sodium_crypto_pwhash_str_verify

PHP 7 >= 7.2.0, PHP 8

sodium_crypto_pwhash_str_verify - Verifies that a password matches a hash

Manual

sodium_crypto_pwhash_str_verify( string$hash, string$password ): bool

Checks that a password hash created using sodium_crypto_pwhash_str matches a given plain-text password. Note that the parameters are in the opposite order to the same parameters in the similar password_verify function.

Parameters

hash: A hash created by password_hash.
password: The user's password.

Return Values

Returns true if the password and hash match, or false otherwise.

Notes

Note:

Hashes are calculated using the Argon2ID algorithm, providing resistance to both GPU and side-channel attacks.

Related Functions

Function sodium_crypto_pwhash_str_verify:

Manual

Sodium Functions

Most used PHP functions

sandbox (131640332)
preg_replace (217521)
json_encode (165654)
preg_match (155840)
unserialize (152145)
serialize (147408)
hex2bin (113109)
uniqid (92894)
hash_pbkdf2 (90143)
array (80619)
json_decode (80565)
password_hash (70322)
iconv (59231)
utf8_decode (52103)
preg_match_all (52069)
preg_replace_callback (48286)