Classic ASP
Classic ASP
BCrypt Verify a Password (Check if Password is Correct)
See more Encryption Examples
A system that uses BCrypt for storing passwords would not store the actual password, but would instead store the bcrypt hash of the password. When a user presents the password, such as for login, call BCryptVerify to verify the password against the stored bcrypt hash.Note: This example requires Chilkat v9.5.0.65 or greater.
Chilkat Classic ASP Downloads
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
</head>
<body>
<%
' This example assumes the Chilkat API to have been previously unlocked.
' See Global Unlock Sample for sample code.
set crypt = Server.CreateObject("Chilkat.Crypt2")
storedHash = "$2a$10$H5kIVktMGzAPKGKNAe9DVu0iwEqfhv/o4MMJ/Dzw/MPy1leOE9NOK"
password = "mySecretPassword"
passwordValid = crypt.BCryptVerify(password,storedHash)
If (passwordValid = 1) Then
Response.Write "<pre>" & Server.HTMLEncode( password & " is valid.") & "</pre>"
Else
Response.Write "<pre>" & Server.HTMLEncode( password & " is NOT valid.") & "</pre>"
End If
password = "notAValidPassword"
passwordValid = crypt.BCryptVerify(password,storedHash)
If (passwordValid = 1) Then
Response.Write "<pre>" & Server.HTMLEncode( password & " is valid.") & "</pre>"
Else
Response.Write "<pre>" & Server.HTMLEncode( password & " is NOT valid.") & "</pre>"
End If
' Output should be:
' mySecretPassword is valid.
' notAValidPassword is NOT valid.
%>
</body>
</html>