There is a web service that I need to integrate into Intalio that requires the following Log-in Process

1 Authentication Request – Sent to the server to request a nonce value for a login ID

2. Authentication Response – Sent in response to the above message. This message contains the nonce value required to perform the MD5 encryption of the password

3.Login Request – Sent to the server to log in a user. This message contains the encrypted password using the nonce from the previous message

4.Login Response – Sent in response to the above message. This message confirms that the user was logged in or gives an error message when the login was not successful (for example, the password was incorrect)

MD5 Encrypted Password Calculation

The MD5 encrypted password calculation is as follows:
1) The message digest of the user’s plain password is calculated using the Secure Hash Algorithm (SHA) algorithm.

2) For every four bits in the 160-bit digest, starting from the first bit, it is converted into a character in ASCII Hex format (0 through 9, a through f). The result is a 40-character string S1, for example, f7a9e24777ec23212c54d7a350bc5bea5477fdbb.

3) The string S1 is then used to construct a new string S2, whereby S2 = nonce + “:” + S1, where nonce is the value in the authentication response message from the system.

4) Next, the message digest of S2 is calculated using the MD5 algorithm.

5) For every four bits in the 128-bit digest from step 2, starting from the first bit, it is converted into a character in ASCII Hex format (0 through 9, a through f). The result is a 32-character string, for example, dc70779bf8461b5a1e6aea58f636d5c0.

6) This string is used as the password in the command passed to the Login Request.


Does intalio have the ability to use MD5 encryption? Are there any other solution available to me?

Thanks
Mark

Hi Mark, you would need to define custom functions to define a md5 encryption xpath function, and the ASCII to hex and hex to ASCII transformations as well.

Here is a tutorial on how to create xpath functions:
http://www.intalio.org/confluence/display/PXE/Custom+XPath+Functions

Thanks,

Antoine

Antoine,
Thank you for the quick reply. I will take a look.

Mark

The crypto functions for MD5 and SHA-1 are defined as part of the XFORMS standard see digest() function so you might shortcut your process by locating an implementation of XFORMS which exposes these XPATH extensions ( Orbeon has implemented them)
David