Since htpasswd uses a one-way hash (right?), you'll have to encrypt the password you want to compare. Couldn't you use CFEXECUTE to run htpasswd against the password to a temp file, then read the temp file against the real file?
read the .password file to get the crypted password take the password to check and write it to a temp file with htpasswd read the temp file to get the crypted password compare... > I'm now using ibill credit card processing for a quick merchant/password > management setup for a friend's site. As you all know (or maybe it's just me > <g>), using a mix of cf passworded things with apache .htaccess items doesn't > exactly make for 'smooth flow'. What I'm looking to do, if possible, is find > out what .htpasswd used to encrypt the passords in it, so that I can read the > htpasswd file with cf, and compare a name/encrypted-password pair to what's > in the file, then set sessions accordingly. Am I making sense? Any ideas? > > TIA > Geo > > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.0.6 (GNU/Linux) > Comment: For info see http://www.gnupg.org > > iD8DBQE7u80t6lWSWPFnGFARAnqcAKCE9BI2f8X+zH/quyx6vbMDus2XnwCdFrxV > Zia3H20lLV44ywOCEIfQ+3M= > =tNyT > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Your ad could be here. Monies from ads go to support these lists and provide more resources for the community. http://www.fusionauthority.com/ads.cfm ------------------------------------------------------------------------------ Archives: http://www.mail-archive.com/cf-linux%40houseoffusion.com/ To Unsubscribe visit http://www.houseoffusion.com/index.cfm?sidebar=lists&body=lists/cf_linux or send a message to [EMAIL PROTECTED] with 'unsubscribe' in the body.
