StackOverflow2013

Note that there are some explanatory texts on larger screens.

plurals

POPHP - password_verify issue
primarykey
Id
19891355
data
AcceptedAnswerId
19891634
AnswerCount
1
ClosedDate
CommentCount
2
CommunityOwnedDate
CreationDate
2013-11-10T15:13:23.887
FavoriteCount
1
LastActivityDate
2013-11-30T19:44:06.980
LastEditDate
2017-05-23T12:21:39.760
LastEditorUserId
-1
OwnerUserId
1178249
ParentId
0
PostTypeId
1
Score
5
ViewCount
2767
LastEditorDisplayName
text
Body
I have been scratching my head on this for over 2 hours. I have researched articles on stackoverflow including: <ul> <li><a href="https://stackoverflow.com/questions/16246082/issue-with-bcrypt-not-verifying-correctly">Issue with Bcrypt not verifying correctly</a></li> <li><a href="https://stackoverflow.com/questions/19855715/php-password-hash-and-password-verify-issues-no-match">php password_hash and password_verify issues no match</a></li> <li><a href="https://stackoverflow.com/questions/15090481/password-verify-call-returning-false-for-correct-password">`password_verify` call returning false for correct password</a></li> </ul> And I havent been able to correct my issue. I would appreciate some guidance on how much of an idiot I am being: Function to insert data into MySQL database: <pre><code>function insertUser($userObj) { $query = $this->databaseConnection->getStntPrepare()->prepare( "INSERT INTO user(username, userpassword) VALUES (?,?);"); $username = $userObj->getUsername(); $password = password_hash('testing1234', PASSWORD_BCRYPT); $query->bind_param('ss', $username, $password); } </code></pre> Verification of user login by retrieving data from MySQL: <pre><code>function findUser($userObj) { $query = $this->databaseConnection->getStntPrepare()->prepare( "SELECT userid, userpassword FROM user WHERE username=?"); $pass = 'testing1234' $query->bind_param('s', $userObj->getUsername()); $query->execute(); $query->bind_result($userid, $hash); while ($query->fetch()) { if (password_verify($pass, $hash)) { echo 'Password is valid!'; } else { echo 'Invalid password.'; } } } </code></pre> When run I get 'Invalid password.' When I do the below without inserting into database then retrieving: <pre><code>$hash = password_hash('testing1234', PASSWORD_BCRYPT); if (password_verify('testing1234', $hash)) { echo 'Password is valid!'; } else { echo 'Invalid password.'; } </code></pre> I get 'Password is valid!' I believe my problem is something to do with single and double quotes and the interpretation of dollar sign ($) in the password field, as a variable instead of literal (as one of the articles suggests) when storing/retrieving from MySQL database - however I haven't had any luck in resolving. Below is the hash value of 'testing1234': $2y$10$1/oQEuYX67n.U3usxH.7tenNq7hT2dKyBSIZsy5xR3W
Tags
<php><mysql><hash><php-password-hash>
Title
PHP - password_verify issue
singulars
PostAcceptedAnswerId
1. PO
 singulars
 PostTypePostTypeId
 PTAnswer
PostParentId
1. This table or related slice is empty.
PostTypePostTypeId
1. PTQuestion
UserLastEditorUserId
1. USCommunity
UserOwnerUserId
1. USLewis Wheeler
plurals
PostLinksPostIdRelatedPostId
1. PL
 singulars
 LinkTypeLinkTypeId
 LTLinked
2. PL
 singulars
 LinkTypeLinkTypeId
 LTLinked
3. PL
 singulars
 LinkTypeLinkTypeId
 LTLinked
PostLinksRelatedPostIdPostId
1. This table or related slice is empty.
PostsAcceptedAnswerId
1. This table or related slice is empty.
PostsParentIdCreationDate
1. PO
 singulars
 PostTypePostTypeId
 PTAnswer
VotesPostIdCreationDate
1. VO
 singulars
 PostPostId
 POPHP - password_verify issue
 UserUserId
 This table or related slice is empty.
 VoteTypeVoteTypeId
 VTUpMod
2. VO
 singulars
 PostPostId
 POPHP - password_verify issue
 UserUserId
 This table or related slice is empty.
 VoteTypeVoteTypeId
 VTUpMod
3. VO
 singulars
 PostPostId
 POPHP - password_verify issue
 UserUserId
 This table or related slice is empty.
 VoteTypeVoteTypeId
 VTUpMod
CommentsPostId
1. COWhat data type is your `userpassword` field in the database? What value do you see if you `echo $hash` just before you call `password_verify()`? (Also: try `echo strlen($hash)`...)
 singulars
 PostPostId
 POPHP - password_verify issue
 UserUserId
 USMatt Gibson
2. CONice catch! varchar(40) was the problem. Extended it and now sorted. Thanks for the help!
 singulars
 PostPostId
 POPHP - password_verify issue
 UserUserId
 USLewis Wheeler

Querying!

Guidance

A row detail

Detail views are divided into sections. All the information in the data section comes from columns in the selected row. The other sections display data from other, related rows.

Related data can be related in a to-one or a to-many fashion. Captions of data related in a to-many fashion link to a list view showing a filtered view of the table.

Try moving around until you find a non-empty to-many entry and click on the label to get to one. You can move back to the root by clicking on the database name in the header.