Newbie Spellweaver
- Joined
- Jul 9, 2012
- Messages
- 10
- Reaction score
- 2
Hi all, I need some help with the password algorithm.
Account creation was easy and simple with auto registration. But, what if someone has to change their password?
I understand that the password is encrypted using BCrypt with $2a$10. However, I was unable to get a match of the hashed password in the db and the raw password string. I've also wrote a simple PHP to encrypt the password and update the account's password, but I get an error of incorrect account information.
Does anyone have a solution or could point out what were somethings done to the password string before it was hashed using BCrypt? Been stuck at these for the past few days... Any help would be appreciated!
Account creation was easy and simple with auto registration. But, what if someone has to change their password?
I understand that the password is encrypted using BCrypt with $2a$10. However, I was unable to get a match of the hashed password in the db and the raw password string. I've also wrote a simple PHP to encrypt the password and update the account's password, but I get an error of incorrect account information.
Does anyone have a solution or could point out what were somethings done to the password string before it was hashed using BCrypt? Been stuck at these for the past few days... Any help would be appreciated!
