Hi Everyone,
I'm facing a challenge with a custom registration page I created for my Power Pages site. The page includes an HTML form that collects additional user details during registration. I am storing the entered password in the out-of-the-box 'Password' field of the Contact entity, which is the same field Microsoft uses for authentication when a user registers through the standard process.
Key Points to Note:
The Challenge:
I need to ensure that the passwords captured through my custom registration form are hashed like Microsoft does, so users can log in seamlessly using the default login mechanism.
What I Have Tried:
I attempted to replicate the hashing process using the MD4 + Salt + PBKDF2 + HMAC-SHA256 approach through a plugin, but the generated hash differs from Microsoft's, and the login was unsuccessful.
I have also attached an image comparing the differences between the password hash generated by my process and the one Microsoft creates.
Seeking Advice On:
Any insights or suggestions would be greatly appreciated.
Thanks in advance!