我们需要生成一个加密随机字符串用作身份验证令牌,它将与数据库中的会话数据相关联.我们正在使用 PHP,它似乎没有内置合适的随机数生成器.我们如何使用 php 生成长度为 N 的密码安全随机字符串?
We need to generate a cryptographically random string to use as an authentication token, which will be tied to session data in the database. We are using PHP, which doesn't appear to have a suitable random number generator built-in. How can we generate a cryptographically secure random string of N length using php?
另外请注意,由于我们应用程序的性质,shell_exec 不适用.
Also note, due to the nature of our application, shell_exec is off the table.
推荐答案
uniqid?文档有一个如何将其用于 cookie/会话的示例.
what about uniqid? docs have an example of how it can be used for cookies/sessions.