like Security::setHash('md5'); - to something else?
What other settings have you set in the Auth component?
I ask because we know that the password is submitted, but only gets
into the $this->data array, when Auth is not active!
John
On Apr 24, 2:06 pm, Malcolm Krugger <chennaiprogram...@gmail.com>
wrote:
> Miles
>
> Configure::write('Security.level', 'medium');
> /**
> * A random string used in security hashing methods.
> */
> Configure::write('Security.salt',
> 'DsssggYhG93b0qyJfIxfs2guVoUubWwvniR2G0FgaC9mi');
>
> ALSO IN DEBUGGING output
>
> 1 DESCRIBE `members`
> 2 SELECT `member`.`id`, `member`.`username`, `member`.`password`,
> `member`.`firstname`, `member`.`lastname`, `member`.`emailid` FROM
> `members` AS `member` WHERE `member`.`username` = 'zfa' AND
> `member`.`password` = '8381bcf91bef08a22e8748653962b231731fbb12' LIMIT
> 1
> 3 INSERT INTO `members` (`username`, `password`, `firstname`,
> `lastname`, `emailid`) VALUES ('zfa', NULL, 'd', 'ADa', 'AdsaD')
> 4 SELECT LAST_INSERT_ID() AS insertID
>
> John
>
> $_POST
>
> Array
> (
> [_method] => POST
> [data] => Array
> (
> [Member] => Array
> (
> [username] => zfa
> [password] => sdfadsf
> [firstname] => d
> [lastname] => ADa
> [emailid] => AdsaD
> )
>
> )
>
> )
>
> Disabling the Auth module saves the record the password is saved in
> plain text
--~--~---------~--~----~------------~-------~--~----~
You received this message because you are subscribed to the Google Groups "CakePHP" group.
To post to this group, send email to cake-php@googlegroups.com
To unsubscribe from this group, send email to cake-php+unsubscribe@googlegroups.com
For more options, visit this group at http://groups.google.com/group/cake-php?hl=en
-~----------~----~----~----~------~----~------~--~---
No comments:
Post a Comment