GoFuckYourself.com - Adult Webmaster Forum - View Single Post - Tech Show logged in users password when using password_hash

Kittens · 11-09-2022, 09:36 AM

No, you do not display the password in anyway possible. That is a security issue. The hash is one way, you do not unhash it to show them the real password "incase they want to change it"

You use the comparing functions to hash their input and compare it with what you have stored. If it comes back good, then you know they typed the right password.

That is all you use it for. Store the hash for retrieval and comparing on login. That's it, do not display it to them.

11-09-2022, 09:36 AM
Kittens 👏 REVOLUTIONARY 👏 Industry Role: Join Date: Jan 2016 Posts: 1,440	No, you do not display the password in anyway possible. That is a security issue. The hash is one way, you do not unhash it to show them the real password "incase they want to change it" You use the comparing functions to hash their input and compare it with what you have stored. If it comes back good, then you know they typed the right password. That is all you use it for. Store the hash for retrieval and comparing on login. That's it, do not display it to them. __________________