i'm developing custom membership provider. intend to use hashed password.
set the settings in web.config
<membership defaultProvider="test" hashAlgorithmType="SHA1"><providers><clear /><add name="test" type="abc.MyMembershipProvider" passwordFormat="Hashed"/>
is the setting above correct? i got no error.
but at debugging time, at the ValidateUser() method, the password is still in plain text, shouldn't it be hashed?