P
Peter Judge
Guest
The domain's access key (DAC, where C=Code) is used to validate a CP (token). Once sealed , the user's password is not kept in the CP. If you're using 11.1+ then the application ABL should never use the domain access code directly - it's stored in the _Sec-auth-domain record. The DAC values must be the same for all components in the application that create or consume a CP (spring, _sec-auth-domain, generatecp).
Continue reading...
Continue reading...