Thread: Storing/Using Passwords

Storing/Using Passwords

From

William Shatner

Date:

18 May 2005, 10:36:45

Hello,


I am using PostgreSQL 8.0 as a data repository for a Java based system
and I now want to add users to my java program with usernames and
passwords. Is their an encrypted password field I can use in a User
Table to store passwords or what would be the best way to approach
this?

The usernames and passwords will apply for connection to the  to the
java program only. All users will be connecting to the PostgreSQL
database transparently using the same username/password stored in a
properties file to validate their java program username/passwords.


Kind Regards,
Will

Re: Storing/Using Passwords

From

Prasanth

Date:

18 May 2005, 14:29:33

You can probably store a md5 of the password.

But when you do that you can't retrieve the password.

If some one forgets their password you have to reset it.

-Prasanth.


William Shatner wrote:
> Hello,
>
>
> I am using PostgreSQL 8.0 as a data repository for a Java based system
> and I now want to add users to my java program with usernames and
> passwords. Is their an encrypted password field I can use in a User
> Table to store passwords or what would be the best way to approach
> this?
>
> The usernames and passwords will apply for connection to the  to the
> java program only. All users will be connecting to the PostgreSQL
> database transparently using the same username/password stored in a
> properties file to validate their java program username/passwords.
>
>
> Kind Regards,
> Will
>
> ---------------------------(end of broadcast)---------------------------
> TIP 2: you can get off all lists at once with the unregister command
>     (send "unregister YourEmailAddressHere" to majordomo@postgresql.org)
>
>

Re: Storing/Using Passwords

From

Scott Marlowe

Date:

18 May 2005, 14:39:24

On Wed, 2005-05-18 at 05:36, William Shatner wrote:
> Hello,
>
>
> I am using PostgreSQL 8.0 as a data repository for a Java based system
> and I now want to add users to my java program with usernames and
> passwords. Is their an encrypted password field I can use in a User
> Table to store passwords or what would be the best way to approach
> this?
>
> The usernames and passwords will apply for connection to the  to the
> java program only. All users will be connecting to the PostgreSQL
> database transparently using the same username/password stored in a
> properties file to validate their java program username/passwords.

The md5() function is quite useful for this.  It's a one way hash
function that's commonly used by many applications to create password
hashes.