Pbkdf2PasswordEncoder
class Pbkdf2PasswordEncoder extends BasePasswordEncoder
Pbkdf2PasswordEncoder uses the PBKDF2 (Password-Based Key Derivation Function 2).
Providing a high level of Cryptographic security, PBKDF2 is recommended by the National Institute of Standards and Technology (NIST).
But also warrants a warning, using PBKDF2 (with a high number of iterations) slows down the process. PBKDF2 should be used with caution and care.
Constants
MAX_PASSWORD_LENGTH |
|
Methods
Demerges a merge password and salt string.
Merges a password and a salt.
Compares two passwords.
Checks if the password is too long.
No description
Encodes the raw password.
Checks a raw password against an encoded password.
Details
protected array
demergePasswordAndSalt(string $mergedPasswordSalt)
Demerges a merge password and salt string.
protected bool
comparePasswords(string $password1, string $password2)
Compares two passwords.
This method implements a constant-time algorithm to compare passwords to avoid (remote) timing attacks.