Oh, and I forgot to mention that you can actually integrate the Auth component into a pre-existing users table which used a custom hashing/ salting scheme: http://book.cakephp.org/view/566/Changing-Encryption-Type
-J. On Sep 23, 7:42 pm, Joel Perras <[EMAIL PROTECTED]> wrote: > I'm guessing you're not using the Auth component > (http://book.cakephp.org/view/172/Authentication) due to a legacy DB. > In that case: > > http://book.cakephp.org/view/76/Callback-Methods#beforeSave-683 > > Also take a look at the core Security > class:http://api.cakephp.org/class_security.html > for your password-hashing needs. > > -J. > > On Sep 23, 7:05 pm, rocket <[EMAIL PROTECTED]> wrote: > > > So I have validation code for my user password ($password) in my model > > to be 6-20 characters, but I am doing sha1($password) on my password > > before it gets passed into the $this->User->save() operation, so it > > always bypasses the validation requirement (since sha1 creates a > > really big string). > > > How do I sha1 my stuff right before it gets saved in the model? > > > Ideally I'd like to pass my unencrypted password strings, then sha1 > > them right before the save, instead of sha1'ing them in my controller > > first. > > > Where does this kind of code belong? > > > danke --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "CakePHP" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/cake-php?hl=en -~----------~----~----~----~------~----~------~--~---
