Joomla 3.4 密码生成方法 [英] Joomla 3.4 password generation method

问题描述

我不知道 Joomla 如何加密密码.我的问题是我想在一个简单的 php 页面中使用一个表单并且没有任何 OOP 方法来制作与 Jommla 一样的确切方法.

I can't find out how Joomla encrypted passwords. My problem is that i want to make the exact method as Jommla does in a simple php page with a form and without any OOP method.

这是我输入的密码:测试

So this is my input as a password: test

这是我在 Joomla 数据库中作为加密密码的输出:$2y$10$XXrVok3/3Otqg6FmqFzUmObA.rLpLt.BswwSJ7d.iCPoGSJtcqSvm

and this is my output as an ancrypted password in Joomla database: $2y$10$XXrVok3/3Otqg6FmqFzUmObA.rLpLt.BswwSJ7d.iCPoGSJtcqSvm

我发现它可能与 BLOWFISH 加密有关，但它需要其他东西(例如:在数据库中我找不到生成的盐或令牌)

I found out that it is maybe in connection with the BLOWFISH encrytion, but it needs something else (for example: generated salt or a token in the database which i couldn't find)

推荐答案

Joomla!使用 PhPass.

Joomla! uses PhPass.

root/libraries/phpass/PasswordHash.php

看看这里.您将在此处看到密码是如何生成的.

have a look here. you will see here how the password is generating.

$2y 是 bcrypt hashes 的默认(和首选)前缀.至于代码，您需要查看 JUserHelper's hashPassword 和 verifyPassword 方法的内部，以了解 Joomla 现在如何处理.

The $2y is the default (and preferred) prefix on bcrypt hashes. As for code, you'll want to look inside JUserHelper's hashPassword and verifyPassword methods to see how Joomla's working with things right now.

https://github.com/joomla/joomla-cms/blob/3.4.1/libraries/joomla/user/helper.php#L296-L387

https://docs.joomla.org/API15:JUserHelper/getCryptedPassword

https://docs.joomla.org/API15:JUserHelper/getSalt

检查链接，希望对您有所帮助;)

Check the links, I hope you it will help you ;)

这篇关于Joomla 3.4 密码生成方法的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！