Hi there, I'm searching since several days for a solution of the following scenario: - user credentials in the database - SHA256 hashed passwords in the database - using the DigestAuthenticator of the RESTlet Crypto extension
I've tried to implement this with a wrapped verifier (LocalVerifier), but since I can only get the passwords in hashed form out of the database the verification fails because of the none hashed passwords from the web login-dialog. I also tried to override the verify(String identifier, char[] password)-method of the LocalVerifier to hash the passwords before validation, but it seems the Authenticator doesn't ever reach this code... :-( Greetz, Christian ------------------------------------------------------ http://restlet.tigris.org/ds/viewMessage.do?dsForumId=4447&dsMessageId=2657121
