Support the ongoing development of Laravel.io →

Forum Converting user passwords from md5 to bcrypt

posted 9 years ago

Authentication Security

Authentication Security

Last updated 3 years ago.

0

replied 9 years ago

you cannot convert your md5 hashes since, md5 cannot be de-crypted, you cannot read the user's passwords.

what you can do is:

maintain two columns in users table, old password (md5) and new password (bcrypt).
if a user does not have a new password setup let then login with the old password
ask them to change their password, and save that as the new password.
next time they login use the new password to login

1

Sign in to participate in this thread!

Native PHP

Your banner here too?

9bits 9bits Joined 9 Nov 2016

Moderators

driesvints Joined 16 Dec 2013
joedixon Joined 23 Jun 2014
tvbeek Joined 8 Jan 2018

We'd like to thank these amazing companies for supporting us

NativePHP

Eventy

Fathom

Forge

Envoyer

Beyond Code

BairesDev

N-iX

Your logo here?

The Laravel portal for problem solving, knowledge sharing and community building.

Laravel.io

Forum Articles Pastebin

Socials

(Twitter) Bluesky GitHub

© 2025 Laravel.io - All rights reserved.

Terms of service Privacy policy Advertise