public function verifyPassword($password, Object\AbstractObject $object, $updateHash = true)
{
$getter = 'get' . ucfirst($this->getName());
$setter = 'set' . ucfirst($this->getName());
$objectHash = $object->{$getter}();
if (null === $objectHash || empty($objectHash)) {
return false;
}
$result = false;
if ($this->getAlgorithm() === static::HASH_FUNCTION_PASSWORD_HASH) {
$result = true === password_verify($password, $objectHash);
if ($result && $updateHash) {
// password needs rehash (e.g PASSWORD_DEFAULT changed to a stronger algorithm)
if (true === password_needs_rehash($objectHash, PASSWORD_DEFAULT)) {
$newHash = $this->calculateHash($password);
$object->{$setter}($newHash);
$object->save();
}
}
} else {
$hash = $this->calculateHash($password);
$result = $hash === $objectHash;
}
return $result;
}