First off, I realize that there is no such thing as a perfectly secure solution (and even if there were, its usability would be crap). That said, how do you protect your MySQL database from being compromised by someone downloading your code and picking through it? Based on my experience with PHP, it seems obligatory to store it within ...
I would like to store the login, logout and duration time in database. The login time is created when the user is authenticated(successfully logged in) The logout time is created when the user clicks the logout button The duration is logout - login time. (logout minus login) But the problem is, what if the user didnt click the logo...
Can I set Tomcat (or my webapp if it's done that way) to require SSL for confidentiality of the built-in Form-Based Login mechanism? i.e. to protect the users credentials, and use standard http for any other transactions? ...
My users will be logging into a secure windows xp workstation. They will be launching a jboss portal (app server = 4.2.2.GA, portal = 2.6.5) web application. This web application currently has them log in again. I can set this up to authenticate against an LDAP server but what I really want is to have them be authenticated based on th...
I am looking for the best way to write a website login system. I am a desktop software developer and have only done minimal website coding with html, css, and php. My goals for the website login system are to allow users to sign up for the site, edit their profile, and view information such as purchases etc... I would like the option ...
I am using Visual studio, 2008, and am attempting to create an Admin section so the site owners can go in and alter their site. However, whenever I go to Website->ASP .Net Configuration to try to open the website administration tool, it tells me: An error was encountered. Please return to the previous page and try again. If I click on ...
I have a login system in place for my website, the details of the user which are stored in the database are userid(unique for every user and identifier), email address(unique), display name(not unique), password and membersince. Now what should I store in the cookies? I was thinking about storing just the userid in the cookie with an exp...
Background We are integrating third party email solution into our site. When a user goes to the Mail page it must be automatically authenticated at the Mail site. For now, the Mail link points to our page which automatically submits a form with the user's login and password. After clicking submit the user is redirected to the Mail sit...
I want to create a site in php such that, when user would login to my website, then they can add their favorite website and enter its login information once. My site will save his login information for other sites in my database, and the next time, user logged onto my website need not to enter his login information to other sides again. ...
My site is in flash. The login is also in flash. This is the login flow: Enter username and password Send to authentication.php page Here is my doubt on authentication.php page: (1) Check the post parameters, i.e username and password (2) Sha/hash the password (3) Q1(query 1), select username and password from users table (4) If ma...
I am trying to create a simple login system. When I run the login form (with the correct username and password) it doesn't seem to run the php. Any suggestions? <?php $host="linuxserver"; // Host name $username="jparry2"; // Mysql username $password=""; // Mysql password $db_name="jparry2"; // Database name $tbl_name="customer"; // Tabl...
Is there a trick to logging in to Apple Developer Connection? For the past two weeks, out of about 100 tries, I've been able to log in three times. Every other time, after a successful entry of my username and password, it takes me back to the login screen. This happens to me on both my Macs, on Safari and Firefox, so I'm not hopeful of...
I have a cURL PHP script which is able to validate a username/password against the external source. What is the best way to integrate this as a login requirement for (select) users in Drupal? ...
I am trying to have a connect button on my site. Once the user has clicked the facebook login button, the pop up will ask the user to enter the authentication detail and the parent window will either redirect or refresh the page and the login button became a logout button. My problem is when a user clicked the connect button from the po...
I'd like to include user validation in my web app, to prevent the user from creating many accounts. For example, when a new user signs up, they must enter a mobile phone number, receive an SMS, then enter a confirmation code. Is there a service or API out there that automates/simplifies this process? Thanks! ...
Hi all. I want to create my own personal login gateway into Gmail/Facebook/any other site. In this gateway I enter my master username and password, then I can choose where to login (gmail/facebook/etc) without entering those usernames because they are stored on the server. I tried to implement this by using cURL to send POST request wi...
Hi, I have a web application that I use Login Control and ASP.net membership for Sign in process. my application work propebly untill last week I upload new version, in this version I didnt change the login UC and just the main page ( default page after user logged in ) changed. but some users report me they cant login and redirect to L...
Question is about providing auditing (who used the application, when) and securing (who can launch the application - no fine grain control or data security) a desktop application developed you. What would you prefer? Have an authentication mechanism built into your application If using this option, we have to include user and passwo...
Hi, im Using CakePHPs standard Auth mechanism, but I have some problems with that. Everytime a user logges in the password got hashed twice. I have the Auth Component in the var $componets Array in the app_controller.php and one in the var $components Array from my users_controller where the login action is defined. I have defined a ...
I am Making an Iphone application which is web-service enabled. Also I have skeleton of this application.I am using rest to feed the contents of view controllers. When application is launched it is presented with Login page asking username and password. Clicking Login button sends request to server and in response xml data is fetched. Th...