You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@cocoon.apache.org by Hanne Moa <ha...@uninett.no> on 2007/06/20 15:01:27 UTC
Authentication: encrypted passwords
The examples of authentication that comes with Cocoon 2.1.10 use
plain-text passwords. (Well the one in the blocks/authetntication
doesn't use passwords at all but the one in portal/ uses plain-text
passwords). When reusing/authenticating towards existing user-databases,
the passwords in that database is (hopefully) *not* plain-text, for
obvious reasons.
How does one, with the authentication-framework, authenticate against
such non-plain-text passwords, that is: how/where to link in a
password-hasher prior to the actual comparison of typed-in password to
stored, hashed password?
HM
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@cocoon.apache.org
For additional commands, e-mail: users-help@cocoon.apache.org