Question
Need access to user's plain text password during/after login
We have a need to call our own Password encryption service with the user's plain text password.
One of our services requires a passhash generated by our own service, this requires the plain text password to generate a valid hash.
I see the encrypted pass in the clipboard, from what I read, this is one way encryption and cannot be used for our purpose.
How do I go about access the user's plain text pass?
***Edited by Moderator Marissa to update platform capability tags****
***Moderator Edit-Vidyaranjan: Updated SR details***
"you can explicitly verify the password as far as authentication is concerned"
Where can I find this option? Is it specific to a certain protocol? I'm not seeing many options for configuration (SAML 2.0)
Thanks!
If you are using Pega OOTB authentication, you can create custom authentication service and in the authentication activity, you can try using pxSamePassword utility API to verify the user entered password with the password present on Operator record. If you are using SAML, I don't see a way to capture user entered password in plain text. I will let others to comment on that.
Thanks.
I see custom authentication service as an option for this. In your authentication service, you can explicitly verify the password as far as authentication is concerned, and you can also perform the custom encryption you want and save it somewhere in the system.