diff --git a/src/Security/Hasher/PasswordEncoder.php b/src/Security/Hasher/PasswordEncoder.php index 7512d2e..be4fbc9 100644 --- a/src/Security/Hasher/PasswordEncoder.php +++ b/src/Security/Hasher/PasswordEncoder.php @@ -27,7 +27,7 @@ class PasswordEncoder implements LegacyPasswordHasherInterface } /** - * Pas utilisé + * Pas utilisé, mais on doit le garder pour le implements */ public function hash(string $plainPassword, string $salt = null): string { diff --git a/src/Security/SQLLoginUserAuthenticator.php b/src/Security/SQLLoginUserAuthenticator.php index 05d87b3..4d78115 100644 --- a/src/Security/SQLLoginUserAuthenticator.php +++ b/src/Security/SQLLoginUserAuthenticator.php @@ -80,12 +80,7 @@ class SQLLoginUserAuthenticator extends AbstractAuthenticator if ($remoteHashedPassword) { try { // Comparaison remote hash et hash du input password + salt - // dump($remoteHashedPassword, $plaintextPassword, $remoteSalt, password_verify($plaintextPassword, $remoteHashedPassword)); $this->passwordHasher->verify($remoteHashedPassword, $plaintextPassword, $remoteSalt); - // if ($this->passwordHasher->needsRehash($remoteHashedPassword)) { - // $hash = $this->passwordHasher->hash($plaintextPassword); - // $this->sqlLoginService->updatePassword($login, $hash, null); - // } $attributes = $this->sqlLoginService->fetchDatas($login); $user = new User($login, $remoteHashedPassword, $attributes, $rememberMe);