CakeFest 2025 Madrid: The Official CakePHP Conference

    sodium_crypto_pwhash_str_verify

    (PHP 7 >= 7.2.0, PHP 8)

    sodium_crypto_pwhash_str_verifyVerifies that a password matches a hash

    Description

    sodium_crypto_pwhash_str_verify(string $hash, #[\SensitiveParameter] string $password): bool

    Checks that a password hash created using sodium_crypto_pwhash_str() matches a given plain-text password. Note that the parameters are in the opposite order to the same parameters in the similar password_verify() function.

    Parameters

    hash

    A hash created by password_hash().

    password

    The user's password.

    Return Values

    Returns true if the password and hash match, or false otherwise.

    Notes

    Note:

    Hashes are calculated using the Argon2ID algorithm, providing resistance to both GPU and side-channel attacks.

    See Also

    Found A Problem?

    Learn How To Improve This PageSubmit a Pull RequestReport a Bug
    add a note

    User Contributed Notes

    There are no user contributed notes for this page.
    To Top

    Follow Lee on X/Twitter - Father, Husband, Serial builder creating AI, crypto, games & web tools. We are friends :) AI Will Come To Life!

    Check out: eBank.nz (Art Generator) | Netwrck.com (AI Tools) | Text-Generator.io (AI API) | BitBank.nz (Crypto AI) | ReadingTime (Kids Reading) | RewordGame | BigMultiplayerChess | WebFiddle | How.nz | Helix AI Assistant