php - Laravel 5 password reset not working -


i working on laravel 5 ecommerce web portal.

i having issue when user updates password using ready made scripts.

the issue can send link customer without issue , customer can change password also. when logged out , re-logging in, error invalid credentials.

in routes.php, have this:

route::controllers([     'auth' => 'auth\authcontroller',     'password' => 'auth\passwordcontroller', ]);

this login page:

<form class="form-horizontal" role="form" method="post" action="{{ url('/login') }}">     <input type="hidden" name="_token" value="{{ csrf_token() }}">      <div class="form-group">         <label class="col-md-4 control-label">e-mail address</label>         <div class="col-md-6">             <input type="email" class="form-control" name="email" value="{{ old('email') }}">         </div>     </div>      <div class="form-group">         <label class="col-md-4 control-label">password</label>         <div class="col-md-6">             <input type="password" class="form-control" name="password">         </div>     </div>      <div class="form-group">         <div class="col-md-4"></div>         <div class="col-md-4">             <a href="{{url('/password/email')}}">forgot password</a>         </div>     </div>      <div class="form-group">         <div class="col-md-6 col-md-offset-4">             <button type="submit" class="btn btn-primary btn-block">login</button>         </div>     </div> </form>

i cannot login again after logged out once password has been reset.

edit 1:

when login button clicked on login form page, postlogin method called. here's code

public function postlogin( request $request ) {     $this->validate( $request, [         'email'     => ['required', 'exists:users,email,role,customer'],         'password'  => 'required'     ]);      $credentials = $request->only('email', 'password');      if ( \auth::attempt($credentials) ) {         \session::flash('logged_in', 'you have logged in.');         return redirect('/');     }      return redirect('/login')->withinput($request->all())->witherrors(['email' => 'invalid email address or password']); }

edit 2:

i realize login not checking hash , hence returning false, on doing dd(\hash::check($request->password, $user->password)), after updating password , re-logging in. issue ?

where have made mistake ? kindly guide me.

thanks in advance.

p.s.: using defaults update password, rest all, have made controllers , models working fine without issue.

if new password not work after changing goes wrong when changing password.

most suspect encryption. can possible not using hash::make($password) , saving in plaintext format.

you can doublecheck if hash saved correctly db function hash::check($password, $hash);

during login can check password as

public function postlogin( request $request ) {     $user=user::where('email', $request->email);     log::debug("testing $request->password $user->password ". hash::check($request->password, $user->password)); }

if hash::check false went wrong when saving new password. $user->password must in hashed form.


-

Popular posts from this blog

c# - ODP.NET Oracle.ManagedDataAccess causes ORA-12537 network session end of file -

overview i want replace oracle.dataaccess orcale. managed dataaccess, opening connection latter throws ora-12537 network session end of file exception. exception message / stack trace {oracleinternal.network.networkexception (0x000030f9): ora-12537 : netzwerksession: dateiende @ oracleinternal.network.readerstream.read(orabuf ob) @ oracleinternal.ttc.orabufreader.getdatafromnetwork() @ oracleinternal.ttc.orabufreader.read(boolean bignoredata) @ oracleinternal.ttc.marshallingengine.unmarshalub1(boolean bignoredata) @ oracleinternal.ttc.ttcprotocolnegotiation.readresponse()} i trying connect oracle 11g database , not have client installed on local machine. working test application (unmanaged) using oracle.dataaccess works fine . using system; using oracle.dataaccess.client; namespace app.odp.unmanaged { internal class program { private static void main(string[] args) { //dummy connection string
Read more

matlab - Compression and Decompression of ECG Signal using HUFFMAN ALGORITHM -

i want compress , decompress ecg signal stored text message text file , find out file size, cr,prd ratio,and qs. here code compression , decompression of ecg signal using huffman algorithm. i'm trying find out file size, compression ratio,prd ratio,qs. but error i'm getting the ecg file in text format. %clearing variables , screen enter code here clear all; close all; clc; [file1]=uigetfile('*.txt'); %fprintf('enter ecg file name :%s',file1); p=file1; t=sprintf('%s',p); b1=dlmread([file1]); len=length(b1); lead=input('enter lead number :'); %lead=str2double(lead); col2=b1(1:end,lead); e=fix(sqrt(len)); m=1; i=1:e j=1:e g2(i,j)=fix(col2(m)*1000); %amplifying 1000 m=m+1; end end g3=g2; i=1:e j=1:e
Read more

utf 8 - split utf-8 string into bytes in python -

i trying split utf-8 string bytes in python 3. problem is, when use bytearray, byte, encode etc functions array size of element 14 bytes, not 1 byte expected. need split text file sequence of bytes , send them byte after byte using sockets. tried this: infile = open (file, "r") str = infile.read() byte_str = bytes(str, 'utf-8') print("size of byte_str",sys.getsizeof(byte_str[0])) print gives me 14, need 1... suggestion? quoting official documentation : sys.getsizeof(object[, default]) return size of object in bytes. object can type of object. built-in objects return correct results, not have hold true third-party extensions implementation specific. only memory consumption directly attributed object accounted for, not memory consumption of objects refers to. if given, default returned if object not provide means retrieve size. otherwise typeerror raised. getsizeof() calls object’s __sizeof__ method , adds
Read more