+- UserSpice (https://userspice.com/forums)
+-- Forum: Support Center (https://userspice.com/forums/forumdisplay.php?fid=23)
+--- Forum: UserSpice 4.3 and Below (https://userspice.com/forums/forumdisplay.php?fid=26)
+--- Thread: Password (/showthread.php?tid=386)
Password - wendysmithwilliams - 12-09-2016
Hi there!
We have been using userspice 4 for our website and have been working with an application developer to create an app. We need the users to be able to log into the app and the website using the same credentials.
The developer is asking me for a salt key and hash key for the password encryption, and I'm unable to find these anywhere.
Can you help please?
Many thanks, Wendy
Password - dan - 12-09-2016
We use standard bcrypt with a hashing difficulty of 12.
Password - dan - 12-09-2016
We use standard bcrypt with a hashing difficulty of 12.
Password - mohsin - 12-09-2016
Hi
Every time when we are passing same string for hashing it returns us different results our concern is to get same hashing for same string every time.
Password - dan - 12-09-2016
Bcrypt is purposely not deterministic which means that entering the same password over and over again will give you different results. That is a good thing with password hashing. If you noticed that both of the default user accounts have the same password of password but when you look at them in the database they look completely different. This means that if someone was able to hack one password in the database they would not automatically have the key to all the rest of the passwords.