加密存储模型
<?php// 存储密码散列$query=sprintf("INSERT INTO users(name,pwd) VALUES('%s','%s');", pg_escape_string($username), password_hash($password, PASSWORD_DEFAULT));$result =pg_query($connection, $query);// 发送请求来验证用户密码$query =sprintf("SELECT pwd FROM users WHERE name='%s';", pg_escape_string($username));$row =pg_fetch_assoc(pg_query($connection, $query));if ($row && password_verify($password, $row['pwd'])) { echo 'Welcome, ' . htmlspecialchars($username) . '!';} else { echo 'Authentication failed for ' . htmlspecialchars($username) . '.';}?>
页:
[1]