[jifty-devel] Validating and encrypting passwords
IN SUK JOUNG
i.joung at gmail.com
Wed Mar 28 11:53:07 EDT 2007
I had a similar case. I overrode 'create' and it worked fine, although I am
not sure this is Jifty style.
On 3/28/07, Henry Baragar <Henry.Baragar at instantiated.ca> wrote:
>
> Hello,
>
> The topic is really about the order in which "validate_column" and "
> before_set_column" get called, but the purpose is for implementing my own
> authentication module that validates that new passwords meet corporate
> policy
> and then encrypts them before storing them in the database.
>
> It seems to me that the correct place to put password encryption is in the
> "before_set_column" method, but this method gets called before
> "validate_column". This means that "validate_column" tries to validate
> the
> encrypted password (which does not work very well).
>
> What is the reasoning for running "before_set_column" before
> "validate_column"? (Particularly since there is a "canonize_column" that
> is
> called before "validate_column").
>
> If "before_set_column" is not the correct place to encrypt the password,
> then
> where should it be done?
>
> Regards,
> Henry
> _______________________________________________
> jifty-devel mailing list
> jifty-devel at lists.jifty.org
> http://lists.jifty.org/cgi-bin/mailman/listinfo/jifty-devel
>
--
Best,
In-Suk Joung
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.bestpractical.com/pipermail/jifty-devel/attachments/20070328/7f7aba18/attachment.htm
More information about the jifty-devel
mailing list