(PowerBuilder) BCrypt Verify a Password (Check if Password is Correct)

A system that uses BCrypt for storing passwords would not store the actual password, but would instead store the bcrypt hash of the password. When a user presents the password, such as for login, call BCryptVerify to verify the password against the stored bcrypt hash.

Note: This example requires Chilkat v9.5.0.65 or greater.

Chilkat ActiveX Downloads ActiveX for 32-bit and 64-bit Windows

integer li_rc
oleobject loo_Crypt
string ls_StoredHash
string ls_Password
integer li_PasswordValid

// This example assumes the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.

loo_Crypt = create oleobject
// Use "Chilkat_9_5_0.Crypt2" for versions of Chilkat < 10.0.0
li_rc = loo_Crypt.ConnectToNewObject("Chilkat.Crypt2")
if li_rc < 0 then
    destroy loo_Crypt
    MessageBox("Error","Connecting to COM object failed")
    return
end if

ls_StoredHash = "$2a$10$H5kIVktMGzAPKGKNAe9DVu0iwEqfhv/o4MMJ/Dzw/MPy1leOE9NOK"
ls_Password = "mySecretPassword"

li_PasswordValid = loo_Crypt.BCryptVerify(ls_Password,ls_StoredHash)
if li_PasswordValid = 1 then
    Write-Debug ls_Password + " is valid."
else
    Write-Debug ls_Password + " is NOT valid."
end if

ls_Password = "notAValidPassword"
li_PasswordValid = loo_Crypt.BCryptVerify(ls_Password,ls_StoredHash)
if li_PasswordValid = 1 then
    Write-Debug ls_Password + " is valid."
else
    Write-Debug ls_Password + " is NOT valid."
end if

// Output should be:

// 	mySecretPassword is valid.
// 	notAValidPassword is NOT valid.


destroy loo_Crypt