Richard White
|
Posted: 09/10/2003, 5:02 PM |
|
I just quickly used "application builder" in CCS 2.5.1 to build the automated screens to see what
would happen -- essentially my first experiment in getting to see what CCS actually does etc.
However, I have three questions:-
1. Having logged *in* ... how the heck do I log *out*?
2. (a) The application seems to use "3rd party" cookies?
at least - wouldn't work until firewall was set to
allow them from localhost server.
(b) *what* cookie(s) does it produce?
I can't find one stored in my cookies folder!
3. Instead of using the user id and permissions/authority from the database system (eg. the MySQL
user id), CCS seems to want its own internal user files. There are two problems with this:-
(a) is this not just duplicating the database user/security ?
(b) the passwords are all stored in plain text ...
seems pretty insecure to me <lol> ... is this right?
can't they be encrypted?
PS: In any replies - please note I'm a complete novice at CCS at the moment.
Thanks
|
|
|
Karen Tan
|
Posted: 09/10/2003, 8:34 PM |
|
My comments on some of your questions...
Richard White wrote:
> I just quickly used "application builder" in CCS 2.5.1 to build the automated screens to see what
> would happen -- essentially my first experiment in getting to see what CCS actually does etc.
>
> However, I have three questions:-
>
> 1. Having logged *in* ... how the heck do I log *out*?
You'll have to build the logout also.
>
> 2. (a) The application seems to use "3rd party" cookies?
> at least - wouldn't work until firewall was set to
> allow them from localhost server.
>
> (b) *what* cookie(s) does it produce?
> I can't find one stored in my cookies folder!
>
> 3. Instead of using the user id and permissions/authority from the database system (eg. the MySQL
> user id), CCS seems to want its own internal user files. There are two problems with this:-
>
> (a) is this not just duplicating the database user/security ?
In a way it is, but it's more like assigning a name and level to the
numbers in the user table. It could be improved.
> (b) the passwords are all stored in plain text ...
> seems pretty insecure to me <lol> ... is this right?
> can't they be encrypted?
You'll have to code the encryption yourself.
>
> PS: In any replies - please note I'm a complete novice at CCS at the moment.
>
> Thanks
>
>
--
Karen Tan
Email |karen@awes2001.com <mailto:karen@awes2001.com>
Website | www.awes2001.com <http://www.awes2001.com/>
------------------------------------------------------------------------
Ask your child what he wants for dinner only if he's buying.
Fran Lebowitz <http://www.quotationspage.com/quotes/Fran_Lebowitz/>
(1950 - )
|
|
|
|