Forum OpenACS Q&A: Encrypted passwords in DB?

Collapse
1: Encrypted passwords in DB?
Posted by David Chin on 07/20/00 07:31 PM 
I'm trying to store encrypted passwords in the DB.

In my "nsd.tcl", I have

    ns_section "ns/server/${server}" 
        ns_param EncryptPasswordsInDBP  "0"

(is this the right section? I've also tried "ns/parameters".)

But, it still stores the passwords in the clear.
Collapse
2: Response to Encrypted passwords in DB? (response to 1)
Posted by Roberto Mello on 07/20/00 09:28 PM
You are putting this in the wrong file... This should be in your parameters/servicename.tcl file (which is the OpenACS config file) not your AOLserver nsd.tcl file.

Also "0" means NO and "1" means YES, so you need 1. The OpenACS Installation Guide has a caveat that you should read if you want to use encrypted passwords.

Collapse
3: Response to Encrypted passwords in DB? (response to 1)
Posted by David Chin on 07/22/00 12:30 AM
Thanks for the reply. The Installation Guide has a typo, then, and it's a bit unclear. I'm referring to Sec 6.2 where it says:
(EncryptPasswordsInDBP=0or ns_param EncryptPasswordsInDBP "0" in nsd.ini or nsd.tcl respectively)
Works like a charm, now.
Collapse
4: Response to Encrypted passwords in DB? (response to 1)
Posted by Roberto Mello on 07/22/00 12:36 AM
Glad it works now but I couldn't see a typo where you pointed (section 6.2). There IS a space between "EncryptPasswordsInDBP=0" and "or". The font difference makes they look closer I think.

Thanks for pointing that out. I,ll add an extra space there.