A SOAP notice

Ideas and discussions on third party tools and utilities

Moderator: Forum Moderator

Post Reply
User avatar
Sobuno
Developer
Posts: 2589
Joined: Sun Mar 25, 2007 2:17 am
Contact:

A SOAP notice

Post by Sobuno » Sun Dec 16, 2007 1:20 pm

As I was preparing our forums for upgrading to phpBB3, I noticed that the password encryption had changed. This means that any tool using SOAP will fail to do actions that requires authorization (i.e. logging in).

To deal with this problem, the SOAP function named HashPass has been created. This function accepts a AES/Rijndael-128 encrypted string as argument and returns an encrypted string that can be used for the other functions. The key and IV you must use for the Rijndael encryption can be fetched by using the SOAP function named CryptKeyIV. Do not save the key and IV as these will change from time to time.

Note that you can already implement this function in your program at the present time, it will just return an MD5-hashed string for now.

-Sobuno

Post Reply

Who is online

Users browsing this forum: No registered users and 21 guests