Prestashop: trying to decode password
https://stackoverflow.com/questions/5903170
-
29-10-2019 - |
italiano
english
français
española
中国
日本の
العربية
Deutsch
한국어
Português
RussianQuestion
i'm developing a backend in Asp.NET for Prestashop. I've a small problem: can't decode password ! Here the code
cmd.CommandText = "SELECT * FROM ps_employee WHERE email=@email AND passwd=MD5(@pwd) AND active=1"
As you can see, i'm using MYSQL MD5 function, but ... it not work.. Password is correct, i'm sure...
Solution
The password hash is salted, prestashop seems to be using the value _COOKIE_KEY_ in settings.inc.php for this.
You will have to look up this value and compute the md5 hash of it and the password concatenated: md5(@COOKIE_KEY.@pwd)
OTHER TIPS
This is a security feature built into PrestaShop. You will not be able to decode any encoded passwords.
Licensed under: CC-BY-SA with attribution
Not affiliated with StackOverflow
