Introduction
The Laravel Hash
facade provides secure Bcrypt hashing
for storing user passwords. If you are using the
AuthController
controller that is included with your
Laravel application, it will be take care of verifying the Bcrypt
password against the un-hashed version provided by the user.
Likewise, the user Registrar
service that ships with
Laravel makes the proper bcrypt
function call to hash
stored passwords.
Basic Usage
Hashing A Password Using Bcrypt
$password = Hash::make('secret');
You may also use the bcrypt
helper function:
$password = bcrypt('secret');
Verifying A Password Against A Hash
if (Hash::check('secret', $hashedPassword))
{
// The passwords match...
}
Checking If A Password Needs To Be Rehashed
if (Hash::needsRehash($hashed))
{
$hashed = Hash::make('secret');
}