[jboss-user] [JBoss Web Services] - password hash values do not match
yusuf kurt
do-not-reply at jboss.com
Mon May 3 01:42:52 EDT 2010
yusuf kurt [http://community.jboss.org/people/ykurttr] replied to the discussion
"password hash values do not match"
To view the discussion, visit: http://community.jboss.org/message/540669#540669
--------------------------------------------------------------
hi romano,
i think that there is something different with the logic of handling the hash on the jboss server side, when i examine the corresponding source code,
i see that the BASE64 encoded nonce value is used for creation of hash to match the one sent by client.But the standart document says that; use the "nonce" not the "BASE64 encoded nonce" when creating password digest.
Also the jbossws clients creates the password digest with BASE64 encoded nonce, as a result there is no crash when there is jbossws-server/jbossws-client; because other type of clients do not digest password with BASE64 encoded nonce, they always crash.
--------------------------------------------------------------
Reply to this message by going to Community
[http://community.jboss.org/message/540669#540669]
Start a new discussion in JBoss Web Services at Community
[http://community.jboss.org/choose-container!input.jspa?contentType=1&containerType=14&container=2044]
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/jboss-user/attachments/20100503/6df8f76a/attachment.html
More information about the jboss-user
mailing list