Hi, We have our own module that we use in aMember v3, this is to communicate with our other services (API). Now we looking to build the same plugin for aMember v4. And there are a few problems we walk into. the old version of aMember used to work with plaintext passwords so thats how it communicated with our other services, is there a way to retrieve the plaintext password (decrypt)? Or maybe any advice how we can do this another way? What is the password hashing algorithm now used in aMember v4? Or where to find it in the source? Is there somewhere good documentation how to create a new aMember v4 plugin/module? I'm hoping to get some answers. Thank you in advance.
Hi, 1. No you can't decrypt password. New version works different way, each plugin can store own password format. So for example if you have amEmber ingerated with vBulletin and Joomla three passwords will be stored for each user: internal, encrypted the same way as vBulletin and encrypted the same way as Joomla. You also can store plain text password for your plugin, but this is not secure. check /amember/library/Am/Protect/Abstract.php you should use this class as base class for your plugin. 2. aMember uses this framework to create password hash: http://www.openwall.com/phpass/ (the same is being used by wordpress and many other scripts) 3. Have a look to programming API: http://www.amember.com/docs/Main_Page