Remowaller, You get the passwort in plain from the user. Then you do a sha1/md5 (depending on what algorithm you have choosen) and then encode it also as base64 and store it in the user/password table. >From now on, JBoss can compare the (hashed) password at login time with the hashed >password in the db.
The code to hash the password might look like: | byte[] pass = password.getBytes(); | MessageDigest md = MessageDigest.getInstance("SHA"); | byte[] hash = md.digest(pass); | ret = Base64Encoder.encode(hash); | with Base64Encoder being in org.jboss.security. View the original post : http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3837167#3837167 Reply to the post : http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3837167 ------------------------------------------------------- This SF.Net email is sponsored by the new InstallShield X. >From Windows to Linux, servers to mobile, InstallShield X is the one installation-authoring solution that does it all. Learn more and evaluate today! http://www.installshield.com/Dev2Dev/0504 _______________________________________________ JBoss-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/jboss-user