CodeCharge Studio
search Register Login  

Web Reporting

Visually create Web Reports in PHP, ASP, .NET, Java, Perl and ColdFusion.
CodeCharge.com

YesSoftware Forums -> Archive -> CodeChargeStudio.Discussion

 Enhancement Request to Security Module!

 Print topic Send topic

Author Message
Jeff Goldstein
Posted: 01/21/2003, 4:11 AM
The Secruity / User module works great, however I believe their should also
be 2 more fields used such as first and last name, that way when somebody
log's into the system it can say something to the effect of,

you logged in as bill jones.

--jeff
DAVID
Posted: 01/22/2003, 6:56 AM
IMHO this in unrelated to authentication.
i.e:
Create 2 other tables ( or extend existing table):
1. GROUP_EXT: group_id (FK from GROUPS) UNIQUE
, group_desc
, group_rights_explanation
2. USER_EXT : user_id (FK from USERS) UNIQUE
,Lname
,Fname
,Address
.....

When you want to welcome logged in users, do a select from users. When user
is logged in but does not have suffisient privileges to access a page, add a
message to login page summarizing access privileges for this account and
allow to login as another user.

Very simple to implement, flexible enough and fits the general framework.

"Jeff Goldstein" <jeffgoldstein100@techie.com> wrote in message
news:b0jddl$1hv$1@news.codecharge.com...
> The Secruity / User module works great, however I believe their should
also
> be 2 more fields used such as first and last name, that way when somebody
> log's into the system it can say something to the effect of,
>
> you logged in as bill jones.
>
> --jeff
>
>
Jeroen Steggink
Posted: 01/22/2003, 8:11 AM
This is a multi-part message in MIME format.

------=_NextPart_000_001F_01C2C239.42B3F6D0
Content-Type: text/plain;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable

What about an option for encrypting passwords.
"Jeff Goldstein" <jeffgoldstein100@techie.com> wrote in message =
news:b0jddl$1hv$1@news.codecharge.com...
The Secruity / User module works great, however I believe their should =
also
be 2 more fields used such as first and last name, that way when =
somebody
log's into the system it can say something to the effect of,

you logged in as bill jones.

--jeff


------=_NextPart_000_001F_01C2C239.42B3F6D0
Content-Type: text/html;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META http-equiv=3DContent-Type content=3D"text/html; =
charset=3Diso-8859-1">
<META content=3D"MSHTML 6.00.2800.1126" name=3DGENERATOR>
<STYLE></STYLE>
</HEAD>
<BODY bgColor=3D#ffffff>
<DIV><FONT face=3DArial size=3D2>What about an option for encrypting=20
passwords.</FONT></DIV>
<BLOCKQUOTE=20
style=3D"PADDING-RIGHT: 0px; PADDING-LEFT: 5px; MARGIN-LEFT: 5px; =
BORDER-LEFT: #000000 2px solid; MARGIN-RIGHT: 0px">
<DIV>"Jeff Goldstein" <<A=20
=
href=3D"mailto:jeffgoldstein100@techie.com">jeffgoldstein100@techie.com</=
A>>=20
wrote in message <A=20
=
href=3D"news:b0jddl$1hv$1@news.codecharge.com">news:b0jddl$1hv$1@news.cod=
echarge.com</A>...</DIV>The=20
Secruity / User module works great, however I believe their should =
also<BR>be=20
2 more fields used such as first and last name, that way when=20
somebody<BR>log's into the system it can say something to the effect=20
of,<BR><BR>you logged in as bill=20
jones.<BR><BR>--jeff<BR><BR></BLOCKQUOTE></BODY></HTML>

------=_NextPart_000_001F_01C2C239.42B3F6D0--
DAVID
Posted: 01/22/2003, 8:22 AM
This is a multi-part message in MIME format.

