ilBcryptPhpPasswordEncoder Class Reference

Inheritance diagram for ilBcryptPhpPasswordEncoder:

Collaboration diagram for ilBcryptPhpPasswordEncoder:

Public Member Functions
	__construct (array $config=array())
	benchmarkCost ($time_target=0.05)
	getName ()
	isSupportedByRuntime ()
	{{Returns whether or not the encoder is supported by the runtime (PHP, HHVM, ...) Returns boolean }} More...
	getCosts ()
	setCosts ($costs)
	encodePassword ($raw, $salt)
	{Encodes the raw password. Parameters string $raw The password to encode string $salt The salt Returns string The encoded password } More...
	isPasswordValid ($encoded, $raw, $salt)
	{Checks a raw password against an encoded password.The raw password has to be injected into the encoder instance before. Parameters string $encoded An encoded password string $raw A raw password string $salt The salt Returns Boolean true if the password is valid, false otherwise } More...
	requiresReencoding ($encoded)
	{{Returns whether or not the a encoded password needs to be re-encoded. Parameters $encoded string Returns boolean }} More...
Public Member Functions inherited from ilBasePasswordEncoder
	isSupportedByRuntime ()
	{Returns whether or not the encoder is supported by the runtime (PHP, HHVM, ...) Returns boolean } More...
	requiresSalt ()
	{Returns whether or not the encoder requires a salt. Returns boolean } More...
	requiresReencoding ($encoded)
	{Returns whether or not the a encoded password needs to be re-encoded. Parameters $encoded string Returns boolean } More...
	encodePassword ($raw, $salt)
	Encodes the raw password. More...
	isPasswordValid ($encoded, $raw, $salt)
	Checks a raw password against an encoded password. More...
	getName ()
	Returns a unique name/id of the concrete password encoder. More...
	requiresSalt ()
	Returns whether or not the encoder requires a salt. More...
	requiresReencoding ($encoded)
	Returns whether or not the a encoded password needs to be re-encoded. More...
	isSupportedByRuntime ()
	Returns whether or not the encoder is supported by the runtime (PHP, HHVM, ...) More...

Protected Member Functions
	init ()
Protected Member Functions inherited from ilBasePasswordEncoder
	comparePasswords ($known_string, $user_string)
	Compares two passwords. More...
	isPasswordTooLong ($password)
	Checks if the password is too long. More...

Protected Attributes
	$costs = '08'

Additional Inherited Members
Data Fields inherited from ilBasePasswordEncoder
const	MAX_PASSWORD_LENGTH = 4096

Detailed Description

Definition at line 11 of file class.ilBcryptPhpPasswordEncoder.php.

Constructor & Destructor Documentation

__construct()

ilBcryptPhpPasswordEncoder::__construct

(

array

$config = array()

)

Parameters

array

$config

Exceptions

ilPasswordException

Reimplemented in ilBcryptPasswordEncoder.

Definition at line 22 of file class.ilBcryptPhpPasswordEncoder.php.

        {
                if(!empty($config))
                {
                        foreach($config as $key => $value)
                        {
                                switch(strtolower($key))
                                {
                                        case 'cost':
                                                $this->setCosts($value);
                                                break;
                                }
                        }
                }
 
                if(!isset($config['cost']) && static::class == self::class)
                {
                        // Determine the costs only if they are not passed in constructor
                        $this->setCosts($this->benchmarkCost(0.05));
                }
 
                $this->init();
        }

References $config, benchmarkCost(), init(), and setCosts().

Here is the call graph for this function:

Member Function Documentation

benchmarkCost()

ilBcryptPhpPasswordEncoder::benchmarkCost

(

$time_target = 0.05

)

See also

http://php.net/manual/en/function.password-hash.php#example-984

Parameters

float

$time_target

Returns

int

Definition at line 58 of file class.ilBcryptPhpPasswordEncoder.php.

