Putting the unencrypted version of password in an update profile form

I have encrypted passwords in the database.

On an update page I want to have the password initially set to the unencrypted version of the password, so it only has to be changed if desired.

In the form field I have;
<?php echo $row_WAATKusers['UserPassword']; ?>

How would I modify it to return the un-encrypted version instead?

What type of encryption are you using? Many encryption techniques can't be unencrypted, so it may not be possible.

One solution may be to have a separate column in the database to store the password without encryption and then once they update it once to remove it, but it kind of defeats the purpose of encryption to have an unencrypted version in the database.

I am currently using the wa_cryptencryption version.

But I can change to a different type I assume.

Is one type a better one that the other. I did note that if someone gets the encripted password generated by crypt, they can just paste it into a different user and it would work.

I would prefer a type that was a combination of the email address and password for example, so it would be more unique.

Crypt is a one-way encryption that can't be decrypted. You could use HASH or RIJNDAEL if you want the string to be unencrypted at some point. Both of these allow you to put a random string in a php include file that would be necessary in order to unencrypt so that simply getting access to the database wouldn't be enough and you would need a breech of both the database and php code before any data would be compromised.

The only other option would be to also store the unencrypted version until it is updated the first time.

I got it working for Hash encryption by editing the server behaviors on the various pages using the passwords to changing the encryption type .

For some reason rijndaelen does not verify the password when logging in. The encrypted password is longer and has special characters in it so maybe that has something to do with it.

I found one issue that crashes Dreamweaver. If I click on the form text box select a recordset value, it works as long as I do not specify decrypt. If I do, Dreamweaver will crash. I manually edited the code to <?php echo WA_HashDecryption($row_WAATKusers['UserPassword']); ?>, and that worked fine.