Hey again, just wondering about the following lines
> $salt = "qwertyuiop"; > $user['salt'] = bin2hex($salt); is that really, what you want to do / what couch requires you to do? $ php -r 'var_dump("qwertyuiop", bin2hex("qwertyuiop"));' string(10) "qwertyuiop" string(20) "71776572747975696f70" could find no step in any couch-related document about that requirement, you're refering to which one Martin? Regards Stefan On Wed, Mar 23, 2011 at 1:53 PM, Martin Hewitt <mar...@thenoi.se> wrote: > Hi all, > > Just wondering if anyone has done this successfully in PHP and could offer > advice? > > My code is currently: > > $user = array(); > $user['_id'] = "org.couchdb.user:".$newUser; > $user['type'] = "user"; > $user['name'] = $newUser; > $user['roles'] = "numpty"; > > $salt = "qwertyuiop"; > $newPassword = "test"; > > $user['password_sha'] = sha1($newPassword.$salt); > $user['salt'] = bin2hex($salt); > > And I can't login through Futon. > > Any help greatly appreciated! > > Martin > > On 23 Mar 2011, at 08:40, Stefan Matheis wrote: > >> Martin, >> >> based on >> http://wiki.apache.org/couchdb/Security_Features_Overview#Generating_password_sha >> what's wrong about php's sha1() function? >> >> $ php -r "echo sha1('foobar');" >> 8843d7f92416211de9ebb963ff4ce28125932878 >> >> it's the same result as stated there for erlang, ruby & python :) >> >> Regards >> Stefan >> >> On Wed, Mar 23, 2011 at 4:33 AM, Martin Hewitt <mar...@thenoi.se> wrote: >>> Hi all, >>> >>> I'm writing a build process in Phing, part of which involves creating a new >>> CouchDB user. I'm having trouble logging in as the created user and have an >>> inkling that it's down to the SHA1 encryption of the password and salt, as >>> the Security wiki page is quite specific about what SHA1s work and which >>> ones don't. >>> >>> My question is - does anyone know if there's a way to generate a >>> CouchDB-friendly SHA1 hash in PHP? >>> >>> Thanks, >>> >>> Martin > >