Give us feedback
Service icon

Enzoic Connector

Stable version 1.0.0 (Compatible with OutSystems 11)
Uploaded on 10 September 2020 by 
 (0 ratings)

Enzoic Connector

Detect compromised credentials by screening user and employee accounts without impeding the user experience– but take action if the password is found to be compromised.
Read more

This is an extension to call Enzoic Passwords API and Credentials API, with very simple one method call. 

1. CheckPassword(password)

Allows you to check whether a given password is known to be compromised, without needing to pass the exact password hash in. Rather than passing exact hashes of the password to the API, it is only necessary to supply the first 10 hex characters of each hash. A list of candidate hashes will then be returned and can be compared locally with the exact hash to determine if there was a match. This is the recommended approach for new implementations using the Passwords API.

2. CheckCredentials(username, password)

The Hash-Based Credentials API allows you to securely query the Enzoic credentials database without passing the raw credentials.

Using the Hash-Based Credentials API is a multi step process, as follows:

Retrieve the Account Salt and Hashes

Calculate Requested Password Hashes

Calculate Credential Hashes

Make Credentials API Call

Release notes (1.0.0)
Reviews (0)
More from Burt Wang