[JDEV] Zerok Authentication
Antoine Maitre
antoine_maitre at yahoo.com
Sun Dec 23 07:01:53 CST 2001
It works fine. There was a part missing in your
explanation though. You also have to convert the
hashed password to hex lowercase string before doing
the concat with the token. Here's the whole process:
hash_sha1(password) --> lowercase hex string -->
hashA,
hash_sha1(hashA+token) --> lowercase hex string -->
hash0,
hash_sha1(hash0) --> lowercase hex string --> hash1,
hash_sha1(hash1) --> lowercase hex string --> hash2,
...
hash_sha1(hashN-1) --> lowercase hex string --> hashN,
N of course being the sequence number (I know you know
all that, but it could be usefull to someone else).
Thanks again,
Antoine
--- Iain Shigeoka <iainshigeoka at yahoo.com> wrote:
> On 12/19/01 11:13 AM, "Antoine Maitre"
> <antoine_maitre at yahoo.com> wrote:
>
> > Hi Iain,
> >
> > your explanation is not confusing at all. I
> haven't
> > tried it yet, but this must be the problem because
> I
> > don't do the conversion, I just hash it as it is.
> >
> > Thanks a lot,
>
> You're welcome. I hope it works out. If not, let
> me know. It can be a bit
> tricky!
>
> -iain
>
>
>
_________________________________________________________
> Do You Yahoo!?
> Get your free @yahoo.com address at
> http://mail.yahoo.com
>
> _______________________________________________
> jdev mailing list
> jdev at jabber.org
> http://mailman.jabber.org/listinfo/jdev
__________________________________________________
Do You Yahoo!?
Send your FREE holiday greetings online!
http://greetings.yahoo.com
More information about the JDev
mailing list