Remowaller, You get the passwort in plain from the user.
Then you do a sha1/md5 (depending on what algorithm you have choosen) and then encode
it also as base64 and store it in the user/password table.
>From now on, JBoss can compare the (hashed) password at login time with the hashed
>password in the db.
The code to hash the password might look like:
| byte[] pass = password.getBytes();
| MessageDigest md = MessageDigest.getInstance("SHA");
| byte[] hash = md.digest(pass);
| ret = Base64Encoder.encode(hash);
|
with Base64Encoder being in org.jboss.security.
View the original post :
http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3837167#3837167
Reply to the post :
http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3837167
-------------------------------------------------------
This SF.Net email is sponsored by the new InstallShield X.
>From Windows to Linux, servers to mobile, InstallShield X is the one
installation-authoring solution that does it all. Learn more and
evaluate today! http://www.installshield.com/Dev2Dev/0504
_______________________________________________
JBoss-user mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/jboss-user
