troubleshooting Question

Creating a random validation code for email confirmation when registering as a new user

Avatar of Crazy Horse
Crazy HorseFlag for South Africa asked on
PHP
9 Comments1 Solution112 ViewsLast Modified:
I want to create a secure random code that the user must click on in an email to activate their account. I have read a few posts on google and as usual, everybody has a different opinion! It seems though that a decent one is random_bytes. Is this acceptable? Also, I don't know how to actually use it. I tried this but it has symbols as well which I don't think I can store in a database?

I did this:

$identifier = random_bytes(12);
echo (bin2hex($identifier));

which generated : 2111d60a465f2f8c31ab7596

Is that sufficient or is there a more secure method?
ASKER CERTIFIED SOLUTION
Join our community to see this answer!
Unlock 1 Answer and 9 Comments.
Start Free Trial
Learn from the best

Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.

Andrew Hancock - VMware vExpert
See if this solution works for you by signing up for a 7 day free trial.
Unlock 1 Answer and 9 Comments.
Try for 7 days

”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.

-Mike Kapnisakis, Warner Bros