ActiveGrid supports user authentication against database and LDAP. By default, ActiveGrid uses the MD5 hash algorithm used for authentication is. This appendix explains how to configure ActiveGrid to use any hash algorithm. This appendix contains the following sections:
If you select the Is Password Encrypted? check box in the
SignOn Wizard (
“Adding a SignOn Page” on page 79), then ActiveGrid expects passwords in database to be encrypted with the hash algorithm. The authentication logic hashes the user-entered password before doing a comparison. By default, the hash algorithm is MD5. The following section,
“Using a Different Hash Algorithm”,
explains how to use any custom algorithm instead.
To do this, you make use of the hashPassword() operation in the ActiveGrid Security Service. The
hashPassword() operation takes a password string and returns a hashed password.
You can use the hashPassword() operation anywhere in your application. For example, you could add an
invoke hashPassword() operation to your “insert user” BPEL logic. Then you can hash the input password before storing it into the database.