------=_NextPart_000_0038_01C2C208.7FC9BE50
Content-Type: text/plain;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable

What about it?=20
1. SSL=20
2. Use javascript MD5 hashing ( Look how excite.com is protected)
3. change sql statement (for mysql instedad of "WHERE password =3D =
$pass" , do "WHERE password=3DPASSWORD($pass)"

I do not understand what's the issue here?=20
"Jeroen Steggink" <jeroen_steggink@hotmail.com> wrote in message =
news:b0mfr1$un4$1@news.codecharge.com...
What about an option for encrypting passwords.
"Jeff Goldstein" <jeffgoldstein100@techie.com> wrote in message =
news:b0jddl$1hv$1@news.codecharge.com...
The Secruity / User module works great, however I believe their =
should also
be 2 more fields used such as first and last name, that way when =
somebody
log's into the system it can say something to the effect of,

you logged in as bill jones.

--jeff


------=_NextPart_000_0038_01C2C208.7FC9BE50
Content-Type: text/html;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META http-equiv=3DContent-Type content=3D"text/html; =
charset=3Diso-8859-1">
<META content=3D"MSHTML 6.00.2800.1126" name=3DGENERATOR>
<STYLE></STYLE>
</HEAD>
<BODY bgColor=3D#ffffff>
<DIV><FONT face=3DArial size=3D2>What about it? </FONT></DIV>
<DIV><FONT face=3DArial size=3D2>1. SSL </FONT></DIV>
<DIV><FONT face=3DArial size=3D2>2. Use javascript MD5 hashing ( Look =
how excite.com=20
is protected)</FONT></DIV>
<DIV><FONT face=3DArial size=3D2>3. change sql statement (for mysql =
instedad of=20
"WHERE password =3D $pass" , do "WHERE =
password=3DPASSWORD($pass)"</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT> </DIV>
<DIV><FONT face=3DArial size=3D2>I do not understand what's the issue =
here?=20
</FONT></DIV>
<BLOCKQUOTE dir=3Dltr=20
style=3D"PADDING-RIGHT: 0px; PADDING-LEFT: 5px; MARGIN-LEFT: 5px; =
BORDER-LEFT: #000000 2px solid; MARGIN-RIGHT: 0px">
<DIV>"Jeroen Steggink" <<A=20
=
href=3D"mailto:jeroen_steggink@hotmail.com">jeroen_steggink@hotmail.com</=
A>>=20
wrote in message <A=20
=
href=3D"news:b0mfr1$un4$1@news.codecharge.com">news:b0mfr1$un4$1@news.cod=
echarge.com</A>...</DIV>
<DIV><FONT face=3DArial size=3D2>What about an option for encrypting=20
passwords.</FONT></DIV>
<BLOCKQUOTE=20
style=3D"PADDING-RIGHT: 0px; PADDING-LEFT: 5px; MARGIN-LEFT: 5px; =
BORDER-LEFT: #000000 2px solid; MARGIN-RIGHT: 0px">
<DIV>"Jeff Goldstein" <<A=20
=
href=3D"mailto:jeffgoldstein100@techie.com">jeffgoldstein100@techie.com</=
A>>=20
wrote in message <A=20
=
href=3D"news:b0jddl$1hv$1@news.codecharge.com">news:b0jddl$1hv$1@news.cod=
echarge.com</A>...</DIV>The=20
Secruity / User module works great, however I believe their should=20
also<BR>be 2 more fields used such as first and last name, that way =
when=20
somebody<BR>log's into the system it can say something to the effect =

of,<BR><BR>you logged in as bill=20
jones.<BR><BR>--jeff<BR><BR></BLOCKQUOTE></BLOCKQUOTE></BODY></HTML>

------=_NextPart_000_0038_01C2C208.7FC9BE50--

   


These are Community Forums for users to exchange information.
If you would like to obtain technical product help please visit http://support.yessoftware.com.

Internet Database

Visually create Web enabled database applications in minutes.
CodeCharge.com

Home   |    Search   |    Members   |    Register   |    Login


Powered by UltraApps Forum created with CodeCharge Studio
Copyright © 2003-2004 by UltraApps.com  and YesSoftware, Inc.