How to encrypt password in PHP

In this article, you will learn how to encrypt password using PHP. Today, almost every applications need password encryption technique to protect sensitive information of its users.

PHP has hash algorithm to encrypt the password. The mostly used functions for password encrypting are md5() and crypt().

How to encrypt password in PHP

Suppose, we have the registration form data containing username and password in POST. If we will insert the password same as received in the post in the database, this is not the secure way. If the database falls into the wrong hands, then they can misuse the data.

Encrypting password using md5()

These are one way encryption algorithm. The password encrypted with this algorithm can never be decrypted. The md5() is most commonly used encyption method.


 <?php
 $conn = new mysqli('hostname', 'username', 'password', 'databasename');
 $pwd = $_POST['password'];
 $encrypted_pwd = md5($pwd);
 $username = $_POST['username']; 
 $insert ="INSERT into an_users (id, username, password) 
 VALUES  ('', '$username', '$encrypted_pwd')";
 if($conn->query($insert)){
  echo 'Data inserted successfully';
 }
 else{
  echo 'Error '.$conn->error;  
 }
?>




Encrypting password using crypt()

The crypt() function returns a hashed string using salt. This method generates weak password without salt. It takes a second parameter for the salt which is an optional parameter. The salt is a formatted string that tells the crypt() method which algorithm to use to do the hashing

Syntax -
crypt($string, $salt);
There are many salt constants, but here we have used CRYPT_MD5. This generate 12 characters salt.
<?php
  $conn = new mysqli('hostname', 'username', 'password', 'databasename');
  $pwd = $_POST['password'];
  if(CRYPT_MD5 == 1) {
      $encrypted_pwd = crypt($pwd, '$12$hrd$reer');
  }
  $username = $_POST['username'];
  $insert = "INSERT INTO  an_users (id, username, password) 
		  VALUES('', '$username', '$encrypted_pwd')";
  if($conn->query($insert)){
	echo 'Data inserted successfully';
  }
  else{
	echo 'Error '.$conn->error;  
  }
?>




Related Articles

Preventing Cross Site Request Forgeries(CSRF) in PHP
PHP code to send email using SMTP
Simple pagination in PHP
Simple PHP File Cache
PHP Connection and File Handling on FTP Server
CRUD operations in Python using MYSQL Connector
Windows commands to Create and Run first Django app
How to send emojis in email subject and body using PHP
PHP7.3 New Features, Functions and Deprecated Functions
Create pie chart using google api




Read more articles


General Knowledge



Learn Popular Language