1.0.0

Author: solital

CHANGELOG.md

@@ -1,5 +1,21 @@
 # Released Notes
 
+## v1.0.0 - (2021-10-12)
+
+### Added
+
+- Added settings in construct
+
+### Changed
+
+- Changed HashAlgorithm constant to public
+
+### Fixed
+
+- Fixed bugs
+
+-----------------------------------------------------------
+
 ## v0.2.0 - (2021-04-20)
 
 ### Changed

README.md

@@ -8,7 +8,7 @@ Unlike just using `password_hash`, SecurePassword adds a secret entry (commonly
 
 ## Requirements
 
-PHP >= 7.3
+PHP >= 7.4
 
 ## Installing via Composer
 
@@ -30,6 +30,26 @@ $hash = $password->createHash('my_password');
 var_dump($hash);
 ```
 
+## Settings
+
+You can change encryption settings without using the methods that will be listed below. To do this, enter the following code in the constructor:
+
+```php
+use SecurePassword\HashAlgorithm;
+
+$config = [
+    'algo' => HashAlgorithm::DEFAULT,
+    'cost' => 10,
+    'memory_cost' => PASSWORD_ARGON2_DEFAULT_MEMORY_COST,
+    'time_cost' => PASSWORD_ARGON2_DEFAULT_TIME_COST,
+    'threads' => PASSWORD_ARGON2_DEFAULT_THREADS
+];
+
+$password = new SecurePassword($config);
+```
+
+You can use the following encryptions: `HashAlgorithm::DEFAULT`, `HashAlgorithm::BCRYPT`, `HashAlgorithm::ARGON2I`, `HashAlgorithm::ARGON2ID`.
+
 ## Changing the encryption algorithm
 
 You can change the type of algorithm used to generate the hash. It is possible to use `PASSWORD_BCRYPT`,` PASSWORD_ARGON2I`, `PASSWORD_ARGON2ID` and even `PASSWORD_DEFAULT`.
@@ -78,6 +98,8 @@ $res = $password->verifyHash('my_password', $hash);
 var_dump($res);
 ```
 
+**If you are using the settings passed in the constructor then you can ignore the code below.**
+
 You can change the type of algorithm that will be used to check the hash.
 
 ```php
@@ -100,6 +122,8 @@ var_dump($res);
 
 ## Adding options
 
+**If you are using the settings passed in the constructor then you can ignore the code below.**
+
 Add options in the `useDefault`, `useBcrypt` and `useArgon2` methods.
 
 - useDefault: default options, use an array.

src/HashAlgorithm.php

@@ -4,13 +4,13 @@
 
 abstract class HashAlgorithm
 {
-    protected const DEFAULT = PASSWORD_DEFAULT;
-    protected const BCRYPT  = PASSWORD_BCRYPT;
-    protected const ARGON2I = PASSWORD_ARGON2I;
-    protected const ARGON2ID = PASSWORD_ARGON2ID;
+    public const DEFAULT = PASSWORD_DEFAULT;
+    public const BCRYPT  = PASSWORD_BCRYPT;
+    public const ARGON2I = PASSWORD_ARGON2I;
+    public const ARGON2ID = PASSWORD_ARGON2ID;
 
     /**
-     * @var const
+     * @var mixed
      */
     protected $algo;
 

src/HashException.php

@@ -4,5 +4,4 @@
 
 class HashException extends \Exception
 {
-    
 }

src/SecurePassword.php

@@ -13,12 +13,34 @@ class SecurePassword extends HashAlgorithm
     private string $pepper;
 
     /**
-     * Construct
+     * @var array
      */
-    public function __construct()
+    private array $config = [
+        "algo" => self::DEFAULT,
+        "cost" => "",
+        "memory_cost" => "",
+        "time_cost" => "",
+        "threads" => ""
+    ];
+
+    /**
+     * @param array $config
+     */
+    public function __construct(array $config = [])
     {
-        if (empty($this->algo)) {
-            $this->algo = self::DEFAULT;
+        if (!empty($config)) {
+            foreach ($config as $key => $value) {
+                if (!isset($this->config[$key])) {
+                    throw new HashException("Key '$key' not exists");
+                } else {
+                    $this->options = $config;
+                    $this->algo = $this->options['algo'];
+                }
+            }
+        } else {
+            if (empty($this->algo)) {
+                $this->algo = self::DEFAULT;
+            }
         }
 
         $this->setPepper();
@@ -147,7 +169,7 @@ public function needsRehash(string $password, string $hash)
      */
     private function createPepper(string $pepper): string
     {
-        $hash = openssl_encrypt($pepper, "AES-128-CBC", pack('a16', 'secret'), 0, pack('a16', 'secret2'));
+        $hash = openssl_encrypt($pepper, "AES-128-CBC", pack('a16', 'secure_password_1'), 0, pack('a16', 'secure_password_2'));
 
         return $hash;
     }