Upgrading to hashed passwords
Audience Manager ships with sample Web pages that implement a simple subscription model. The sample Web pages in the previous version stored passwords in plain text. Since it is not best practice to store passwords in plain text, in Audience Manager 2013 new utility methods have been added to the APIs so that you can encrypt passwords using one-way hash values. The sample Web pages have been updated to use these methods.
- Converting plain text passwords to hash values
-
The Audience Manager API (.NET) provides access to Audience Manager item types (Contacts and Segments) on the Content Manager. If you already have Contacts with plain text passwords, you can convert these passwords to one-way hash values using the
DigestPassword()andCheckPassword()methods in theTridion.AudienceManagement.APInamespace. - Encrypting passwords to hash values
-
If your Web site uses Java, encrypt passwords using the
DigestPassword()andCheckPassword()methods in thecom.tridion.marketingsolution.utilitiespackage (Outbound E-mail Content Delivery (Java) API).