php - Unable to verify password using password_verify -


when user clicks submit button, ajax pass data php scripts check if login valid or invalid.

below, password not verified. data passed(email,password) checklogin class correct, because other data can retreived using email address.it's when comes 

$flag=false;     if (password_verify($this->password, $hashandsalt)) {         $flag=true;     }

its returning false. couldn't spot mistake.can see wrong in script?

js

/*login user*/  $("document").ready(function(){     $("#login-user").submit(function(){         alert("submited");                   var data = {         "action": "test"       };       data = $(this).serialize() + "&" + $.param(data);       $.ajax({         type: "post",         datatype: "text",         url: "login-this-user.php", //relative or absolute path response.php file         data: data,         success: function(data) {             console.log(data);             alert(data);          }       });//end success       return false;     });//end form   });

php

<?php session_start(); include('config.php'); include('class.login.php');  //$return = $_post; $return ='{"email":"jane@ymail.com","pass":"jane","action":"test"}';  //$return['json']= json_encode($return);   //     //below code store in database  $data = json_decode($return, true); $login = new checklogin(); $return_value = $login->checklogin($data["email"],$data["pass"]);  echo $return_value;    ?>

class check login

 <?php  class checklogin {    public $email;    public $password;    public $userid;     public $salt;    public $hpass;        public function __construct()     {      }     public function checklogin($param1, $param2)     {         $this->email=$param1;         $this->password=$param2;          $sql = "select *from agency  agency_email='{$this->email}'";         $statement = connection::$pdo->prepare($sql);         $statement->execute();         while( $row = $statement->fetch()) {         echo "salt ".$salt=$row['agency_salt'];         echo "hash ".$hashandsalt=$row['agency_pass'];           $user_id=$row['agency_id'];          }         $flag=false;         if (password_verify($this->password, $hashandsalt)) {             $flag=true;         }          return $flag;     }   }  ?>

table structure enter image description here

hashing when signing user , storing password:

/*....salting starts........*/ $cost = 10; $salt = strtr(base64_encode(mcrypt_create_iv(16, mcrypt_dev_urandom)), '+', '.'); //$salt = sprintf("$2a$%02d$", $cost) . $salt; $options = array('cost' => $cost,'salt' => $salt);  //$password = crypt($data['password'], $salt); $hash = password_hash($data['passsword'], password_default,$options);   /*..........salting ends..............*/


Comments

Post a Comment

Popular posts from this blog

1111. appearing after print sequence - php -

morning, i have code takes string of shoe sizes, explodes , puts in table. code works , info displayed correctly on page after table there few 1's after table. i'm confused this. so table looks (in columns of 3 on webpage) available in following sizes: 3 4 5 6 9 10 111 here's codes, purpose of example $x = 3|4|6|10|9 function get_sizes_pipe($x) { $counter = 0; $splits = explode("|",$x); asort($splits); $x = print "<table class='greentable'>"; $x .= print "<thead><tr><th scope='col' colspan='3' abbr='starter'>available in following sizes:</th></tr></thead><tbody><tr>"; foreach ($splits $split) { $entry = print "<td>".$split."</td>"; if($counter == 2){ $entry .= print "</tr><tr>"; $counter =0; } else { $counter++; ...
Read more

java - WARN : org.springframework.web.servlet.PageNotFound - No mapping found for HTTP request with URI [/board/] in DispatcherServlet with name 'appServlet' -

this question has answer here: why spring mvc respond 404 , report “no mapping found http request uri […] in dispatcherservlet”? 3 answers i trying making simple bbs i'm encountering following error, warn : org.springframework.web.servlet.pagenotfound - no mapping found http request uri [/board/] in dispatcherservlet name 'appservlet' i have tried solve error many times, have failed. how can solve error? here web.xml, controllerand , servlet-context. my web.xml <?xml version="1.0" encoding="utf-8"?> <web-app version="2.5" xmlns="http://java.sun.com/xml/ns/javaee" xmlns:xsi="http://www.w3.org/2001/xmlschema-instance" xsi:schemalocation="http://java.sun.com/xml/ns/javaee http://java.sun.com/xml/ns/javaee/web-app_2_5.xsd"> <filter> <filter-nam...
Read more

Ruby on Rails, ActiveRecord, Postgres, UTF-8 and ASCII-8BIT encodings -

weirdest error, who’s challenge try , me? spent hours yesterday on , it’s magic. can't believe happening , it's driving me crazy. btw, using: rails 4.2.3 ruby 2.2.3 pg 0.18 encoding.default_internal = encoding.default_external = utf-8 config.encoding = 'utf-8' it has postgres, activerecord , encodings! turns out we’ve been getting these errors whenever create new users on database special characters: encoding::undefinedconversionerror: "\xc3" ascii-8bit utf-8 \xc3 may vary depending on characters. weird part we’ve set since beginning utf-8. makes no sense , digged it, , used script: user.all.each |user| user.attributes.each |name, value| if value.is_a? string puts user.email + name.encoding.to_s + value.encoding.to_s end end end and output of 1 of users, users same: dr_lottahelp@blahblah.comutf-8utf-8 dr_lottahelp@blahblah.comutf-8ascii-8bit dr_lottahelp@blahblah.comutf-8ascii-8bit dr_lottahelp@blahblah.comutf-8asci...
Read more