Article
Cerca
Shameless Plugs
Most Popular
Who's online
User login
3365
Generating MD5 hashed passwords using ECMAScript
While MD5 may not be the most effective way to secure data, it is used by some database applications and other systems. For more info on MD5, you can check: http://en.wikipedia.org/wiki/MD5
Once in a while, when configuring password sync/reset support for applications and systems for a given project, we stumble on MD5 hashed values.
ECMAScript(aka Javascript) can be used both in workflows(Form Editor) and with IdM drivers through Policy Builder and be called as a function to operate a transformation on a password or attribute value to turn it into a MD5 hash. Using Google, I was able to spot a few examples quickly.
DirXML Script example:
<do-reformat-op-attr name="LMSPassword"> <arg-value type="string"> <token-xpath expression="es:calcMD5(string($MD5Pwd))"/> </arg-value> </do-reformat-op-attr>
I am storing the value to be hashed in a local variable called MD5Pwd in the action before the action that actually hashes the value, using $MD5Pwd as the argument for my calcMD5 function.
MD5 hash is not reversible(in theory) so we can use this example to provide support for password reset, and password check, but not to obtain the original value(before hash) on the Publisher channel for password sync.
You can download my ECMAScript object below.
| Allegato | Dimensione |
|---|---|
| generate_md5_value.zip | 2.02 KB |
Disclaimer: As with everything else at Cool Solutions, this content is definitely not supported by Novell (so don't even think of calling Support if you try something and it blows up).
It was contributed by a community member and is published "as is." It seems to have worked for at least one person, and might work for you. But please be sure to test, test, test before you do anything drastic with it.
Related Articles
User Comments
- Be the first to comment! To leave a comment you need to Login or Register
- 3365 reads
0