On Jun 4, 2015, at 10:30 , Nicola Canepa <[email protected]> wrote: > Helllo. > I think I found another issue regarding encryption of credentials. > > I think it makes the web service unusable. > Once an user is created via web service, there is no way to print the > credentials when the person needs to use them.
The webservice is supposed to return the created password. You are responsible for keeping track of it. There is no way to have your cake and eat it too here. Either the passwords are hashed and you cannot get the plaintext easily or they are plaintext and anyone who gets their hands on the database has the keys to the kingdom. That, at least is not a bug but a feature. PacketFence 5 does provide an option to store the passwords in plaintext, if that’s really what you want. It’s in the GUI under configuration > advanced. Regards, -- Louis Munro [email protected] :: www.inverse.ca +1.514.447.4918 x125 :: +1 (866) 353-6153 x125 Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence (www.packetfence.org) ------------------------------------------------------------------------------ _______________________________________________ PacketFence-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/packetfence-users
