rs_password_hash()

Coding standards

Security in ResourceSpace

Developer reference

Database

Action functions

Admin functions

Ajax functions

Annotation functions

API functions

Collections functions

Comment functions

Config functions

CSV export functions

Dash functions

Debug functions

Encryption functions

Facial recognition functions

File functions

General functions

Language functions

Log functions

Message functions

Migration functions

Node functions

PDF functions

Plugin functions

Render functions

Reporting functions

Request functions

Research functions

Slideshow functions

Theme permission functions

User functions

Video functions

Database functions

Metadata functions

Resource functions

Search functions

Map functions

Job functions

Tab functions

Test functions

Description

ResourceSpace password hashing

Parameters

Column	Type	Default	Description
$password	string		Password

Return

string|false

Password hash or false on failure

Location

include/login_functions.php lines 303 to 313

Definition


 
function rs_password_hash(string $password)
{
    $phi = get_password_hash_info();
    $algo = $phi['algo'];
    $options = $phi['options'];

    // Pepper password with a known (by the application) secret.
    $hmac = hash_hmac('sha256', $password, $GLOBALS['scramble_key']);

    return password_hash($hmac, $algo, $options);
}

This article was last updated 24th April 2025 11:35 Europe/London time based on the source file dated 21st January 2025 15:20 Europe/London time.