Help us test the new Databridge BETA with MySQLi support

Technical Support Forums

Free, outstanding support from WebAssist and your colleagues

› WebAssist Forums › Data Bridge › SecurityAssist › Missing MD5 in Email Password

Missing MD5 in Email Password

Thread began 3/13/2012 2:41 pm by Cologne | Last modified 3/14/2012 3:33 pm by Jason Byrnes | 745 views | 5 replies |

3/13/2012 2:41 pm | #1 Cologne

Missing MD5 in Email Password

Hi,

MD5 encoding ist missing in the Email Password Wizzard :-( I only can choose HASH.

Please help.
Denis

3/13/2012 4:41 pm | #2 Jason ByrnesWebAssist

For MD5 encryption you need to use the Email Encrypted Password behavior under Webassist -> Security Assist -> Email Password -> Email Encrypted Password.

3/13/2012 6:41 pm | #3 Cologne

Hey Jason,

ok, I made it with the Return Email Wizzard. And it works fine.

But what do I have to do with the "Return Page". I inserted the Return Email server behavior, and then?

Do I have to create an update form in that page? So the user can change his password?

Where is "fp_data=4b780a05d34d10ee2266ff462f9bb4b4" stored? In my table? but where?

How do I get the ID, to update my table?

I need some help here, please.

Is there a tutorial?

Cheers,
Denis

3/14/2012 3:15 pm | #4 Jason ByrnesWebAssist

on the return page, you need to add the encrypted password return behavior which will look up the user record.

the fp_data string is created by first concatenating the fP_id and fb_email values, then encrypting that string based on the encryption type used.

the encrypted password return behavior looks up the user record based on the fp_id and fp_email variables. it then concatenates the ID and email columns into a string and encrypts it.

that encrypted string is compared against the fp_data string to make sure they match

in addition to the email password return behavior, you need to add an update form to change the password.

you need to add an update record behavior to update the password ion the database based on the fp_id querystring variable.

it would be a good idea to create the email password page using the wizard as a pint of reference before trying to create it manually.

3/14/2012 3:24 pm | #5 Cologne

Hi Jason,

if I understand right, the return page behavior, just checks it the link is ok, and it seems to be the user, right?

so then, if its all ok, my update record form will be shown and the user can choose his own new password?

for ID-Key I use the get[fp_id] ?

encrypte the password and update the table, right?

Cheers,
Denis

3/14/2012 3:33 pm | #6 Jason ByrnesWebAssist

yes, that is correct. like i said, if you use the wizard to create the pages for you, you will have a frame of reference to use.

Build websites with a little help from your friends

Your friends over here at WebAssist! These Dreamweaver extensions will assist you in building unlimited, custom websites.

Build websites from already-built web applications

These out-of-the-box solutions provide you proven, tested applications that can be up and running now. Build a store, a gallery, or a web-based email solution.