        {
                $cost = 8;
 
                do
                {
                        $cost++;
                        $start = microtime(true);
                        $encoder = new self(array('cost' => $cost));
                        $encoder->encodePassword('test', '');
                        $end = microtime(true);
                }
                while(($end - $start) < $time_target && $cost < 32);
 
                return $cost;
        }

References $start.

Referenced by __construct(), and ilBcryptPhpPasswordEncoderTest\testCostsCanBeDeterminedDynamically().

Here is the caller graph for this function:

encodePassword()

ilBcryptPhpPasswordEncoder::encodePassword	(		$raw,
			$salt
	)

{Encodes the raw password.

Parameters

string	$raw	The password to encode
string	$salt	The salt

Returns

string The encoded password

}

Exceptions

ilPasswordException

Implements ilPasswordEncoder.

Reimplemented in ilBcryptPasswordEncoder.

Definition at line 121 of file class.ilBcryptPhpPasswordEncoder.php.

        {
                if($this->isPasswordTooLong($raw))
                {
                        require_once 'Services/Password/exceptions/class.ilPasswordException.php';
                        throw new ilPasswordException('Invalid password.');
                }
 
                return password_hash($raw, PASSWORD_BCRYPT, array(
                        'cost' => $this->getCosts()
                ));
        }

References getCosts(), and ilBasePasswordEncoder\isPasswordTooLong().

Referenced by ilBcryptPhpPasswordEncoderTest\testExceptionIsRaisedIfThePasswordExceedsTheSupportedLengthOnEncoding(), ilBcryptPhpPasswordEncoderTest\testPasswordShouldBeCorrectlyEncodedAndVerified(), and ilBcryptPhpPasswordEncoderTest\testReencodingIsDetectedWhenNecessary().

Here is the call graph for this function:

Here is the caller graph for this function:

getCosts()

ilBcryptPhpPasswordEncoder::getCosts

(

)

Returns

string

Definition at line 94 of file class.ilBcryptPhpPasswordEncoder.php.

        {
                return $this->costs;
        }

References $costs.

Referenced by ilBcryptPasswordEncoder\encode(), encodePassword(), requiresReencoding(), ilBcryptPasswordEncoderTest\testCostsCanBeRetrievedWhenCostsAreSet(), and ilBcryptPhpPasswordEncoderTest\testCostsCanBeRetrievedWhenCostsAreSet().

Here is the caller graph for this function:

getName()

ilBcryptPhpPasswordEncoder::getName

(

)

Returns

string

Implements ilPasswordEncoder.

Reimplemented in ilBcryptPasswordEncoder.

Definition at line 78 of file class.ilBcryptPhpPasswordEncoder.php.

        {
                return 'bcryptphp';
        }

Referenced by ilBcryptPhpPasswordEncoderTest\testNameShouldBeBcryptPhp().

Here is the caller graph for this function:

init()

ilBcryptPhpPasswordEncoder::init ( )

protected

Reimplemented in ilBcryptPasswordEncoder.

Definition at line 49 of file class.ilBcryptPhpPasswordEncoder.php.

        {
        }

Referenced by __construct().

Here is the caller graph for this function:

isPasswordValid()

ilBcryptPhpPasswordEncoder::isPasswordValid	(		$encoded,
			$raw,
			$salt
	)

{Checks a raw password against an encoded password.The raw password has to be injected into the encoder instance before.

Parameters

string	$encoded	An encoded password
string	$raw	A raw password
string	$salt	The salt

Returns

Boolean true if the password is valid, false otherwise

}

Implements ilPasswordEncoder.

Reimplemented in ilBcryptPasswordEncoder.

Definition at line 137 of file class.ilBcryptPhpPasswordEncoder.php.

        {
                return password_verify($raw, $encoded);
        }

Referenced by ilBcryptPhpPasswordEncoderTest\testPasswordShouldBeCorrectlyEncodedAndVerified(), and ilBcryptPhpPasswordEncoderTest\testPasswordVerificationShouldFailIfTheRawPasswordExceedsTheSupportedLength().

