I am reading a documentation about how to call an application web service ,

Question

0

Asked: June 13, 20262026-06-13T07:12:24+00:00 2026-06-13T07:12:24+00:00

I am reading a documentation about how to call an application web service ,

0

I am reading a documentation about how to call an application web service , they say for security reason to include the Master Login Username & Master Login Password in the web service call, such as

/jw/web/json/workflow/process/start/testcall?j_username=kermit&hash=9449B5ABCFA9AFDA36B801351ED3DF66&loginAs=john

but this raised a question in my mind what is the idea of hashing the password? since i am displaying the password hash value that will be matched against the hash value in the database?

So it is still unsecure to expose the password hash value if the server is expecting the password hash value also !!! ? i mean at the end the value of the password is visible either as a hash value or not ?

Report

Leave an answer
Cancel reply

You must login to add an answer.

Need An Account,

1 Answer

Editorial Team · Answer 1 · 2026-06-13T07:12:24+00:00

Editorial Team

2026-06-13T07:12:24+00:00Added an answer on June 13, 2026 at 7:12 am

I got the answer. I should only use the

/jw/web/json/workflow/process/start/testcall?j_username=kermit&hash=9449B5ABCFA9AFDA36B801351ED3DF66&loginAs=john

At the server side level and not using javaScript, so i will not expose sensitive data.

0

Reply
Share
Share

- Report

Sign Up

Sign In

Forgot Password

The Archive Base Latest Questions

I am reading a documentation about how to call an application web service ,

Leave an answerCancel reply

1 Answer

Leave an answer
Cancel reply