Beriff
commented
4 years ago Thanks for the issue! I will make sure of this problem to be solved.
Open DominoBreaker opened 4 years ago
Beriff
commented
4 years ago Thanks for the issue! I will make sure of this problem to be solved.
Hashing passwords are a really important component of an authentication system!
You have two options nowadays that are equally plausible.
I would recommend Argon on my behalf.
To use them, it is very simple! Look at https://www.php.net/manual/en/function.password-hash.php and https://www.php.net/manual/en/function.password-verify.php for more information about the usage of password hashing in PHP.
Do not use cookies simply just like that!
They are vulnerable if used like that, and users could modify the cookies with malicious intent to possibly access other people's accounts. You could make your own cookie-session system or just use sessions!
Have fun!