Home/ Questions/Q 8643001
In Process

The Archive Base Latest Questions

Editorial Team
  • 0
Asked: 2026-06-12T11:55:18+00:00

I am trying to authenticate a user through the Magento Go SOAP API and

  • 0

I am trying to authenticate a user through the Magento Go SOAP API and having problems generating a matching hash. According to the docs the password_hash contains password:salt however when I md5 it’s not matching the password_hash.

Example:

1) I changed my password through admin control panel to ‘testtest’

2) Run the following code:

$client     = new SoapClient('http://XXXX.gostorego.com/api/v2_soap/?wsdl');
$session    = $client->login($api_user, $api_pass);

$params     = array('filter'=>array(array('key'=>'email','value'=>'user@domain.com')));

$data       = $client->customerCustomerList($session, $params);     

echo '<pre>CUSTOMER: '.print_r($data, true).'</pre>';

if (count($data)) {
    $hash   = explode(':',$data[0]->password_hash);
    $salt   = $hash[1];
    echo '<pre>HASH PARTS:'.print_r($hash, true).'</pre>';
    echo '<br>' .md5($salt.$password);
}

3) password_hash is f35604820826428dd7633b91cd6078f4075c9bfa1a37db7bc70f563475ad8495:qK

4) MD5 is 0b04a656c770ba2f10b5918f94529cd8

Share

Leave an answer

You must login to add an answer.

Need An Account,

1 Answer

  1. Editorial Team

    I’ve never done this with with Magento Go (and I’m not sure it’s supported/possible) but the hash string

     f35604820826428dd7633b91cd6078f4075c9bfa1a37db7bc70f563475ad8495:qK

    is too long to be a MD5 hash of a string. That’s a 64 byte hash (plus the :, plus the salt qK). My guess is it’s SHA256, but that’s a guess based on character length.

    • 0