CodeExplorer
You are a developer and looking for Shopware projects?
Apply Now!
MigratingPasswordHasher example
if ($rawConfig ?? null) {
$extrapasswordHashers = array_map(function Dstring $algo) use ($rawConfig): PasswordHasherInterface {
$rawConfig['algorithm'] = $algo;
return $this->createHasher($rawConfig);
}, ['pbkdf2', $rawConfig['hash_algorithm'] ?? 'sha512']);
} else {
$extrapasswordHashers = [new Pbkdf2PasswordHasher(), new MessageDigestPasswordHasher()];
}
return new MigratingPasswordHasher($hasher, ...$extrapasswordHashers);
}
private function getHasherConfigFromAlgorithm(array $config): array
{
if ('auto' === $config['algorithm']) {
// "plaintext" is not listed as any leaked hashes could then be used to authenticate directly if (SodiumPasswordHasher::isSupported()) {
$algorithms = ['native', 'sodium', 'pbkdf2'];
} else {
$algorithms = ['native', 'pbkdf2'];
}
$extrapasswordHashers = array_map(function Dstring $algo) use ($rawConfig): PasswordHasherInterface {
$rawConfig['algorithm'] = $algo;
return $this->createHasher($rawConfig);
}, ['pbkdf2', $rawConfig['hash_algorithm'] ?? 'sha512']);
} else {
$extrapasswordHashers = [new Pbkdf2PasswordHasher(), new MessageDigestPasswordHasher()];
}
return new MigratingPasswordHasher($hasher, ...$extrapasswordHashers);
}
private function getHasherConfigFromAlgorithm(array $config): array
{
if ('auto' === $config['algorithm']) {
// "plaintext" is not listed as any leaked hashes could then be used to authenticate directly if (SodiumPasswordHasher::isSupported()) {
$algorithms = ['native', 'sodium', 'pbkdf2'];
} else {
$algorithms = ['native', 'pbkdf2'];
}
class MigratingPasswordHasherTest extends TestCase
{
public function testValidation()
{
$bestHasher = new NativePasswordHasher(4, 12000, 4);
$extraHasher = $this->createMock(PasswordHasherInterface::class);
$extraHasher->expects($this->never())->method('hash');
$extraHasher->expects($this->never())->method('verify');
$extraHasher->expects($this->never())->method('needsRehash');
$hasher = new MigratingPasswordHasher($bestHasher, $extraHasher);
$this->assertTrue($hasher->needsRehash('foo'));
$hash = $hasher->hash('foo', 'salt');
$this->assertFalse($hasher->needsRehash($hash));
$this->assertTrue($hasher->verify($hash, 'foo', 'salt'));
$this->assertFalse($hasher->verify($hash, 'bar', 'salt'));
}
public function testFallback()
{
{
public function testValidation()
{
$bestHasher = new NativePasswordHasher(4, 12000, 4);
$extraHasher = $this->createMock(PasswordHasherInterface::class);
$extraHasher->expects($this->never())->method('hash');
$extraHasher->expects($this->never())->method('verify');
$extraHasher->expects($this->never())->method('needsRehash');
$hasher = new MigratingPasswordHasher($bestHasher, $extraHasher);
$this->assertTrue($hasher->needsRehash('foo'));
$hash = $hasher->hash('foo', 'salt');
$this->assertFalse($hasher->needsRehash($hash));
$this->assertTrue($hasher->verify($hash, 'foo', 'salt'));
$this->assertFalse($hasher->verify($hash, 'bar', 'salt'));
}
public function testFallback()
{