yii\base\Security::generateSalt PHP Method

Security Class Documentation Datei anzeigen Open project: yiisoft/yii2

generateSalt() protected method

The PHP crypt() built-in function requires, for the Blowfish hash algorithm, a salt string in a specific format: "$2a$", "$2x$" or "$2y$", a two digit cost parameter, "$", and 22 characters from the alphabet "./0-9A-Za-z".

protected generateSalt ( integer $cost = 13 ) : string
$cost	integer	the cost parameter
return	string	the random salt value.

    protected function generateSalt($cost = 13)
    {
        $cost = (int) $cost;
        if ($cost < 4 || $cost > 31) {
            throw new InvalidParamException('Cost must be between 4 and 31.');
        }
        // Get a 20-byte random string
        $rand = $this->generateRandomKey(20);
        // Form the prefix that specifies Blowfish (bcrypt) algorithm and cost parameter.
        $salt = sprintf("\$2y\$%02d\$", $cost);
        // Append the random salt data in the required base64 format.
        $salt .= str_replace('+', '.', substr(base64_encode($rand), 0, 22));
        return $salt;
    }

Security

compareString

decrypt

decryptByKey

decryptByPassword

encrypt

encryptByKey

encryptByPassword

generatePasswordHash

generateRandomKey

generateRandomString

generateSalt

hashData

hkdf

pbkdf2

validateData

validatePassword