tao-test/app/generis/helpers/class.PasswordHash.php

68 lines
1.7 KiB
PHP
Raw Permalink Normal View History

2022-08-29 20:14:13 +02:00
<?php
use oat\generis\model\user\PasswordConstraintsException;
use oat\generis\model\user\PasswordConstraintsService;
/**
* Password Hash class.
*
* An helper class focusing on password validation/generation.
*/
class helpers_PasswordHash
{
private $algorithm;
private $saltLength;
public function __construct($algorithm, $saltLength)
{
$this->algorithm = $algorithm;
$this->saltLength = $saltLength;
}
/**
* @param $password
*
* @return string
* @throws PasswordConstraintsException
*/
public function encrypt($password)
{
if (PasswordConstraintsService::singleton()->validate($password)) {
$salt = helpers_Random::generateString($this->getSaltLength());
return $salt . hash($this->getAlgorithm(), $salt . $password);
}
throw new PasswordConstraintsException(
__(
'Password must be: %s',
implode(',', PasswordConstraintsService::singleton()->getErrors())
)
);
}
//needed for creating test taker from LDAP data
public function encryptWithoutValidation($password) {
$salt = helpers_Random::generateString($this->saltLength);
return $salt.hash($this->algorithm, $salt.$password);
}
public function verify($password, $hash)
{
$salt = substr($hash, 0, $this->getSaltLength());
$hashed = substr($hash, $this->getSaltLength());
return hash($this->getAlgorithm(), $salt . $password) === $hashed;
}
protected function getAlgorithm()
{
return $this->algorithm;
}
protected function getSaltLength()
{
return $this->saltLength;
}
}