Here is the caller graph for this function:

isSupportedByRuntime()

ilBcryptPhpPasswordEncoder::isSupportedByRuntime

(

)

{{Returns whether or not the encoder is supported by the runtime (PHP, HHVM, ...)

Returns

boolean

}}

Reimplemented from ilBasePasswordEncoder.

Definition at line 86 of file class.ilBcryptPhpPasswordEncoder.php.

        {
                return parent::isSupportedByRuntime() && version_compare(phpversion(), '5.5.0', '>=');
        }

requiresReencoding()

ilBcryptPhpPasswordEncoder::requiresReencoding

(

$encoded

)

{{Returns whether or not the a encoded password needs to be re-encoded.

Parameters

$encoded

string

Returns

boolean

}}

Reimplemented from ilBasePasswordEncoder.

Reimplemented in ilBcryptPasswordEncoder.

Definition at line 145 of file class.ilBcryptPhpPasswordEncoder.php.

        {
                return password_needs_rehash($encoded, PASSWORD_BCRYPT, array(
                        'cost' => $this->getCosts()
                ));
        }

References getCosts().

Referenced by ilBcryptPhpPasswordEncoderTest\testReencodingIsDetectedWhenNecessary().

Here is the call graph for this function:

Here is the caller graph for this function:

setCosts()

ilBcryptPhpPasswordEncoder::setCosts

(

$costs

)

Parameters

string

$costs

Exceptions

ilPasswordException

Definition at line 103 of file class.ilBcryptPhpPasswordEncoder.php.

        {
                if(!empty($costs))
                {
                        $costs = (int)$costs;
                        if($costs < 4 || $costs > 31)
                        {
                                require_once 'Services/Password/exceptions/class.ilPasswordException.php';
                                throw new ilPasswordException('The costs parameter of bcrypt must be in range 04-31');
                        }
                        $this->costs = sprintf('%1$02d', $costs);
                }
        }

References $costs, and sprintf.

Referenced by __construct(), ilBcryptPasswordEncoderTest\testCostsCanBeRetrievedWhenCostsAreSet(), ilBcryptPhpPasswordEncoderTest\testCostsCanBeRetrievedWhenCostsAreSet(), ilBcryptPasswordEncoderTest\testCostsCanBeSetInRange(), ilBcryptPhpPasswordEncoderTest\testCostsCanBeSetInRange(), ilBcryptPasswordEncoderTest\testCostsCannotBeSetAboveRange(), ilBcryptPhpPasswordEncoderTest\testCostsCannotBeSetAboveRange(), ilBcryptPasswordEncoderTest\testCostsCannotBeSetBelowRange(), ilBcryptPhpPasswordEncoderTest\testCostsCannotBeSetBelowRange(), ilBcryptPasswordEncoderTest\testExceptionIsRaisedIfThePasswordExceedsTheSupportedLengthOnEncoding(), ilBcryptPhpPasswordEncoderTest\testExceptionIsRaisedIfThePasswordExceedsTheSupportedLengthOnEncoding(), ilBcryptPasswordEncoderTest\testPasswordShouldBeCorrectlyEncodedAndVerified(), ilBcryptPhpPasswordEncoderTest\testPasswordShouldBeCorrectlyEncodedAndVerified(), ilBcryptPasswordEncoderTest\testPasswordVerificationShouldFailIfTheRawPasswordExceedsTheSupportedLength(), ilBcryptPhpPasswordEncoderTest\testPasswordVerificationShouldFailIfTheRawPasswordExceedsTheSupportedLength(), and ilBcryptPhpPasswordEncoderTest\testReencodingIsDetectedWhenNecessary().

Here is the caller graph for this function:

Field Documentation

$costs

ilBcryptPhpPasswordEncoder::$costs = '08'

protected

Definition at line 16 of file class.ilBcryptPhpPasswordEncoder.php.

Referenced by getCosts(), and setCosts().

---

The documentation for this class was generated from the following file:

• Services/Password/classes/encoders/class.ilBcryptPhpPasswordEncoder.php