Ping the server for a random number (the salt), then hash the salt
with the hash of the password and send that to the server. The server
stores a hash of the password, and hashes that and the salt and
compares it with the sent hash - if it matches, it's authenticated.
--~--~---------~--~----~------------~-------~--~----~
You received this message because you are subscribed to the Google Groups
"Google App Engine" group.
To post to this group, send email to google-appengine@googlegroups.com
To unsubscribe from this group, send email to
google-appengine+unsubscr...@googlegroups.com
For more options, visit this group at
http://groups.google.com/group/google-appengine?hl=en
-~----------~----~----~----~------~----~------~--~---
