Home » RDBMS Server » Security » Passing 160 characters via client id or some other means?
Passing 160 characters via client id or some other means? [message #306549] Fri, 14 March 2008 11:39 Go to next message
orausern
Messages: 735
Registered: December 2005
Location: Hyderabad
Senior Member
Hi,

We need to pass some application user related info. to the database. All appilcation users connect via same database user. So db connection is of the same schema name , but application users are different. We know of one approach that can help and that is client_identifer. But the problem with client_identifier is that it is limited to 64 characters. Whereas our user_id string has 155 characters(as it is encrypted and we want to pass some other info. concatenated). So this approach is not working due to the limit of 64 bytes.

Can you suggest if there is any way we can manage the requirement? Any suggestions will be very helpful.

Thanks,
Nirav

[Updated on: Fri, 14 March 2008 11:39]

Report message to a moderator

Re: Passing 160 characters via client id or some other means? [message #306551 is a reply to message #306549] Fri, 14 March 2008 11:49 Go to previous message
Michel Cadot
Messages: 60008
Registered: March 2007
Location: Nanterre, France, http://...
Senior Member
Account Moderator
Record the information in a table and set the client id to a pointer to the row in the table.
For instance the rowid + a serial data that can be a hash value for the information then you can check the original information was not modified.

Regards
Michel

[Updated on: Fri, 14 March 2008 11:51]

Report message to a moderator

Previous Topic: False Positive Responsibilities
Next Topic: Access Restriction
Goto Forum:
  


Current Time: Sat Dec 20 14:56:43 CST 2014

Total time taken to generate the page: 0.07663 seconds