Hi all,
I have a Login Page whrere all Functionalities such as validations are
Done in Client Side...
I have to Implement Remember My Mail Id and PAss Word Functionality
also in Client side..
When Remember PAssWord Check Box is Checked.....
The User and Mail Id Should be Remembered Duriing The Next Login...
How could i do this in Client Side.....
Any One Please help me......
Thanks In Advance....
Sanjay 6 6060
Hi,
Charleees wrote:
Hi all,
I have a Login Page whrere all Functionalities such as validations are
Done in Client Side...
I have to Implement Remember My Mail Id and PAss Word Functionality
also in Client side..
When Remember PAssWord Check Box is Checked.....
The User and Mail Id Should be Remembered Duriing The Next Login...
How could i do this in Client Side.....
Any One Please help me......
Thanks In Advance....
Sanjay
You mean that if I visit your website, my password will be stored *in
clear text* on the client computer? You mean that if I am in an internet
café and neglect to clear the cookies before I leave, anyone can see my
credentials and use them?
I guess that you see now why security must *never* be done on the
client, but always on the server.
Greetings,
Laurent
--
Laurent Bugnion, GalaSoft
Software engineering: http://www.galasoft-LB.ch
Private/Malaysia: http://mypage.bluewin.ch/lbugnion
Support children in Calcutta: http://www.calcutta-espoir.ch
Thanks Mr.Laurent ,
Actually Clients Requirement is to Perform This Remember PAssWord
Functionality on Client Side... Thats y we are suppose to do it...
Is there any way to Implement it..
Please reply as Early as Possible..
Thanks
Sanjay
Hi,
Charleees wrote:
Thanks Mr.Laurent ,
Actually Clients Requirement is to Perform This Remember PAssWord
Functionality on Client Side... Thats y we are suppose to do it...
Your client is wrong. Your task as the developer is to show your client
how wrong he is, and to explain to him what kind of problems he will
expose his site to if he uses cookies to save the user's password.
Is there any way to Implement it..
Yes, but none of them are secure.
Please reply as Early as Possible..
You post to a public newsgroup. There is no urgency. Additionally,
please quote what you reply to.
Thanks
Sanjay
Greetings,
Laurent
--
Laurent Bugnion, GalaSoft
Software engineering: http://www.galasoft-LB.ch
PhotoAlbum: http://www.galasoft-LB.ch/pictures
Support children in Calcutta: http://www.calcutta-espoir.ch
Laurent Bugnion wrote on 27 Sep 2006 in comp.lang.javas cript:
>Actually Clients Requirement is to Perform This Remember PAssWord Functionalit y on Client Side... Thats y we are suppose to do it...
Your client is wrong. Your task as the developer is to show your client
how wrong he is, and to explain to him what kind of problems he will
expose his site to if he uses cookies to save the user's password.
>Is there any way to Implement it..
Yes, but none of them are secure.
Generally you are right, Laurent.
However, in real cyberlife, security comes in different tastes.
Some password restricted sites are just so to comply with custom or legal
requirement, and the owner does not give a damn who gets in, or even wants
as many visitors as possible.
And, security is never absolute on internet.
That being said, I would never save a user provided password in a cookie,
but use just a [temporary] random string matching the same in the
serverside database.
--
Evertjan.
The Netherlands.
(Please change the x'es to dots in my emailaddress)
Charleees wrote:
Hi all,
I have a Login Page whrere all Functionalities such as validations are
Done in Client Side...
I have to Implement Remember My Mail Id and PAss Word Functionality
also in Client side..
When Remember PAssWord Check Box is Checked.....
The User and Mail Id Should be Remembered Duriing The Next Login...
I notice that you did not say that the "Password" also has to be
remembered. That is good. Storing passwords on the client is not a good
idea, ever.
>
How could i do this in Client Side.....
Look into using cookies. Cookies allow you to store and retrieve small
bits of text on the client machine.
>
Any One Please help me......
Thanks In Advance....
Sanjay
"Charleees" <vc********@gma il.comwrote in message
news:11******** **************@ i3g2000cwc.goog legroups.com...
>
Thanks Mr.Laurent ,
Actually Clients Requirement is to Perform This Remember PAssWord
Functionality on Client Side... Thats y we are suppose to do it...
Is there any way to Implement it..
Please reply as Early as Possible..
All that was said about the foolishness of storing credentials on client is
correct.
This should be done only if customer does not truly care about security.
That said, consider a hash algorithm, that combines password with something
else, would give some semblance of security. Probably not, but think about
it.
Digression: This is the sort of case where you must decide whether you are a
professional or are hired help.
A professional is someone knowledgeable in an area, to whom a customer pays
big bucks (or rupees) to accomplish what can be done, or be told what must
not be done. Example: lawyers, doctors, accountants, programmers.
A hired hand is someone who does what customer wants whether or not that is
what customer should want. Example: project managers, programmers.
---Bruce Wisentaner This thread has been closed and replies have been disabled. Please start a new discussion. Similar topics |
by: Bas Bloemsaat |
last post by:
Hi,
This maybe more of a Javascript question than PHP, but as it requires some
understanding about what is sent over the line and what not, I assume this
is the better forum to ask.
