Hi there folks!
I found a tutorial page for hashing with a salt and I'm trying to figure out the difference between what they're using to set the hash_default_salt and hash_variable_salt . I don't understand the purpose of the array at the end of the second in the options portion. They both result in a positive match so it doesn't seem to effect the comparison in this case.
// Store the string into variable
$password = 'Password';
// Use password_hash() function to
// create a password hash
$hash_default_salt = password_hash($password,
PASSWORD_DEFAULT);
$hash_variable_salt = password_hash($password,
PASSWORD_DEFAULT, array('cost' => 9));
// Use password_verify() function to
// verify the password matches
echo password_verify('Password',
$hash_default_salt ) . "<br>";
echo password_verify('Password',
$hash_variable_salt ) . "<br>";
echo password_verify('Password123',
$hash_default_salt );