Login user authentication

Question

4.00/5 (1 vote)

See more:

I want to integrate the user login of my new asp.net new application with my organization ERP user credentials so that the EPR users can login on the asp.net application by using the same ERP credentials.

The ERP system's front end is developed by using Orcale form and All the ERP users are created by ERP user creation form via ORACLE CREATE USER command which stores user into in oracle dba_users table having password in the encrypted form.

When user log into the asp.net application by entering its user name and password,the application connect to the oracle data base but it does not fatch user record due to the password mismatch as user password encrypted in dba_users table.

Can any one help as how to verify the user name and password from the oracle dba_users table suggest a way to verify that the entery password for the specified user valid or invalid.

Posted 9-Nov-13 3:36am

Shoukat Ali Laghari

Add a Solution

1 solution

Add a Solution

Add your solution here

Treat my content as plain text, not as HTML

Preview 0

…

Existing Members

Sign in to your account

...or Join us

Download, Vote, Comment, Publish.

Your Email
Password
Forgot your password?

Your Email
This email is in use. Do you need your password?
Optional Password

I have read and agree to the Terms of Service and Privacy Policy
Please subscribe me to the CodeProject newsletters

When answering a question please:

Read the question carefully.
Understand that English isn't everyone's first language so be lenient of bad spelling and grammar.
If a question is poorly phrased then either ask for clarification, ignore it, or edit the question and fix the problem. Insults are not welcome.
Don't tell someone to read the manual. Chances are they have and don't get it. Provide an answer or move on to the next question.

Let's work to help developers, not make them feel stupid.

This content, along with any associated source code and files, is licensed under The Code Project Open License (CPOL)

Sampath Lokuge · Answer 1 · 2013-11-09T04:46:00

Solution 1

You have to do this way. Firstly find the algorithm which used for encrypt the password on oracle forms.After that using the same algorithm convert your user entered password and check it with the retrieved password from the oracle DB.If it's matched then OK else fail to log-in. Here you don't need to use any decrypt password scenario (it's same as when you use the SHA1 Algorithm. You cannot decrypt it).

Posted 9-Nov-13 4:46am

Sampath Lokuge

Comments

Shoukat Ali Laghari 11-Nov-13 9:50am

Well i have tried this solution but unfortunately could not find as such encryption code in the oracle login form's Button which is clicked for login however the button code just prepares the parameter list for the user inputs and passes it to the next form

Sampath Lokuge 11-Nov-13 10:01am

Is that mean password stored in plain text ?

Shoukat Ali Laghari 1-Dec-13 4:13am

It is stored as encrypted text in the oracle database's db_users tables. oracle stores its user data in this table. I also created a dummy user having same password as the password of the existing user so as to compare the hash text but the encrypted hash generated by oracle for 2 different user is different

Sampath Lokuge 1-Dec-13 4:22am

Of course it must be different.So You have to see the oracle form's user log-in page to identify the way which it validates for the valid user.Then you can use the same mechanism for validate the user on your asp.net form.