<?php// $userName = $_REQUEST["userName"];// $passWord = $_REQUEST["passWord"

1. <?php
2.  
3. // $userName = $_REQUEST["userName"];
4. // $passWord = $_REQUEST["passWord"];
5.  
6. $p = "bumblebee";
7. $hash = (password_hash($p, PASSWORD_DEFAULT));
8.  
9. //set DB access variables
10. // require_once('./php/hs_DBlogin.php');
11.  
12. // Create connection
13. // $conn = new mysqli($servername, $username, $password, $dbname);
14. // Check connection
15. // if ($conn->connect_error) {
16. // die("Connection failed: " . $conn->connect_error);
17. // }
18.  
19. // $passWord_get = mysqli_query($conn, "SELECT passWordHash FROM hsUser WHERE userName='$userName' LIMIT 1");
20. // $passWord_out = mysqli_fetch_array($passWord_get);
21. // $hashAsStr = $passWord_out[0];
22.  
23. echo ($p);
24. echo ($hash);
25.  
26.  
27. if (password_verify('bumblebee', $hash)) {
28. echo 'Password is valid!';
29. } else {
30. echo 'Invalid password.';
31. }
32.  
33. ?>
34.  
35. <?php
36.  
37. $userName = $_REQUEST["userName"];
38. $passWord = $_REQUEST["passWord"];
39.  
40. // $p = "$passWord";
41. // $hash = (password_hash($p, PASSWORD_DEFAULT));
42.  
43. //set DB access variables
44. require_once('./php/hs_DBlogin.php');
45.  
46. // Create connection
47. $conn = new mysqli($servername, $username, $password, $dbname);
48. // Check connection
49. if ($conn->connect_error) {
50. die("Connection failed: " . $conn->connect_error);
51. }
52.  
53. $passWord_get = mysqli_query($conn, "SELECT passWordHash FROM hsUser WHERE userName='$userName' LIMIT 1");
54. $passWord_out = mysqli_fetch_array($passWord_get);
55. $hashAsStr = $passWord_out[0];
56.  
57. echo ($hashAsStr);
58. echo ($_REQUEST["passWord"]);
59.  
60.  
61. if (password_verify($_REQUEST["passWord"], $hashAsStr)) {
62. echo 'Password is valid!';
63. } else {
64. echo 'Invalid password.';
65. }
66.  
67. ?>