Click here to Skip to main content
15,918,516 members
Please Sign up or sign in to vote.
4.00/5 (1 vote)
See more:
I want to integrate the user login of my new asp.net new application with my organization ERP user credentials so that the EPR users can login on the asp.net application by using the same ERP credentials.

The ERP system's front end is developed by using Orcale form and All the ERP users are created by ERP user creation form via ORACLE CREATE USER command which stores user into in oracle dba_users table having password in the encrypted form.

When user log into the asp.net application by entering its user name and password,the application connect to the oracle data base but it does not fatch user record due to the password mismatch as user password encrypted in dba_users table.

Can any one help as how to verify the user name and password from the oracle dba_users table suggest a way to verify that the entery password for the specified user valid or invalid.
Posted

1 solution

You have to do this way. Firstly find the algorithm which used for encrypt the password on oracle forms.After that using the same algorithm convert your user entered password and check it with the retrieved password from the oracle DB.If it's matched then OK else fail to log-in. Here you don't need to use any decrypt password scenario (it's same as when you use the SHA1 Algorithm. You cannot decrypt it).
 
Share this answer
 
Comments
Shoukat Ali Laghari 11-Nov-13 9:50am    
Well i have tried this solution but unfortunately could not find as such encryption code in the oracle login form's Button which is clicked for login however the button code just prepares the parameter list for the user inputs and passes it to the next form
Sampath Lokuge 11-Nov-13 10:01am    
Is that mean password stored in plain text ?
Shoukat Ali Laghari 1-Dec-13 4:13am    
It is stored as encrypted text in the oracle database's db_users tables. oracle stores its user data in this table. I also created a dummy user having same password as the password of the existing user so as to compare the hash text but the encrypted hash generated by oracle for 2 different user is different
Sampath Lokuge 1-Dec-13 4:22am    
Of course it must be different.So You have to see the oracle form's user log-in page to identify the way which it validates for the valid user.Then you can use the same mechanism for validate the user on your asp.net form.

This content, along with any associated source code and files, is licensed under The Code Project Open License (CPOL)



CodeProject, 20 Bay Street, 11th Floor Toronto, Ontario, Canada M5J 2N8 +1 (416) 849-8900