CodeCharge Studio
search Register Login  

Visual PHP Web Development

Visually Create Internationalized Web Applications, Web Reports, Calendars, and more.
CodeCharge.com

YesSoftware Forums -> Archive -> CodeChargeStudio.Discussion

 SECURITY as done by CCS

Print topic Send  topic

Author Message
Richard White
Posted: 09/10/2003, 5:02 PM

I just quickly used "application builder" in CCS 2.5.1 to build the automated screens to see what
would happen -- essentially my first experiment in getting to see what CCS actually does etc.

However, I have three questions:-

1. Having logged *in* ... how the heck do I log *out*?

2. (a) The application seems to use "3rd party" cookies?
at least - wouldn't work until firewall was set to
allow them from localhost server.

(b) *what* cookie(s) does it produce?
I can't find one stored in my cookies folder!

3. Instead of using the user id and permissions/authority from the database system (eg. the MySQL
user id), CCS seems to want its own internal user files. There are two problems with this:-

(a) is this not just duplicating the database user/security ?
(b) the passwords are all stored in plain text ...
seems pretty insecure to me <lol> ... is this right?
can't they be encrypted?

PS: In any replies - please note I'm a complete novice at CCS at the moment.

Thanks

Karen Tan
Posted: 09/10/2003, 8:34 PM

My comments on some of your questions...

Richard White wrote:

> I just quickly used "application builder" in CCS 2.5.1 to build the automated screens to see what
> would happen -- essentially my first experiment in getting to see what CCS actually does etc.
>
> However, I have three questions:-
>
> 1. Having logged *in* ... how the heck do I log *out*?
You'll have to build the logout also.
>
> 2. (a) The application seems to use "3rd party" cookies?
> at least - wouldn't work until firewall was set to
> allow them from localhost server.
>
> (b) *what* cookie(s) does it produce?
> I can't find one stored in my cookies folder!
>
> 3. Instead of using the user id and permissions/authority from the database system (eg. the MySQL
> user id), CCS seems to want its own internal user files. There are two problems with this:-
>
> (a) is this not just duplicating the database user/security ?
In a way it is, but it's more like assigning a name and level to the
numbers in the user table. It could be improved.
> (b) the passwords are all stored in plain text ...
> seems pretty insecure to me <lol> ... is this right?
> can't they be encrypted?
You'll have to code the encryption yourself.
>
> PS: In any replies - please note I'm a complete novice at CCS at the moment.
>
> Thanks
>
>

--
Karen Tan
Email |karen@awes2001.com <mailto:karen@awes2001.com>
Website | www.awes2001.com <http://www.awes2001.com/>


------------------------------------------------------------------------


Ask your child what he wants for dinner only if he's buying.
Fran Lebowitz <http://www.quotationspage.com/quotes/Fran_Lebowitz/>
(1950 - )


   


These are Community Forums for users to exchange information.
If you would like to obtain technical product help please visit http://support.yessoftware.com.

Internet Database

Visually create Web enabled database applications in minutes.
CodeCharge.com

Home   |    Search   |    Members   |    Register   |    Login


Powered by UltraApps Forum created with CodeCharge Studio
Copyright © 2003-2004 by UltraApps.com  and YesSoftware, Inc.