Laravel password verification for change

Question

Laravel password verification for change

In Laravel 4, I have the following condition to make sure the user has correctly inserted their current password, and if so, do something.

Here is the code:

if(Auth::user()->password==Hash::make(Input::get('old_password')) ) { echo 'done'; }

But this does not meet the condition. Why?

+6

php laravel laravel-4

user3077503 Feb 02 '14 at 8:57

source share

2 answers

Robbo · Answer 1 · 2014-02-02T09:04:30+0000

Because part of the hash is salt that will never be the same. Instead, you need to use the Hash::check method, which knows what to do correctly. So that...

 if (Hash::check(Input::get('old_password'), Auth::user()->password)) { echo 'done'; }

Verron knowles · Answer 2 · 2014-02-02T09:12:14+0000

Auth :: validate is also an option if your ultimate goal is to make sure that the user is who he / she is speaking.

 $credentials = ['email' => Auth::user()->email, 'password' => Input::get('old_password')]; if (Auth::validate($credentials)) { echo "Successful"; }

Laravel password verification for change

More articles: