[TYPO3-core] RFC: Feature Request #7139: Integration of fe_users password encryption
Martin Kutschker
Martin.Kutschker at n0spam-blackbox.net
Wed Jan 16 12:17:23 CET 2008
Steffen Kamper schrieb:
>
> as BE works with JS methods in eval, the same algorythm has to be used in
> JS. So i don't know how this can be done, or a salt has to be generated
> dynamically in template.php in JS-section.
Not quite. It's sufficient that the JS part does the first part of the
encoding (ie hashed), so that the password is not sent in clear text. The
actual comparison can be done when we apply the salt to the pre-hashed
password.
Masi
More information about the TYPO3-team-core
mailing list