User password export providing unusual md5

dbain · December 1, 2022, 2:52pm

I made a request for my user password hashes, but I’m unclear what the md5 hash represents in th export. For example, one of the rows that I had previously imported with an md5 password looks like this (no sensitive data here ):

{
  "_id": {
    "$oid": "xxx"
  },
  "email": "xxx@icloud.com",
  "email_verified": false,
  "username": null,
  "connection": "Username-Password-Authentication",
  "tenant": "dev-xxx",
  "_tmp_is_unique": true,
  "custom_password_hash": {
    "algorithm": "md5",
    "hash": {
      "value": "2.0$5763c67b736f279d416b8c9846d5895facbe124b62008c333bb349ce5cd7edbad91d2b54da62c923a9b6c6cfee17ea87$7e3e1abfb2f9a8bf216d439cea47cdf8$34df907f01cb692f9db646d6b41bf488daa7e79ff57eb0477998a56293622238",
      "encoding": "hex"
    }
  },
  "alt_id": "011"
}

You can see the algorithm is set to md5, but that’s not an md5 hash in the value attribute. Any suggestions on what’s been applied to the original hash here?

dan.woda · December 7, 2022, 5:26pm

Hi @dbain,

Welcome to the Auth0 Community!

It looks like this was solved in a support ticket. IIRC, the hash example here is not valid and you were provided with the proper hash after another request.

Let us know if there is anything else we can do. Thanks!

dbain · December 8, 2022, 9:28am

Yes resolved with a revised export, thanks for your help.

dan.woda · December 8, 2022, 8:25pm

Please let us know if you have any other issue. Thanks!

system · December 22, 2022, 8:26pm

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.