Skip to content

Navigation Menu

Sign in
Appearance settings

Search code, repositories, users, issues, pull requests...

Provide feedback

We read every piece of feedback, and take your input very seriously.

Saved searches

Use saved searches to filter your results more quickly

Sign up
Appearance settings

Crecket/secure-functions

Folders and files

NameName
Last commit message
Last commit date

Latest commit

History

17 Commits

Repository files navigation

secure-functions

Latest Stable Version Build Status

A collection of functions which can be used for security purposes.

Instalation

Composer

Install through composer and require the autoloader.

composer require crecket/secure-functions

Manual

Download the files and require them in your project.

require '/secure-functions/src/SecureFuncs.php';

Scrypt and Encryption

Install the php module if you want to use scrypt hashing

Usage

All functions are static public functions right now so you can simply call the functions like this:

SecureFuncs\SecureFuncs::password_hash('input');

Functions

compareStrings($string1, $string2)

Compare strings while preventing timed attacks

getFormToken('form_token_id', $form_token, $limit = 300)

Verify a form token for the given id. The $limit is optional andm ust be given in seconds, if the limit is 300 and the token is used after 300 seconds it will be considered invalid.

password_hash($password)

Hash the given password. This function allows for longer passwords and isn't affected by the null-byte issue.

password_verify($password, $hash)

Verify the given password hash

randomHex($length)

Returns a random hexadecimal number for the given length

randomInt($min, $max)

Returns the a secure random integer within the given range.

randomString($length)

Returns a random string for the given length

scryptcheck($password, $hash)

Compare a password and hash using DomBlack/php-scrypt

scrypthash($password, $salt, $cpu, $memory, $parallel)

Hash a password using DomBlack's php scrypt library

setFormToken($id)

Set a unique token in the session and returns it, can be used to verify post/get requests

strlen($str)

Returns the length of the given string using mb_strlen when available

pseudoBytes($length)

Returns random bytes for the given length

About

A collection of functions which can be used for security

Topics

Resources

Stars

Watchers

Forks

Packages

No packages published

Languages

AltStyle によって変換されたページ (->オリジナル) /