Oracle FAQ | Your Portal to the Oracle Knowledge Grid |
Home -> Community -> Usenet -> c.d.o.server -> Re: Login page password encription
Maga wrote:
> I'm a new developer for Oracle Forms 9i. I made a table of Security that
> contents UserName, Password and Privilege of an specific users and made a
> login page for autentication, but I need know how encript password in this
> login page.
>
> Following, an example of my security table and the data entred:
>
> Desc Seguridad;
> Name Null? Type
> ----------------------------------------------------- -------- --------------
> ----------------------
> USER_NAME VARCHAR2(20)
> U_PRIVILEGE VARCHAR2(25)
> U_PASS VARCHAR2(10)
>
> USER_NAME U_PRIVILEGE U_PASS
> -------------------- ------------------------- ----------
> admini administrativo admini
> tegno tegnologo tegno
> recep recepcion recep
>
> 3 rows selected.
>
> And, the PL/SQL trigger created on the Submit Button to work the privileges.
> TRIGGER OF THE SUBMIT(WHEN-BUTTON-PRESSED)
>
> Declare
> name1 varchar2(20);
> pass1 varchar2(10);
> v_privilege varchar2(20);
> begin
> if :user_name is null then
> message('Favor de no dejar espacios sin llenar');
> Raise form_trigger_failure;
> end if;
>
> if :u_pass is null then
> message('Favor de no dejar espacios sin llenar');
> Raise form_trigger_failure;
> end if;
>
> select user_name, u_pass into name1, pass1 from sys.seguridad
> where user_name = LTRIM(RTRIM(:user_name));
> if :user_name = LTRIM(RTRIM(name1)) and :u_pass = LTRIM(RTRIM(pass1))
> then
> /*quelquier funcion que yo quiera*/
>
> select u_privilege into v_privilege
> from sys.seguridad where user_name = LTRIM(RTRIM(:user_name));
> If v_privilege = 'administrativo' then
> set_item_property('bloodcomponent',
> enabled, property_true);
> set_item_property('patient',
> enabled, property_true);
> set_item_property('physician',
> enabled, property_true);
> set_item_property('medicalorder',
> enabled, property_true);
> set_item_property('transfusion',
> enabled, property_true);
> set_item_property('informes',
> enabled, property_true);
> set_item_property('exit',
> enabled, property_true);
> elsif
> v_privilege = 'tegnologo' then
> set_item_property('bloodcomponent',
> enabled, property_true);
> set_item_property('patient',
> enabled, property_true);
> set_item_property('physician',
> enabled, property_false);
> set_item_property('medicalorder',
> enabled, property_true);
> set_item_property('transfusion',
> enabled, property_true);
> set_item_property('informes',
> enabled, property_false);
> set_item_property('exit',
> enabled, property_true);
> elsif
> v_privilege = 'recepcion' then
> set_item_property('bloodcomponent',
> enabled, property_false);
> set_item_property('patient',
> enabled, property_true);
> set_item_property('physician',
> enabled, property_true);
> set_item_property('medicalorder',
> enabled, property_true);
> set_item_property('transfusion',
> enabled, property_false);
> set_item_property('informes',
> enabled, property_false);
> set_item_property('exit',
> enabled, property_true);
> end if;
>
>
> null;
> else
> message('El nombre de usuario o la contraseña están incorrectos');
> raise form_trigger_failure;
> end if;
> exception
> when no_data_found then
> message('El nombre de usuario o la contraseña están incorrectos');
> raise form_trigger_failure;
> end;
>
> Clear_block;
>
> Thanks,
> Maga
What database version?
9i use DBMS_OBFUSCATION_TOOLKIT
10g use DBMS_CRYPTO
How secure? Something simple like this can work in many situations:
SELECT TRANSLATE('this is a secret',
'abcdefghijklmnopqrstuvxyz', '0123456789qwertyuiop[kjhbv')
FROM dual;
SELECT TRANSLATE('p78o 8o 0 o42i4p',
'0123456789qwertyuiop[kjhbv', 'abcdefghijklmnopqrstuvxyz')
FROM dual;
-- Daniel A. Morgan http://www.psoug.org damorgan_at_x.washington.edu (replace x with u to respond)Received on Fri Nov 11 2005 - 07:35:21 CST