Password
Password objects are wrappers that help prevent passwords from being leaked as plaintext elsewhere in the app. (e.g. logs, emails, etc.)
It uses the industry standard, secure bcrypt (Blowfish) algorithm.
Input fields that have the validation type of password
automatically wrap the value in a Password object.
When passed to a Db
method, it will be auto-converted to the hashed value, which is 60 characters long. For future flexibility, we recommend a column type of VARCHAR(255)
.
Use the check
method to securely validate password attempts.