Request and send data securely through PHP
-
Hello
In a project we make both web and desktop application. They are redundant because the web application requested later and i don't want to delete my code.
So we don't want to mess with each other and we want to use the same password database.( They are using Laravel framework)My initial thought was i send a
QCryptographicHashed Username and password and then the Framework just send to comparison, But that won't work because i cant compare when they make a new user(and Vice Versa).After some search i find
Network Access Managerwhich can get me stuff from the given link but sending plain text not the best idea but i don't that Cryptic is a viable options here.My Questions are
How can i securely send username+password to their Framework to process data,
And how their Framework can send me the dbuser+dbpassword securely?(Mysql)Regards:
Cs'
(sorry for my not proper English ) -
QNetworkAccessManagercan already handle secure connections. It uses OpenSSL.As a side note, it's unsafe, for obvious reasons, to pre-compute the hash of the password. They should be hashed only by the system that manages the database. all other systems should send the passwords on an SSL protected connection unaltered
-
QNetworkAccessManagercan already handle secure connections. It uses OpenSSL.As a side note, it's unsafe, for obvious reasons, to pre-compute the hash of the password. They should be hashed only by the system that manages the database. all other systems should send the passwords on an SSL protected connection unaltered
@VRonin
Thank you for your reply.
i have another question, in our context (w/ Laravel Framework) how we should do it properly?
i mean the Laravel usingbcryptwith its own salting. So our problem that we need to sync different methods on the DB (and its our main problem for weeks now )edit: ( i wasnt exact... Laravel is on the same site as the DB we want to manage but its use its on DB for the password (mysql))
