Re: encrypt/decrypt password with authenticate

This WebDNA talk-list message is from

2002


It keeps the original formatting.
numero = 41965
interpreted = N
texte = Just a guess, but shouldn't be: [showif [NotFound]=[lookup db=members.db&lookinField=user&value=[uppercase][username][/uppercase]&retur nField=user¬Found=NotFound]]?GK > I'm stymied. > Why won't these procedures authenticate a password encrypted and written to > a database? > > > Following a procedure outlined by Ken I came across in the archives . . . > > I copied the users.db database and renamed it members.db > I copied MultiGroupChecker and renamed it MemberChecker > Placed both of the new files in the same folder as pages I want to protect > > > I use this to write a username/password combo into a database. > > [append > db=members.db]user=[uppercase][user][/uppercase]&pass=[url][url][encrypt > seed=1234][uppercase][pass][/uppercase][/encrypt][/url][/url]&groups=e-info[ /append] > > > On top of pages to protect I have: > [include file=MemberChecker&groups=e-info] > > In my MemberChecker I have the following: > > [!] check for user in members.db[/!] > [showif NotFound=[lookup > db=members.db&lookinField=user&value=[uppercase][username][/uppercase]&retur nField=user¬Found=NotFound]] > [authenticate Bad User] > [/showif] > > [!] Check password of user in members.db[/!] > [showif [uppercase][password][/uppercase]![lookup > db=members.db&lookinField=user&value=[uppercase][username][/uppercase]&retur nField=[decrypt > seed=1234][unurl][unurl]pass[/unurl][/unurl][/decrypt]¬Found=NotFound] > [authenticate Bad Password] > [/showif] > > > > To make sure I was encrypting and decrypting the password properly > I made another page with the following: > > > [text]public=Ginny+me^$1234[/text] > > [text]private=[url][url][encrypt > seed=1234][uppercase][public][/uppercase][/encrypt][/url][/url][/text] > > [text]resurrection=[decrypt > seed=1234][unurl][unurl][private][/unurl][/unurl][/decrypt][/text] > > public=[public]

> private=[private]

> resurrection=[resurrection]

> > All went well with the above test code . . . > > . . . > > I just can't get my procedures to work with authenticate . . . . > All stops at Bad Password------------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://search.smithmicro.com/ Associated Messages, from the most recent to the oldest:

    
  1. Re: encrypt/decrypt password with authenticate (Brian Fries 2002)
  2. Re: encrypt/decrypt password with authenticate (Lester Emo 2002)
  3. Re: encrypt/decrypt password with authenticate (Alain Russell 2002)
  4. Re: encrypt/decrypt password with authenticate (Gary Krockover 2002)
  5. encrypt/decrypt password with authenticate (Lester Emo 2002)
Just a guess, but shouldn't be: [showif [NotFound]=[lookup db=members.db&lookinField=user&value=[uppercase][username][/uppercase]&retur nField=user¬Found=NotFound]]?GK > I'm stymied. > Why won't these procedures authenticate a password encrypted and written to > a database? > > > Following a procedure outlined by Ken I came across in the archives . . . > > I copied the users.db database and renamed it members.db > I copied MultiGroupChecker and renamed it MemberChecker > Placed both of the new files in the same folder as pages I want to protect > > > I use this to write a username/password combo into a database. > > [append > db=members.db]user=[uppercase][user][/uppercase]&pass=[url][url][encrypt > seed=1234][uppercase][pass][/uppercase][/encrypt][/url][/url]&groups=e-info[ /append] > > > On top of pages to protect I have: > [include file=MemberChecker&groups=e-info] > > In my MemberChecker I have the following: > > [!] check for user in members.db[/!] > [showif NotFound=[lookup > db=members.db&lookinField=user&value=[uppercase][username][/uppercase]&retur nField=user¬Found=NotFound]] > [authenticate Bad User] > [/showif] > > [!] Check password of user in members.db[/!] > [showif [uppercase][password][/uppercase]![lookup > db=members.db&lookinField=user&value=[uppercase][username][/uppercase]&retur nField=[decrypt > seed=1234][unurl][unurl]pass[/unurl][/unurl][/decrypt]¬Found=NotFound] > [authenticate Bad Password] > [/showif] > > > > To make sure I was encrypting and decrypting the password properly > I made another page with the following: > > > [text]public=Ginny+me^$1234[/text] > > [text]private=[url][url][encrypt > seed=1234][uppercase][public][/uppercase][/encrypt][/url][/url][/text] > > [text]resurrection=[decrypt > seed=1234][unurl][unurl][private][/unurl][/unurl][/decrypt][/text] > > public=[public]

> private=[private]

> resurrection=[resurrection]

> > All went well with the above test code . . . > > . . . > > I just can't get my procedures to work with authenticate . . . . > All stops at Bad Password------------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://search.smithmicro.com/ Gary Krockover

DOWNLOAD WEBDNA NOW!

Top Articles:

Talk List

The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...

Related Readings:

[WriteFile] problems (1997) FoundItems Question (1998) TCP Connect (2000) Major Security Hole (solution with Welcome) (1998) Shared conversion under WebTen (1998) off topic (1999) Job Opening (2003) includes and cart numbers (1997) The IBC root beer has arrived! (1997) Error:Too many nested [xxx] contexts (1997) Pasting from M$ Word (2001) [WebDNA] Stupid question about CentOS v4 and WebDNA v6 (2008) cookies and [returnraw] (1997) Return records from another (1997) Country & Ship-to address & other fields ? (1997) Setting up shop (1997) Configuring E-mail (1997) pulling URL information (2003) Emailer help....! (1997) Emailer port change (1997)