I'm writing a custom login module, When I get the value from the password callback it appears to have been encrypted in some way.
Is there any way I can get hold of what the user actually typed? I'm trying to compare the password with an existing value in a db that was encrypted with a simple one way hash, Ideally I need the users entered password so that I can run that through the same routine before comparing with the db. Failing that does anybody know how the password is being encrypted? I thought it might be MessageDigest MD5 but that does not appear to be the case. I'm calling an ejb from a remote client and using jboss 4.0.0, my LoginModule is wrapped up in a ProxyLoginModule. Cheers View the original post : http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3859749#3859749 Reply to the post : http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3859749 ------------------------------------------------------- SF email is sponsored by - The IT Product Guide Read honest & candid reviews on hundreds of IT Products from real users. Discover which products truly live up to the hype. Start reading now. http://productguide.itmanagersjournal.com/ _______________________________________________ JBoss-user mailing list JBoss-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/jboss-user
