//OpenForum/Authentication/login.sjs
<![CDATA[var result = false;
var name = login.getUser().getName();
var password = login.getPassword();
var testPassword = ""+file.getAttachment("/OpenForum/Users/"+name,"password.txt").trim();
var siteHashA = ""+file.getAttachment("/OpenForum/Authentication","authentication.hash.a");
var siteHashB = ""+file.getAttachment("/OpenForum/Authentication","authentication.hash.b");
var hashedPasswordA = ""+js.generateMD5( testPassword + siteHashA );
var hashedPasswordB = ""+js.generateMD5( testPassword + siteHashB );
file.saveAttachment( "/OpenForum/Authentication", "test.txt", "(" + siteHashA + " or " + siteHashB + ") " +
hashedPasswordA + " or " + hashedPasswordB + "=" + password + "(" + testPassword + ")" );
if(
hashedPasswordA.toUpperCase()==password.toUpperCase() ||
hashedPasswordB.toUpperCase()==password.toUpperCase()
) {
result = true;
if(typeof(sessionStore) != "undefined") {
var sessionId = sessionStore.createSession(name);
login.setSessionId( sessionId );
}
}
login.clearPassword();
result=result;
]]>