Page 1 of 1

Understanding ECards

PostPosted: Sat Jan 16, 2016 4:55 pm
by BitingBummer
Hello,
I'm trying to write my own customized client.
I have a problem with understanding the ECards on the response.
I saw that there are four cards in there, and a salt.
I understood that you run a sha256 algorithm on the salt and then xor it with the value of the card.
But I'm unable to get to the original card value.
What am I doing wrong?

Thank you.

Re: Understanding ECards

PostPosted: Sat Jan 16, 2016 6:15 pm
by Kent Briggs
I don't publish the client/server protocol. It's subject to change at any update.

Re: Understanding ECards

PostPosted: Sat Jan 16, 2016 6:31 pm
by BitingBummer
I understand.
What is the meaning of the session key, if the enable session keys option on the server configuration is disabled?

Re: Understanding ECards

PostPosted: Sat Jan 16, 2016 6:40 pm
by Kent Briggs
BitingBummer wrote:What is the meaning of the session key, if the enable session keys option on the server configuration is disabled?


Session keys are always enabled. What option are you referring to?

Re: Understanding ECards

PostPosted: Sat Jan 16, 2016 6:45 pm
by BitingBummer
Kent Briggs wrote:
BitingBummer wrote:What is the meaning of the session key, if the enable session keys option on the server configuration is disabled?


Session keys are always enabled. What option are you referring to?

require session keys

Re: Understanding ECards

PostPosted: Sat Jan 16, 2016 7:53 pm
by Kent Briggs
You can still generate and use session keys even if the requirement is disabled. It just means that both regular password logins and session key logins are allowed.