Last post Apr 30, 2012 11:13 AM by srikar1
Apr 30, 2012 12:56 AM|arefkarimi|LINK
There is an old web site that is using Commerce Server. We have it's source code which is ASP.NET 3 and C# 3. This web site has been live for a few years so the details of many users has benen saved in it, including their usernames and passwords. Another
company is using a non-dot-net language (e.g. PHP) to build a newer version of the web site.
What we have to do is to let the other company know that how a password is hashed by Commerce server so that they implement the same method, allowing the existing and future users login to the new system.
Unfortunately we do not have access to the old developers of the web site and we also do not have any idea that how does UpmMembershipProvider enrcypts the passwords. Does anybody have a solution for this?
Apr 30, 2012 11:13 AM|srikar1|LINK
If you are using default sql member ship provider to store user details in sql server. Then the algorithm & key used to hash the password is stored in mechine.config file. By default SHA1 hashing algorithm is used.
refer to hash the password by yourself :