12/02
2014
Wallogit.com
2017 © Pedro Peláez
library hashdigest
Hash Generator and Verifier
edwinmugendi/hashdigest
Hash Generator and Verifier
- Wednesday, February 12, 2014
- by edwinmugendi
- Repository
- 1 Watchers
- 1 Stars
- 61 Installations
- PHP
- 0 Dependents
- 0 Suggesters
- 1 Forks
- 0 Open issues
- 2 Versions
- 0 % Grown
The README.md
hashdigest
A PHP Hash Generator and Verifier, (*1)
This is a wrapper on the PHP function HASH for generating hash digests using sha256 algorithm and also verifying a given hash againist given data., (*2)
Installation
Requirements
PHP v>=5.1.2+, (*3)
With Composer
The easiest way to install Carbon is via composer. Create the following composer.json file and run the php composer.phar install command to install it., (*4)
"require": {
"edwinmugendi/hashdigest": "master"
}
Without Composer
Why not use composer? Anyway, Download Digester.php from the repo and save the file somewhere in your project., (*5)
<?php
require 'path/to/Digester.php';
use HashDigest\Digester;
$dataToHash = array(
'name'=>'Ali',
'age'=>'12',
'city'=>'Nairobi',
'work'=>'Software Engineer',
'at'=>'Sapama.com'
);
$hash = Digester::digest($dataToHash);
echo 'Generated Hash is ';
echo "\n";
echo $hash;
echo "\n";
$isValid = Digester::isHashValid($hash, $dataToHash);
echo "Hash is ". ($isValid ? 'valid': 'not valid');
Algorithm
Hash generation
The hash is generated by:, (*6)
- The
digest($dataToHash, $algo = 'sha256', $raw_output = false, $separator = '.')function takes a string or array as parameter of data to be hashed eg;
<?php
$dataToHash = array(
'name'=>'Ali',
'age'=>'12',
'city'=>'Nairobi',
'work'=>'Software Engineer',
'at'=>'Sapama.com'
);
$hash = Digester::digest($dataToHash);
- If parameter is array, Sort the array by the key, Hence the above array will sorted into
<?php
$dataToHash = array(
'age'=>'12',
'at'=>'Sapama.com'
'city'=>'Nairobi',
'name'=>'Ali',
'work'=>'Software Engineer'
);
- Generate the string to be hashed by joining the array elements with a '.' (default) or the separator you put in the 4th parameter of the
digestfunction. Hence, the string generated from the above array will be:
$stringToHash = '12.Sapama.com.Nairobi.Ali.Software Engineer' ```` 4. Hash the generated string with sha256 algorithm (for PHP use PHP Hash) ```php $hash = '87304e9ab39f1d9c70b9f51f9f3b70fed5d19fbd3917ea3678115c5adffcf0d5';
Hash verification
- To perform hash verification, Using the
isHashValid($hash,$dataToHash), you need to pass the pre created hash and the data from which the hash was generated from. - This function return
trueif hash is verified,falseotherwise
Possible applications
- Securing API - This library can be used to generate hash digest plus an
API_SECRET(see below) of data to be passed to an API. Remember to also include the generated hash to the data being POSTed so that the API can generate an hash using the data and try and verify against the POSTed hash.
NB: API_SECRET This is code or a random string known only to the API provider and consumer and is included in the data to be hashed to make the hash more difficult to regenerate., (*7)
Happy Coding!, (*8)