Re: [opencms-dev] Has anyone created a Web User self registration JSP???
Christian Steinert
christian_steinert at web.de
Wed Feb 7 19:27:03 CET 2007
> I would just create my own JSP if I could find out how the passwords are encrypted with OpenCms...???
>
Why do you need this?I have not used web users until now, but there should be a setPassword method for them, right? And if it exists, you should hand over the unencrypted password as it is.
___
The principle should be as follows:
1. - when you create a new web user you set their password in plain text and opencms creates a hash of the password and stores that hash in the database
2. - Whenever your users log in, you ask opencms to check the password and opencms will create a hash of the password that was entered during login and compare that hash with the hash of the stored password. That's at least how it should be.
For these operations there should be methods in opencms. I don't think that you have to encrypt the passwords yourself.
christian
______________________________________________________________________
XXL-Speicher, PC-Virenschutz, Spartarife & mehr: Nur im WEB.DE Club!
Jetzt gratis testen! http://freemail.web.de/home/landingpad/?mc=021130
More information about the opencms-dev
mailing list