By default KonaKart uses the MD5 Message-Digest Algorithm to encrypt passwords. This is a one way algorithm which is used to encrypt customer passwords before they are stored in the database. During the login process when passwords are compared, the password entered by the customer is encrypted and compared with the stored encrypted password.

The class that is called to encrypt and check the password is called Security.java and may be found in the KonaKart/custom/utils/src/com/konakart/util directory. The default behaviour is for it to call the standard KonaKart encryption methods. However, if your requirements necessitate the implementation of a different encryption algorithm, the methods of Security.java may be customized to implement your own algorithm. Once modified the class must be compiled following the instructions in the Programming Guide chapter of this document.