diff options
| author | Syndamia <kamen@syndamia.com> | 2025-01-25 19:30:45 +0200 |
|---|---|---|
| committer | Syndamia <kamen@syndamia.com> | 2025-01-25 19:59:25 +0200 |
| commit | 046dc2e32512dad2458be3e367e16e6e1a6f46f3 (patch) | |
| tree | f6d9bc7f9a027aa4b17c9001e370fed075b21414 | |
| parent | 37ea5e37ec03dcd22a904579a877d23c9db99c95 (diff) | |
| download | nowayforward_human-046dc2e32512dad2458be3e367e16e6e1a6f46f3.tar nowayforward_human-046dc2e32512dad2458be3e367e16e6e1a6f46f3.tar.gz nowayforward_human-046dc2e32512dad2458be3e367e16e6e1a6f46f3.zip | |
feat(models/user): Store password hash instead of plain password
| -rw-r--r-- | migrations/00-initial.sql | 3 | ||||
| -rw-r--r-- | models/user.php | 1 |
2 files changed, 3 insertions, 1 deletions
diff --git a/migrations/00-initial.sql b/migrations/00-initial.sql index ba00b32..7b08719 100644 --- a/migrations/00-initial.sql +++ b/migrations/00-initial.sql @@ -1,10 +1,11 @@ CREATE DATABASE IF NOT EXISTS nwfh; USE nwfh; +-- Password is BCRYPT encrypted, and is maximum 72 characters CREATE TABLE IF NOT EXISTS Users ( UID INT NOT NULL AUTO_INCREMENT, Username VARCHAR(50) NOT NULL UNIQUE, - Password VARCHAR(50) NOT NULL, + Password VARCHAR(72) NOT NULL, Role ENUM('User', 'Admin') NOT NULL, PRIMARY KEY (UID) ); diff --git a/models/user.php b/models/user.php index 0871d79..eff2c3e 100644 --- a/models/user.php +++ b/models/user.php @@ -9,6 +9,7 @@ class User extends Table { public $Role; static function create(string $Username, string $Password, string $Role) : int { + $Password = password_hash($Password, PASSWORD_BCRYPT); return Table::_create( "Users", "(Username, Password, Role)", |