Index: lams_bb_integration/src/org/lamsfoundation/ld/integration/util/LamsSecurityUtil.java
===================================================================
diff -u -r718f1592143790b7e3cc8fd0d6bc2fc62717e7bf -r6dec0d529fa65587029418347b74ebcdb7d269a4
--- lams_bb_integration/src/org/lamsfoundation/ld/integration/util/LamsSecurityUtil.java	(.../LamsSecurityUtil.java)	(revision 718f1592143790b7e3cc8fd0d6bc2fc62717e7bf)
+++ lams_bb_integration/src/org/lamsfoundation/ld/integration/util/LamsSecurityUtil.java	(.../LamsSecurityUtil.java)	(revision 6dec0d529fa65587029418347b74ebcdb7d269a4)
@@ -119,11 +119,9 @@
 	// in case of learnerStrictAuth we should also include lsid value when creating hash: [ts + uid + method + lsid
 	// + serverID + serverKey]
 	// regular case: [ts + uid + method + serverID + serverKey]
-	String plaintext = "learnerStrictAuth".equals(method) ? timestamp.toLowerCase().trim()
-		+ username.toLowerCase().trim() + method.toLowerCase().trim() + lsid.toLowerCase().trim()
-		+ serverId.toLowerCase().trim() + secretkey.toLowerCase().trim() : timestamp.toLowerCase().trim()
-		+ username.toLowerCase().trim() + method.toLowerCase().trim() + serverId.toLowerCase().trim()
-		+ secretkey.toLowerCase().trim();
+	String plaintext = timestamp.toLowerCase().trim() + username.toLowerCase().trim() + method.toLowerCase().trim()
+		+ ("learnerStrictAuth".equals(method) ? lsid.toLowerCase().trim() : "") + serverId.toLowerCase().trim()
+		+ secretkey.toLowerCase().trim();		
 	// generate authentication hash code to validate parameters
 	String hash = sha1(plaintext);