code example.

Search :	More code by Boaz Yahav
Action :	Grade This Code Example
Tools :	My Examples List

Code

When using mod_auth_mysql with encrypted passwords (encrypted with the encrypt()
function) you want to be able to let users change their own passwords. For this, you must be
able to ask the user for the old pass and compare it to the encrypted string in the db. From a
first glance, it seems that each time you encrypt() the password you get a different string so
how can you know that this is the password?

The correct way to do this is by taking the first two characters from the encrypted string in the
database and the password the user sent to your script and encrypt them again like this :

Encrypted string in the database : dX8OQBwAA2TOs
Password : MyPass

To confirm do : encrypt('MyPass','dX')

The result will be dX8OQBwAA2TOs.

So if, encrypt('MyPass','dX') == "dX8OQBwAA2TOs" than the user entered the correct pass.

berber

Related Code Examples

	mod_auth_mysql - mod_auth_mysql was written in order to allow users to use the blazing quick speed of MySQL in order to store authentication information for their apache web servers. Categories : Authentication, MySQL, Databases
	PHP4 AND MySQL Authentication Categories : PHP, MySQL, Authentication, Databases
	Authorize Me! An authentication script. Categories : MySQL, Databases, Authentication, PHP
	Implementing a Members ONLY area Categories : PHP, MySQL, Databases, Authentication
	Full membership authentication system. Categories : Authentication, MySQL, PHP, Databases
	Using .htaccess files to authenticate with .htpassword files and with MySql (Works with Apache) Categories : Authentication, MySQL, Apache, Databases, Web Servers
	complete, simple, working example of a login screen/system using php functions, cookies, and a mysql database for begginers. Categories : Authentication, Complete Programs, PHP, MySQL, Databases
	SQL / PHP based Integrated Authentication Categories : PHP, Authentication, Databases, MySQL
	bookmarker - PHP, PHPLIB, MySQL WWW based bookmark manager Categories : MySQL, PHP, MySQL, Complete Programs, Databases
	This program allows you to upload an ODBC ressource - i.e. an MS-Access database to a MySQL server. Categories : Databases, MySQL, Complete Programs, PHP, Databases
	Checks Date-Input from HTML-Forms and converts to YYYY-MM-DD Format for MySQL Date-Fields Categories : MySQL, Date Time, PHP, Databases
	GroupIT Engine v1.00rc1 Categories : PHP, Content Management, MySQL, Databases
	mySQL/PHP/search with multientry form and table output with colored rows Categories : PHP, Beginner Guides, MySQL, HTML and PHP, Databases
	Simple function to return the number of days in a time span between 2 given dates. Categories : PHP, Date Time, MySQL, Databases
	XML element extraction using MySQL 5 Categories : Databases, MySQL, Stored Procedures, XML