Qt Forum

    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Groups
    • Search
    • Unsolved

    Update: Forum Guidelines & Code of Conduct

    How to verify accounts (logins)?

    General and Desktop
    5
    5
    1670
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • S
      spode last edited by

      I have two field. in the first one the user writes his own data (user or password) and in the second one he writes his password. How verify these login data?

      1 Reply Last reply Reply Quote 0
      • T
        tobias.hunger last edited by

        That depends on how you want to authenticate the user. Is this a application specific login dialog, some database, the OS, a service on the network, etc.?

        1 Reply Last reply Reply Quote 0
        • N
          ninio last edited by

          Well, there is some ways to do it. You can check the fields against a data base.

          1 Reply Last reply Reply Quote 0
          • A
            absfrm last edited by

            if you have any database or data files , you can authenticate the user very easy.
            For Example :
            use can use sqlite db with hash password.

            If You Want You Can!

            1 Reply Last reply Reply Quote 0
            • D
              DerManu last edited by

              [quote author="abbas farahmand" date="1342495126"]
              use can use sqlite db with hash password.[/quote]

              With salted hashed password.
              http://en.wikipedia.org/wiki/Cryptographic_salt

              Further, don't use a fast hash function like MD5 or SHA. Use a scheme that you can make slower as computing power grows, without breaking your code. See for example
              http://en.wikipedia.org/wiki/Bcrypt

              If the authentication happens over the network, use a nonce (and SSL).
              http://en.wikipedia.org/wiki/Cryptographic_nonce

              If you think this is too much work, don't write the program. Don't implement your security/authentication layer as dilettantish as sony, last.fm, eHarmony, linkedin etc. did – You've read in the news what happens.

              1 Reply Last reply Reply Quote 0
              • First post
                Last post