I am trying to write the ActiveX component in VB6 (with Microsoft's CAPICOM dll for
the DES encryption).
All is well until you get to the bit after sending off the XML for the Authenticate
Stage.
I receive back the challenge. What exactly do I now do with this? I have read
several different versions on the mailing lists.
Do I encode this against my private key, store the result as the SessionKey, then
return the MD5 checksum of the challenge
encrypted with the SessionKey to the server?
Or like in the Client Protocol Specification (page 126 step 6) :
The client returns the challenge's MD5 checksum, AGAIN encrypted with the
reseller's private key and without XML
It says AGAIN.... but this is the first time it says to encrypt it.
Any help would be welcomed with thanks
Jonathan
P.S. When I get this ActiveX Component to work I will put it up on sourceforge.net
