Changeset View
Changeset View
Standalone View
Standalone View
src/infrastructure/util/password/PhabricatorBcryptPasswordHasher.php
- This file was added.
| <?php | |||||
| final class PhabricatorBcryptPasswordHasher | |||||
| extends PhabricatorPasswordHasher { | |||||
| public function getHumanReadableName() { | |||||
| return pht('bcrypt'); | |||||
| } | |||||
| public function getHashName() { | |||||
| return 'bcrypt'; | |||||
| } | |||||
| public function getHashLength() { | |||||
| return 60; | |||||
| } | |||||
| public function canHashPasswords() { | |||||
| return function_exists('password_hash'); | |||||
| } | |||||
| public function getInstallInstructions() { | |||||
| return pht('Upgrade to PHP 5.5.0 or newer.'); | |||||
| } | |||||
| public function getStrength() { | |||||
| return 2.0; | |||||
| } | |||||
| public function getHumanReadableStrength() { | |||||
| return pht("Good"); | |||||
| } | |||||
| protected function getPasswordHash(PhutilOpaqueEnvelope $envelope) { | |||||
| $raw_input = $envelope->openEnvelope(); | |||||
| // NOTE: The default cost is "10", but my laptop can do a hash of cost | |||||
| // "12" in about 300ms. Since server hardware is often virtualized or old, | |||||
| // just split the difference. | |||||
| $options = array( | |||||
| 'cost' => 11, | |||||
| ); | |||||
| $raw_hash = password_hash($raw_input, CRYPT_BLOWFISH, $options); | |||||
| return new PhutilOpaqueEnvelope($raw_hash); | |||||
| } | |||||
| protected function verifyPassword( | |||||
| PhutilOpaqueEnvelope $password, | |||||
| PhutilOpaqueEnvelope $hash) { | |||||
| return password_verify($password->openEnvelope(), $hash->openEnvelope()); | |||||
| } | |||||
| } | |||||