Hi experts ,
In my logon module , after user name and password verification from the UME data base , we are using
this code
//----------------------------------------------------------------------------------------------------------------------------------------------------
req.setAttribute("j_user", myBean.getUid());
req.setAttribute("j_password",UMEFunction.getDecryptedPwd(myBean.getSecurityCode(), myBean));
UMEFunction.checkLogonStatus(myBean.getUid(),session.getId(),0,"LE");
UMFactory.getLogonAuthenticator().logon(req,resp,"uidpwdlogon");
resp.sendRedirect("/irj/servlet/prt/portal/prtroot/com.sap.portal.navigation.portallauncher.default");
//----------------------------------------------------------------------------------------------------------------------------------------------------
req -- > http request and resp--> Http Response
here we can see that in the request we are storing j_user --> having the login Id and then in j_password having the password as clear text,
can we pass a hashed password to this instead sending password in plain text .
Regards
Govardan Raj