Joined: 9 Sep 05
I am having a problem using the web rpc lookup_account.php and seek someone who may be able to point me in the right direction or to a better place to post my question.
Look up account
input email_addr: email address
[ passwd_hash ]: the MD5 hash of the concatenation of the user's password and the email address.
(on one line with no spaces)
Email.Addr is the email address of the registered user
0123456789ABCDEF0123456789ABCDEF is the 32 char MD5 hash of Concat User_Password + Email_Addr
and receive the response: -206 Invalid Password
The email address and password are correct and the MD5 hash routine has been tested with a known string.
Please advise if can see where I am going wrong.
Joined: 19 Jan 07
Make sure email address is all lowercase. Also, try to invert the order of the email and the password when generating the hash (I'm not sure if it is md5(email+pw) or md5(pw+email)).
Joined: 9 Sep 05
Thank for your comments.
Both email addr and password are correct case. I have tried MD5(email_addr + passsword), md5(password + email_addr) and md5(password). In each case I get the same -206 Invalid password. This is the same for aall the project URL's I have tried so far.
If I issue: http://project_URL/lookup_account.php?mail_addr=email_addr
<?xml version="1.0" encoding="ISO-8859-1" ?>
so I am assuming my problem is in the md5 hash.
I ran the tests in RFC 1321 A.5 Test suite and noticed my md5 hash routine output was all uppercase whereas RFC 1321 specifies lowercase chars. After amending the routine to output lower case I received an authenticator.
Success! Thank you for your patience,
Copyright © 2021 University of California. Permission is granted to copy, distribute and/or modify this document under the terms of the GNU Free Documentation License, Version 1.2 or any later version published by the Free Software Foundation.