I have a working log in system. It however is not very secure at all. I did research and found scrypt seems to be the best way to make a secure log in. I found a site offering its implementation but I’m new to this so I wouldn’t be able to distinguish if something is there that shouldn’t be in there.
I found it here : https://github.com/DomBlack/php-scrypt
I haven’t analyzed the code fully yet but I’m surprised it has so many files. Any advice related to this area would be appreciated.