C
C
BCrypt Verify a Password (Check if Password is Correct)
See more Encryption Examples
A system that uses BCrypt for storing passwords would not store the actual password, but would instead store the bcrypt hash of the password. When a user presents the password, such as for login, call BCryptVerify to verify the password against the stored bcrypt hash.Note: This example requires Chilkat v9.5.0.65 or greater.
Chilkat C Downloads
#include <C_CkCrypt2.h>
void ChilkatSample(void)
{
HCkCrypt2 crypt;
const char *storedHash;
const char *password;
BOOL passwordValid;
// This example assumes the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.
crypt = CkCrypt2_Create();
storedHash = "$2a$10$H5kIVktMGzAPKGKNAe9DVu0iwEqfhv/o4MMJ/Dzw/MPy1leOE9NOK";
password = "mySecretPassword";
passwordValid = CkCrypt2_BCryptVerify(crypt,password,storedHash);
if (passwordValid == TRUE) {
printf("%s is valid.\n",password);
}
else {
printf("%s is NOT valid.\n",password);
}
password = "notAValidPassword";
passwordValid = CkCrypt2_BCryptVerify(crypt,password,storedHash);
if (passwordValid == TRUE) {
printf("%s is valid.\n",password);
}
else {
printf("%s is NOT valid.\n",password);
}
// Output should be:
// mySecretPassword is valid.
// notAValidPassword is NOT valid.
CkCrypt2_Dispose(crypt);
}