Ten Fingers And A Brain » ssha

Ten Fingers And A Brain » ssha http://ten-fingers-and-a-brain.com Martin Lormes on Wordpress, PHP, XML, FileMaker Fri, 04 Jun 2010 11:04:31 +0000 http://wordpress.org/?v=2.9.2 en hourly 1 {SSHA} Salted SHA1 with PHP http://ten-fingers-and-a-brain.com/2009/08/ssha-php/ http://ten-fingers-and-a-brain.com/2009/08/ssha-php/#comments Sun, 02 Aug 2009 19:36:25 +0000 Martin Lormes http://ten-fingers-and-a-brain.com/2009/08/ssha-php/ I was in need of a PHP class to ~~encrypt~~ hash and verify passwords using salted sha1 hashes. Here it is, quick but not too dirty:

<?php

class SSHA
{

  public static function newSalt()
  {
    return chr(rand(0,255)).chr(rand(0,255)).chr(rand(0,255)).chr(rand(0,255));
  }

  public static function hash($pass,$salt)
  {
    return '{SSHA}'.base64_encode(sha1($pass.$salt,true).$salt);
  }

  public static function getSalt($hash)
  {
    return substr(base64_decode(substr($hash,-32)),-4);
  }

  public static function newHash($pass)
  {
    return self::hash($pass,self::newSalt());
  }

  public static function verifyPassword($pass,$hash)
  {
    return $hash == self::hash($pass,self::getSalt($hash));
  }

}

]]> http://ten-fingers-and-a-brain.com/2009/08/ssha-php/feed/ 0