DIGEST auth has nothing to do with MD5 hashed passwords. Its an alternative web authentication mechanism that uses a challenge/response mechanism to has the input password. MD5 is a 32 byte digest, so what is the problem with configuring DatabaseServerLoginModule like:
| <policy> | <application-policy name="someRole"> | <authentication> | <login-module code="org.jboss.security.auth.spi.DatabaseServerLoginModule" flag="required"> | ... | <module-option name="hashAlgorithm">MD5</module-option> | <module-option name="hashEncoding">base64</module-option> | </login-module> | </application-policy> | </policy> | View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3904781#3904781 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3904781 ------------------------------------------------------- SF.Net email is sponsored by: Tame your development challenges with Apache's Geronimo App Server. Download it for free - -and be entered to win a 42" plasma tv or your very own Sony(tm)PSP. Click here to play: http://sourceforge.net/geronimo.php _______________________________________________ JBoss-user mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/jboss-user
