| Oracle FAQ | Your Portal to the Oracle Knowledge Grid | |
 |
 | |||
| Oracle FAQ | Your Portal to the Oracle Knowledge Grid | |
|
| |||
Home -> Community -> Usenet -> c.d.o.tools -> Re: Oracle 8/ ASP / User Authentication
Hi
my asp code for creating a connection looks like
<%
set adoConn = Server.CreateObject("adodb.connection")
adoConn.ConnectionString = "PROVIDER=MSDAORA.1;DATA SOURCE=<oracle
service>;USER ID=<uid>;PASSWORD=<pwd>;"
adoConn.Open
%>
i.e not relying on a preexisting ODBC connection. Presumably it would be relatively easy to pass uid and pwd as variables based on user input. You could then test for failure to open the connection. The drawback I would see with this is that UID and PWD would be passed as plaintext, since they are just asp variables.
As well as the alternative you have outlined - which is probably what I would do, you could consider os authentication for the database and then require users to logon to the web server with their os user account.
HTH
-- Niall Litchfield Oracle DBA Audit Commission UK <agentuser_at_somewhere.com> wrote in message news:90evss8f8fi9enro5ch9mu8ql9erglj4r4_at_4ax.com...Received on Tue Sep 26 2000 - 06:38:34 CDT
> Developing a web application using ASP and working with Oracle 8 as my
> database server. I have established connectivity to the database,
> however, now I am trying to authenticate users via username/password,
> as it is stored in the system database (whatever that is called). Is
> there a way to test for authentication?
>
> The only other alternative I can think of is to also create a USERS
> table in the database, query the database via a generic login to see
> if the user exists, however, I would prefer just to use the Oracle
> database users. Is that possible?
>
> Jason Gabinet
>
 |
 |