Hello,
I need to access the user database with a third application made in C++. To this end I need to encript the user password in the same way you do it in PHP. I looked in your code but I remain confused about which steps you used to produce the encripted passaport. Can you share the receipt?
Thanks,
Luigi
Hey ,
In our PHP Login Script two types of Password Hash is supported. Argon2 and MD5.
You can change the Hash type by going to >> General Settings after you are logged in. Below your Account on top right in script.
While Argon2 is more secure and good way to secure passwords but if that's not supported with your desired application you can change back to MD5 , but remember after you change password hash, you would need to change password of each account on site.
The password function is performed in several different locations, like foget password reset, script installation process, user account creation by admin, user register him/herself. If you want to modify any function please tell me which one then i would guide you its location . Thanks
Hello, thanks for the answer.
I have set MD5 type because I have the same under C++.
Can you please tell me where I should look to catch how the password encription is performed? I do not want to modify your PHP function, but given the correct password from the user I want to perform the same encription and match the one in the database. As I told you, I need access to database from a C++ program after the user verification.
For example in a previous login script that I have replaced with your, the encription was done this way:
$encripted_password = md5($secret_hash + $password);
where $secret_hash was a very long string choose at installation. Do you have something similar?
Thanks again,
Luigi
You cannot decrypt the password back. Only encryption can match the password. So in case you don't know what is the real password, but you want to store real password on C++ program or use that. I recommend you add another field in users table of your PHP script and name it real_password, where you can save the real password by user.
I am not using any prefix or Secret Hash with Passwords . The Password is just hashed
$password = md5($password);
Which take $password user input and change it to md5 hash.
So to save real password in your login script, you can even use the user_meta table. which will give you real password according to user ID.
So in file >> lib >> classes >> users.php find These functions to modify to store real password.
function register_user(
function edit_profile(
function update_user(
function reset_pass_user(
function add_user(
And here is the function which you can use in all above funcitons to store the real password to set. If you are using it inside same class users.php
//Save user input password to new variable $realpassword before encryption.
$this->set_user_meta($user_id, 'realPassword', $realpassword);
//And when you want to get the password back. You have to pass $user_id;
//To call this function outside $users class
$user_real_pass = $new_user->get_user_meta($user_id, 'realPassword');
//To call inside the users class use $this-> instead of $new_user->
$user_real_pass = $this->get_user_meta($user_id, 'realPassword');To get the User ID of loged in user you can use Session variable.
$_SESSION['user_id']
Thanks. You need knowledge of PHP to modify and further work on this script. I don't know C++ but SQL cannot be connected with PHP so its upto you how you use both databases together.