-
1. Re: Password Encryption with DatabaseLoginModule
jmartin_hc Jan 26, 2004 6:02 PM (in response to jmartin_hc)Mr. Starks,
Thank you for the reply, but I think I may have been unclear on my question. For this inquery, I am not concerned about the Datasource password, but rather a User's password. I want to have all Users' passwords stored in the database encrypted.
The problem will be when the user logs in, I need to decrypt the database password to match the unencrypted password the user would enter on a login form.
This is why I inquired about the convertRawPassword method in the DatabaseServerLogin file. I suppose there are two ways to do it; 1) Somehow intercept the j_password submitted by the login page and encrypt it befor it reaches j_security_check, or 2) Decrypt the database passsword in the login module to compare with the unencypted password the user would enter.
Am I getting close or trying to make this to hard?
Thank you for your support,
SJ -
2. Re: jmartin_hc@hotmail.com
juha Jan 27, 2004 6:52 AM (in response to jmartin_hc)"juha@jboss.org" wrote:
Make sure the query you run against Oracle correctly returns string "Roles" as the role group (or make sure the oracle table contains this value in the RoleGroup column)