AFAIK old passwords are compatible and updated with new ones as the users login, it's not something you should need to manage.Cjk75 wrote: Sun Jan 26, 2025 7:19 am I've read a ton of topics but most were old and password hashing changed with new versions.
I understand that but i am using the same login information for multiple uses so users have 1 enrollment and not 2.thecoalman wrote: Sun Jan 26, 2025 12:56 pmAFAIK old passwords are compatible and updated with new has as the users login, it's not something you should need to manage.Cjk75 wrote: Sun Jan 26, 2025 7:19 am I've read a ton of topics but most were old and password hashing changed with new versions.
Then the user has to have multiple passwords on my site. That isn't useful at all for them.Steve wrote: Sun Jan 26, 2025 5:37 pm Your web browser/phone can store passwords that allow multiple logins via the website..., I see no business here other than to try and work out how to exploit the password system. ?
I see the plugin for handing third party oauth requests but that doesn't allow users on the main site to use the forum username and pass to login.Steve wrote: Sun Jan 26, 2025 6:57 pm Use an extension that allow's third party logins. look here: https://www.phpbb.com/customise/db/
It is also the webmaster's headache and poor coding to force the user to use 2 sets of credentials for 1 site.Steve wrote: Sun Jan 26, 2025 8:54 pm Having the ability to remember your name and passwords, is down to the individual accessing the website, not yours.
We're going in circles... That helps with those who use google or discord but not the username and password method in the forums.Steve wrote: Sun Jan 26, 2025 9:47 pm So offer alternative logins via extension validated via phpbb.
It's you that is pursuing the method of detection for passwords, not me...
Then you don't get what I'm trying to do then... Never mind.
Re: Hashing password to compare with database
No it isn't. You seem to think im trying to hack or unhash a password. I want to use the same hash method so i can see if a user entered password matches the value in the database. How is that nefarious?