I'm building a php app, and I'm planning to use md5/hmac-md5 for the
password protection. I cannot always use ssl, for that would simplify
things, and provide much better protection.
|
by: Konrad Den Ende |
last post by:
I'd like to take a look at PHP but the problem is that
this far, i've used Java because it doesn't require
anything else from the server it's downloaded from
(if compiled as an Applet, of course). How is it with
PHP? Will i have to nag on the administrators of the
server where my website is to install anything?
--
Kindly
|
by: Don |
last post by:
I'm writing an html page with some JavaScript that reads a web page
into a client-side temp file, then reformats it, then submits that
same file as a URL to the browser for display, via "locate.replace".
I can do all this if the html page containing the script originates
on the client machine, but don't know how to get access to a
client-side temp file when the same html page containing the script is
on a web host. How do I get access...
|
by: cjl |
last post by:
Hey all:
I know that it is silly in the age of Google to 'lose' something on the
internet, but I recently checked out a project that had implemented a
database with a subset of SQL in pure client-side javascript.
I forgot to bookmark it, and now I can't find it.
Anyone?
|
by: Matt |
last post by:
I want to know if ASP.NET Web Forms Validation Controls are Server-Side or
Client-Side form validation? Since I think each validator control can select
either 1) JavaScript based error dialog or 2) show the error message next to
the control. For example, if the text field is empty with RequiredField
Validator control, it can show the value in ControlToValidate property in
two ways as I mentioned.
Please advise. Thanks!
| |
by: Sun Jian |
last post by:
Hi,
I am trying to customize the asp.net validation to achieve the following:
Upon submitting the form, client side validation will run, and it will stop
at the first error detected. For example if both UserID and Password text
fields are required but neither is filled in, I'd like to display the error
message (a dialogbox) "Please enter the User ID". And only after the user
has filled in UserID, it will display "Please enter the...
|
by: John A Grandy |
last post by:
is it possible to write a vb.net code (intended to run on the client-side)
that would invoke an instance of IE, have it download a page from a certain
URL, and then pre-populate some of the controls on that page, before
transferring focus to the browser-page and showing it to the user? (the
user would be responsible for submitting the page.)
|
by: anoop |
last post by:
Hello,
I want to implement client side MD5 hash for Login Control using
Javascript. how do I implement this.
Thank you
|
by: Simon |
last post by:
I heard that we could do that by using AJAX. Could anybody share how to do
it? Thanks.
|
by: Hystou |
last post by:
Most computers default to English, but sometimes we require a different language, especially when relocating. Forgot to request a specific language before your computer shipped? No problem! You can effortlessly switch the default language on Windows 10 without reinstalling. I'll walk you through it.
First, let's disable language synchronization. With a Microsoft account, language settings sync across devices. To prevent any complications,...
|
by: jinu1996 |
last post by:
In today's digital age, having a compelling online presence is paramount for businesses aiming to thrive in a competitive landscape. At the heart of this digital strategy lies an intricately woven tapestry of website design and digital marketing. It's not merely about having a website; it's about crafting an immersive digital experience that captivates audiences and drives business growth.
The Art of Business Website Design
Your website is...
| |
by: tracyyun |
last post by:
Dear forum friends,
With the development of smart home technology, a variety of wireless communication protocols have appeared on the market, such as Zigbee, Z-Wave, Wi-Fi, Bluetooth, etc. Each protocol has its own unique characteristics and advantages, but as a user who is planning to build a smart home system, I am a bit confused by the choice of these technologies. I'm particularly interested in Zigbee because I've heard it does some...
|
by: agi2029 |
last post by:
Let's talk about the concept of autonomous AI software engineers and no-code agents. These AIs are designed to manage the entire lifecycle of a software development project—planning, coding, testing, and deployment—without human intervention. Imagine an AI that can take a project description, break it down, write the code, debug it, and then launch it, all on its own....
Now, this would greatly impact the work of software developers. The idea...
|
by: isladogs |
last post by:
The next Access Europe User Group meeting will be on Wednesday 1 May 2024 starting at 18:00 UK time (6PM UTC+1) and finishing by 19:30 (7.30PM).
In this session, we are pleased to welcome a new presenter, Adolph Dupré who will be discussing some powerful techniques for using class modules.
He will explain when you may want to use classes instead of User Defined Types (UDT). For example, to manage the data in unbound forms.
Adolph will...
|
by: conductexam |
last post by:
I have .net C# application in which I am extracting data from word file and save it in database particularly. To store word all data as it is I am converting the whole word file firstly in HTML and then checking html paragraph one by one.
At the time of converting from word file to html my equations which are in the word document file was convert into image.
Globals.ThisAddIn.Application.ActiveDocument.Select();...
|
by: 6302768590 |
last post by:
Hai team
i want code for transfer the data from one system to another through IP address by using C# our system has to for every 5mins then we have to update the data what the data is updated we have to send another system
|
by: muto222 |
last post by:
How can i add a mobile payment intergratation into php mysql website.
| |
by: bsmnconsultancy |
last post by:
In today's digital era, a well-designed website is crucial for businesses looking to succeed. Whether you're a small business owner or a large corporation in Toronto, having a strong online presence can significantly impact your brand's success. BSMN Consultancy, a leader in Website Development in Toronto offers valuable insights into creating effective websites that not only look great but also perform exceptionally well. In this comprehensive...
| |