Esoterick Posted March 31, 2014 Share Posted March 31, 2014 (edited) Hello,We are making a B2B shop based on PS 1.6.We know it's a bad thing to do, but the customer wants the password to be stored in plain text.Indeed, the plain text password must be sent by email on account creation AND on password recovery request.We tried to dissuade them to adopt such behaviors, we failed... It's rooted in their way of doing business, passwords are printed on every invoice they are issuing.How can I do that? Is it doable without hacking any core files? Is there any crypto library in PS to encrypt / decrypt passwords?Regards. Edited April 2, 2014 by Esoterick (see edit history) Link to comment Share on other sites More sharing options...
vekia Posted April 1, 2014 Share Posted April 1, 2014 it's not good idea to remove the posts im more thant convinced that many merchants looking for similar solutions, so this topic will be helpful for them Link to comment Share on other sites More sharing options...
Esoterick Posted April 2, 2014 Author Share Posted April 2, 2014 (edited) Because of the obvious lack of security. We will certainly use a secure Web service between PrestaShop and the customer business application to retrieve the plain text password when it's needed. It seems to be a good compromise. The only down side is that weak password are used. Edited April 2, 2014 by Esoterick (see edit history) Link to comment Share on other sites More sharing options...
.png.022b5452a8f28f552bc9430097a16da2.png)
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now