Laravel Auth-使用md5代替集成的Hash :: make() [英] Laravel Auth - use md5 instead of the integrated Hash::make()

问题描述

因此，我将其网站切换为laravel.我的旧网站目前拥有约500个用户.每个用户都有一个附加的md5哈希作为密码(duh ^^).

So, I'm switching over to laravel for my site. My old site currently holds around 500 users. Each user has a md5 hash attached to them, as the password (duh ^^).

当我切换到laravel时，我希望使用Auth :: attempt 不幸的是，它使用自己的方法来哈希密码字符串.我不希望所有用户都更改密码，因为我要切换到laravel，是否可以使Auth类改用md5，所以我的用户不必切换密码? :)

As I'm switching over to laravel, I wish to use the Auth::attempt unfortunately it uses its own method to hash password strings. I don't want all my users to change their password, because I'm switching to laravel, is it possible to make the Auth class use md5 instead, so my users don't have to switch password? :)

如果是，有人可以告诉我如何做吗?

If yes, can someone show me how?

推荐答案

MD5已经过时了.我建议您不要尝试保留它. 相反，当用户首次登录且Auth::attempt失败时，您应该尝试将其密码与MD5密码进行比较

MD5 is horribly outdated. I recommend that you don't try to keep it. Instead, when a user first logs in, and Auth::attempt fails, you should then try to compare their password to the database as MD5

$user = User::where('username', '=', Input::get('username'))->first();

if(isset($user)) {
    if($user->password == md5(Input::get('password'))) { // If their password is still MD5
        $user->password = Hash::make(Input::get('password')); // Convert to new format
        $user->save();
        Auth::login(Input::get('username'));
    }
}

这篇关于Laravel Auth-使用md5代替集成的Hash :: make()的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！