Web rpc lookup_account.php problem

Message boards : Web interfaces : Web rpc lookup_account.php problem
Message board moderation

To post messages, you must log in.

AuthorMessage
brianjcook

Send message
Joined: 9 Sep 05
Posts: 10
Message 9659 - Posted: 17 Apr 2007, 18:35:31 UTC

I am having a problem using the web rpc lookup_account.php and seek someone who may be able to point me in the right direction or to a better place to post my question.

http://boinc.berkeley.edu/web_rpc.php states:

Look up account
URL project_url/lookup_account.php
input email_addr: email address
[ passwd_hash ]: the MD5 hash of the concatenation of the user's password and the email address.

I issue:

project_url/lookup_account.php?email_addr=Email.Addr&passwd_hash=0123456789ABCDEF0123456789ABCDEF
(on one line with no spaces)

where:

Email.Addr is the email address of the registered user
0123456789ABCDEF0123456789ABCDEF is the 32 char MD5 hash of Concat User_Password + Email_Addr

and receive the response: -206 Invalid Password

The email address and password are correct and the MD5 hash routine has been tested with a known string.
"test" "098f6bcd4621d373cade4e832627b4f6"

Please advise if can see where I am going wrong.

ID: 9659 · Report as offensive
Nicolas

Send message
Joined: 19 Jan 07
Posts: 1179
Argentina
Message 9660 - Posted: 17 Apr 2007, 21:57:10 UTC

Make sure email address is all lowercase. Also, try to invert the order of the email and the password when generating the hash (I'm not sure if it is md5(email+pw) or md5(pw+email)).
ID: 9660 · Report as offensive
brianjcook

Send message
Joined: 9 Sep 05
Posts: 10
Message 9666 - Posted: 18 Apr 2007, 9:40:19 UTC

Nicolas,

Thank for your comments.

Both email addr and password are correct case. I have tried MD5(email_addr + passsword), md5(password + email_addr) and md5(password). In each case I get the same -206 Invalid password. This is the same for aall the project URL's I have tried so far.

If I issue: http://project_URL/lookup_account.php?mail_addr=email_addr
I receive:

<?xml version="1.0" encoding="ISO-8859-1" ?>
- <account_out>
<success />
</account_out>

so I am assuming my problem is in the md5 hash.

I ran the tests in RFC 1321 A.5 Test suite and noticed my md5 hash routine output was all uppercase whereas RFC 1321 specifies lowercase chars. After amending the routine to output lower case I received an authenticator.

Success! Thank you for your patience,

Brian


ID: 9666 · Report as offensive

Message boards : Web interfaces : Web rpc lookup_account.php problem

Copyright © 2024 University of California.
Permission is granted to copy, distribute and/or modify this document under the terms of the GNU Free Documentation License, Version 1.2 or any later version published by the Free Software Foundation.