Mike Jackson napsal(a):
Radek Hladik wrote:
Hi all,
I'm trying to get working SSHA password generation in JavaScript. I've
found interesting topic which I want to ask about.
You don't need to generate password hashes externally, the server will
do it for you.
Enable SSHA password hashing in the server, and modify the userPassword
attribute with a plaintext value via SSL for transport security. The
server will hash the userPassword value for you. Or you could use the
password modify extended operation...
Thanks, I didn't know about this possibility. But I would like to also
provide the user with option to verify the hash. And password not
leaving the client computer is good bonus too. However the code is
working now, only some salt lengths cause troubles. And it is also not
good that slapd crashes with the incorrect hash (yes, I've filed that as
bug 205907 :-) ).
Radek
--
Fedora-directory-users mailing list
Fedora-directory-users@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/fedora-directory-users
