News Feed
Sections




News Archive
Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

Anthony Ferrara:
Designing An API Simplified Password Hashing
November 19, 2012 @ 12:42:22

A while back Anthony Ferrara proposed a standardized password hashing feature to be included into the core of PHP. It was voted on and it was decided it would be introduced in the PHP 5.5 releases. Anthony has written up a new post talking some about his process in making this upcoming feature and answering some of the most common questions he's gotten about it.

The other day, PHP 5.5 Alpha 1 was released to the public for the first round of testing the new features that are coming out. One of those new features is the Simplified Password Hashing API that I proposed (and was accepted). I have received a lot of feedback and criticism of the new API in the months since it's been committed. I figured now that Alpha 1 is out and people can play with it, I should respond to some of those items, and give a little bit more insight into why it was built the way it was...

He talks about some of his goals with the use of the functionality (simplicity, something "the 99%" can use) ans answers questions about:

  • Why the functions aren't namespaced
  • Why it's not just a class that can be included when needed
  • The choice of not going with an OOP interface
  • Why PBKDF2 and Crypt-SHA-512 aren't supported

...and several other questions, but you'll have to read the full post for the rest of those. You can find out a lot about the API for this functionality from its wiki page and, if you'd like to try it out (in an alpha state), you can download this version of PHP and compile it yourself.

0 comments voice your opinion now!
api design questions password hashing simple alpha


blog comments powered by Disqus

Similar Posts

SitePoint PHP Blog: Phalcon 2.0 Alpha Landing

Ivo Jansch's Blog: Building proxies, decorators and delegates in PHP5

Lorna Mitchell: Five Clues That Your API isn't RESTful

Maarten Balliauw's Blog: Windows Azure Tools for Eclipse for PHP developers

DevShed: Building Site Registration for Web Application Security


Community Events





Don't see your event here?
Let us know!


framework interview unittest language community introduction package opinion api library tips release series update zendserver install symfony podcast laravel deployment

All content copyright, 2014 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework