Hi Finbarr,
> The problem is that my LocalVerifier class will return passwords from the
> database that have been hashed as I do not want my users' passwords to exist
> in the db in plain text. How can I set up the DigestAuthenticator to hash the
> secret provided by the client request before it digests and compares? (Or am
> I going about all of this in the wrong way?)
That is definitve the right way, but I can't tell you, how to do it.
best regards
Stephan
------------------------------------------------------
http://restlet.tigris.org/ds/viewMessage.do?dsForumId=4447&dsMessageId=2688297
