Home > mailing lists

Re: [INTERFACES] WEB-interface - Mailing list pgsql-interfaces

From	Michael Robinson
Subject	Re: [INTERFACES] WEB-interface
Date	April 15, 1999 04:36:25
Msg-id	199904150536.NAA00398@netrinsics.com Whole thread Raw
In response to	WEB-interface ("Sergei Chernev" <ser@nsu.ru>)
List	pgsql-interfaces

Tree view

"Sergei Chernev" <ser@nsu.ru> writes:
>But if I want to create subform, I have to know username/password again.
>Now, I'm solving this problem transmitting <input type="hidden"> back
>to client - but this method is wrong.

Make an MD5 checksum of the username, password, and current time.  Send the
MD5 checksum in a hidden field (or use a cookie).  Keep a server-side cache
of the currently valid checksums (expire the old ones periodically), and
check the incoming checksum against the cache for each request.

    -Michael Robinson

pgsql-interfaces by date:

From: The Hermit Hacker
Date: 15 April 1999, 03:41:06
Subject: Re: [INTERFACES] WEB-interface

From: Constantin Teodorescu
Date: 15 April 1999, 06:16:27
Subject: JDBC getUpdateCount() is working ?

Re: [INTERFACES] WEB-interface - Mailing list pgsql-interfaces

Previous

Next