MichaelMcDonald
Posts: 640
|
| Posted: 06/30/2009, 10:41 PM |
|
I am using a combination of CCS 4.2 features and code to develop a password solution.
I used the record builder and specified a temporary password field.
I use custom code to apply md5 encryption like : update users set password = md5{password} where {userid} = userid;
I amended common.php to check for md5 password at login and this works.
A check of the DB using MySQL Query Browser and the password is definetely encrypted.
I have 2 issues.
1. If I use Codecharge to specify the database encryption in project settings as opposed to writing custom md5 statements, the encryption structure is different and is not the same md5.
2. Does anyone have any suggestion as to how I can set an Old Password field to retrieve the existing encrypted password and decrypt it so that I can compare it with a new password that is plain text at the time of writing as I beleive the encryption occurs at the database, therefore would be transmitted as plain text?
_________________
Central Coast, NSW, Australia.
|
