tags:

views:

526

answers:

4
+2  Q: 

migrate from C#.net 2.0 to php so the hash value of the password - how to resolve?

Hi

we previously use a C#.net 2.0 to create a web app.

Users password were hashed and stored in database using the following code.

private const string encryptionKey = "AE09F72B007CAAB5";

HMACSHA1 hash = new HMACSHA1();
hash.Key = HexToByte(encryptionKey);
encodedPassword = Convert.ToBase64String(
    hash.ComputeHash(Encoding.Unicode.GetBytes(password)));

now we intend to migrate to php.

so we face a problem for users when they want to back in.

what php equivalent of the method should be used so that the hash values in the database would work?

eg password to encode is pa55w0rd the hash value gotten is oK9NOVhpTkxLoLfvh1430SFb5gw=

Thank you.

A: 

Using a .Net version of PHP (Phalanger) or using a .Net webservice to encode/decode isn't an option?

Mischa Kroon  2009-06-19 10:00:48
thanks mischa, but we are looking to cut costs. hence it is more elegant if we have a php equivalent of the hash function we used in c#.anyway, thanks for leaving your answer. now i know there is such a thing as phalanger. which i previously didnt hear about.
keisimone  2009-06-20 01:09:12
A: 

Try something like:

<?php
 $key = "AE09F72B007CAAB5";
 echo base64_encode(hash_hmac("sha1", "test", $key, true));
?>
 2009-06-19 10:20:03
hi tt, nope didn't work. i got v1tgPrd6893541ZqrDVr4F1qHw8= instead of oK9NOVhpTkxLoLfvh1430SFb5gw=
keisimone  2009-06-19 11:40:21
A: 

In C# the default formatting of the hash is in HEX (AE09F72B007CAAB5 is a hex number).PHP defaults to Base64 formatting. Solving your problem is a matter of converting the base64 string to hex in php

AlexDrenea  2009-06-19 10:20:55
hi alex, thanks for answering. i wanted to ask you for more details, but i got the answer i needed. thank you.
keisimone  2009-06-20 01:10:14
+2  A: 
VolkerK  2009-06-19 13:12:53
this works! thanks.i could have just left it like this. but i want to learn and get better at this. so help me with a few questions.// http-request where the data is utf-8 encoded. Adjust the $from parameter for// mb_convert_encoding() accordinglythe intention is to build a php login page, so i suppose it will be http request? how to tell if it is utf-8 encoding? how to adjust the encoding if at all possible?thank you once again!!
keisimone  2009-06-20 00:59:43
by the way, i do know that for utf8 i need to change to $data = mb_convert_encoding($password, 'UTF-16LE', 'UTF-8'); what i meant was the http request.
keisimone  2009-06-20 01:06:42
In a nutshell: If you send the html doc containing the login form utf-8 encoded you can expect the client to send the login data utf-8 encoded as well. Curious, I couldn't find a question on that topic on SO...?
VolkerK  2009-06-20 08:14:32
+1 for helping me identify the cause of a similar problem
Matt Lacey  2009-11-10 11:39:45

related questions

Displaying Flash content in a C# WinForms application
How to get the value of built, encoded ViewState?
Unhandled Exception Handler in .NET 1.1
How do I connect to a database and loop over a recordset in C#?
How do I most elegantly express left join with aggregate SQL as LINQ query
Get a new object instance from a Type in C#
.NET Testing Framework Advice
Automatically update version number
What is the difference between an int and an Integer in Java/C#?
How to write to Web.Config in Medium Trust ?
WinForms ComboBox data binding gotcha
How do you sort a C# dictionary by value?
Adding Scripting functionality to .NET applications
Floating Point Number parsing: Is there a Catch All algorithm?
How do I print an HTML document from a web service?
Decoding T-SQL CAST in C#/VB.net
Anatomy of a "Memory Leak"
How do I get a distinct, ordered list of names from a DataTable using Linq
Reliable Timer in a Console Application
How do I fill a DataSet or a DataTable from a LINQ query resultset ?
What's the difference between Math.Floor() and Math.Truncate() in .NET?
How do I calculate relative time?
How do I calculate someone's age in C#?
Are there any conversion tools for porting Visual J# code to C#?
When setting a form's opacity should I use a decimal or double?