|
| ||
| Query that retrieves an MD5 hash of a password from the seeded MD5 hash Please excuse the length of this post: I'm trying to integrate OpenFire (XMPP Server) with a Joomla (CMS) user database. Openfire allows authentication against an external database by editing its configuration. In the configuration you have to supply the query that will retrieve the password from the external database, given the username. eg: SELECT password FROM jos_users WHERE username=? The password supplied by the client will be plain text. The comparison with the query result can be plain text or MD5/SHA-1 hash. quoting the docs: Quote:
eg: If the user password is "test". Then Joomla will generate a random seed, 'xyz' and generate the hash: hash = md5( concat('test', 'xyz') )It will then save the password field as: concat('hash', ':xyz');So when a user authenticates, they send in a plain text password. 'test'. The password for that user is retrieved from the db, and split into the hash and seed. The plain text pass is then again concatenated with the seed, MD5 hashed and compared with the existing hash in the DB. Now for the question: At the moment, I have integration set to plain-text and the SQL Query to: SELECT password FROM jos_users WHERE username=? But this means the whole password column must be supplied into the IM client to log into an account. What I want is to configure a query that will return just the MD5 hash of the password, or at least work within the restrictions given for the query, to allow using the actual password in the IM client. My understanding is it isn't possible since MD5 cannot be reversed within a MySQL query, but I'd just like to pose the question in case there is a work around... |
| All times are GMT -4. The time now is 1:32 pm. |
Forum system based on vBulletin Copyright ©2000 - 2009, Jelsoft Enterprises Ltd.
©2003 - 2009 DaniWeb® LLC