Hey so at the moment in my table I have a column called hash

Question

0

Editorial Team

Asked: May 24, 20262026-05-24T04:47:08+00:00 2026-05-24T04:47:08+00:00

Hey so at the moment in my table I have a column called hash

0

Hey so at the moment in my table I have a column called

“hash”
and
“salt”

hash is my Hashpassword of the user entered string and salt

and salt is the single salt value

During user login rather than retreive the salt from DB, create the hashpasword in my code and then compare with hash in DB I am told I can do this straight in my stored procedure.

This is my stored procedure at the moment

ALTER PROCEDURE [dbo].[spCheckMemberLogin]
(
    @username VARCHAR(100) = default,
    @hash VARCHAR(100) = default
)
AS
BEGIN

    SET NOCOUNT ON;

    SELECT
         3 as result
    ,    * 
    FROM
        web_user 
    WHERE 
        (statusId = 1) 
        AND (useremail = @username) 
        AND (hash = @hash)

END

Instead of having
hash = @hash

How can I have

hash = HashBytes(‘SHA1’, salt+user entered password)

where salt should be retrieve from table and user entered password is a variable of the stored procedure

Report

Leave an answer
Cancel reply

You must login to add an answer.

Need An Account,

1 Answer

Editorial Team · Answer 1 · 2026-05-24T04:47:09+00:00

Editorial Team

2026-05-24T04:47:09+00:00Added an answer on May 24, 2026 at 4:47 am

It depends on your version of SQL server. Anything equal or superior to 2005 will have the HashBytes procedure:

http://msdn.microsoft.com/en-us/library/ms174415.aspx

0

Reply
Share
Share

- Report

Sign Up

Sign In

Forgot Password

The Archive Base Latest Questions

Hey so at the moment in my table I have a column called hash

Leave an answerCancel reply

1 Answer

Leave an answer
Cancel reply