canmove, Confirmed users
2,850
edits
Talk:Litmus:Web Services: Difference between revisions
→Using tokens
ChrisCooper (talk | contribs) m (→Using tokens) |
ChrisCooper (talk | contribs) |
||
| Line 33: | Line 33: | ||
I like your approach of hashing the whole message, but I don't think we need to use a separate token to do so. If it's not being sent over the wire, could we not simply use the password as the salt? Saves creating and maintaining another piece of sensitive user data. | I like your approach of hashing the whole message, but I don't think we need to use a separate token to do so. If it's not being sent over the wire, could we not simply use the password as the salt? Saves creating and maintaining another piece of sensitive user data. | ||
[[User:ChrisCooper|coop]] 19:30, 11 Nov 2005 (PST) | --[[User:ChrisCooper|coop]] 19:30, 11 Nov 2005 (PST) | ||
First what are we trying to achieve? | First what are we trying to achieve? | ||