I created a script outside of Joomla that can successfully generate a Joomla password:

Question

0

Asked: May 26, 20262026-05-26T19:20:49+00:00 2026-05-26T19:20:49+00:00

I created a script outside of Joomla that can successfully generate a Joomla password:

0

I created a script outside of Joomla that can successfully generate a Joomla password:

// I copied the JUserHelper class from Joomla here
$salt = JUserHelper::genRandomPassword(32);
$crypt = JUserHelper::getCryptedPassword($password, $salt);
$psw = $crypt.':'.$salt;

My question is, how can I compare this new crypt:salt I generate above to a password of an existing user in the Joomla database, and know if the password supplied to the script above is the correct password for that user in the database?

Report

Leave an answer
Cancel reply

You must login to add an answer.

Need An Account,

1 Answer

Editorial Team · Answer 1 · 2026-05-26T19:20:50+00:00

Editorial Team

2026-05-26T19:20:50+00:00Added an answer on May 26, 2026 at 7:20 pm

One way would be to query the Joomla database directly to get a user’s (salted and hashed) password, then compare. I think the below query should work for that, based on what I have seen from a few google searches. I have done this in WordPress, so I’m assuming Joomla would be similar.

select 'password' from `jos_users` WHERE `username` = "Bob";

0

Reply
Share
Share

- Report

Sign Up

Sign In

Forgot Password

The Archive Base Latest Questions

I created a script outside of Joomla that can successfully generate a Joomla password:

Leave an answerCancel reply

1 Answer

Leave an answer
Cancel reply