Login [ Auth->identify() ] always false on CakePHP 3
Solution 1
CakePHP3 uses a different hashing algorithm by default than 2 (bcrypt vs. SHA1), so you need to make your password length longer. Change your password field to VARCHAR(255) to be safe.
When CakePHP 3 tries to identify your in-memory hashed password from this->Auth->identify() vs. the hashed password in the database, it will never match because some characters are missing. Changing to 255 is more than needed, but can help future proof if an even more secure hash is used in the future. 255 is recommended because the the character count can be stored in one byte.
Solution 2
Solved: The type on database was less than required. Changed to varchar(255) and now works fine :)
Solution 3
Hi share my snippets to Login Auth, all Testing is OK, in CakePHP 3.1, customs (Table + view login BootStrap 3 + SQL base + custom bootstrap.php for Spanish in Inflector::rules(*******))
All code in
https://bitbucket.org/snippets/eom/rLo49
Solution 4
I had the same issue. The Login [ Auth->identify() ] was not working for me. Changing password length in db will resolve the issue.
Related videos on Youtube
Beto
Updated on May 07, 2020Comments
-
Beto almost 4 years
I started using CakePHP 3 after a time using CakePHP 2 and I am having troubles to create the authentication login.
The new auth function
$this->Auth->identify()
always return false.On the database, the password are encrypted perfect and the query who takes the user it's ok too.
My code:
AppController:
[...] class AppController extends Controller{ public function initialize(){ $this->loadComponent('Flash'); $this->loadComponent('Auth', [ 'loginRedirect' => [ 'controller' => 'Admin', 'action' => 'index' ], 'logoutRedirect' => [ 'controller' => 'Pages', 'action' => 'display' ] ]); } public function beforeFilter(Event $event) { $this->Auth->allow(['display']); } }
UserController:
[...] class UsersController extends AppController{ public function beforeFilter(Event $event) { parent::beforeFilter($event); $this->Auth->allow(['logout']); } [...] public function login() { if ($this->request->is('post')) { $user = $this->Auth->identify(); if ($user) { $this->Auth->setUser($user); return $this->redirect($this->Auth->redirectUrl()); } $this->Flash->error(__('Invalid username or password, try again')); } } [...]
User (Model Entity):
<?php namespace App\Model\Entity; use Cake\Auth\DefaultPasswordHasher; use Cake\ORM\Entity; class User extends Entity{ protected $_accessible = [*]; protected function _setPassword($password){ return (new DefaultPasswordHasher)->hash($password); } }
View:
<div class="users form"> <?= $this->Flash->render('auth') ?> <?= $this->Form->create() ?> <fieldset> <legend><?= __('Please enter your username and password') ?></legend> <?= $this->Form->input('username') ?> <?= $this->Form->input('password') ?> </fieldset> <?= $this->Form->button(__('Login')); ?> <?= $this->Form->end() ?> </div>
-
Beto about 9 yearsWas 45.... Changed to 255 and now working =) Thanks =D
-
-
Beto about 8 yearsI did not know this was possible (by clicking the green v) ... I updated. Thanks for the tip =)
-
mewc over 6 yearsCHECK THIS! This also was a problem for me, after being stubborn and not checking.
-
aswzen about 6 yearsalready change the length but have no results..still can get into ->is('post')
-
M.suleman Khan almost 6 yearsI have also changed the length not working for me as well. facing same issue