nonces.verify(string, string) => bool

Test authentication with an encrypted password.


  • factory_name string (lowercase, normally from hostname)
  • encrypted_password string (lowercase hexadecimal, length 32)

Return value

  • success boolean (or XML-RPC fault with error message)

Password encryption

To encrypt the password, you must first generate a nonce and get the encryption algorithm and salt (see nonces.challenge). Then you can compute the encrypted password like this:

encrypted_password = md5(sha1(salt + password) + nonce)

If requested by the challenge, you must use md5 rather than sha1 for the inner hash. The result of each hash function call must be formatted as lowercase hexadecimal. The calls to nonces.challenge and nonces.verify must be made from the same IP address.

Back to the list of supported methods