-
Welcome to B4X forum!
B4X is a set of simple and powerful cross platform RAD tools:
- B4A (free) - Android development
- B4J (free) - Desktop and Server development
- B4i - iOS development
- B4R (free) - Arduino, ESP8266 and ESP32 development
B4J Code Snippet Login Example
- Thread starter riaanp
- Start date
- Similar Threads Similar Threads
Hi, thanks for sharing.
I think this is the worst aproach for making a login, because you are requesting the actual password from the database. This is really unsafe, and it can be sniffed ot of the network.
Instead of:
Its easier and safer something like this:
If you get no records, the password and/or the username are wrong.
Also consider avoiding storing passwords as plain text. you can use a hash function to store them.
I think this is the worst aproach for making a login, because you are requesting the actual password from the database. This is really unsafe, and it can be sniffed ot of the network.
Instead of:
B4X:
Dim RS As ResultSet = MySQL.SQLCon.ExecQuery("SELECT * FROM users WHERE T_username = '" & UserNameToCheck & "';")Its easier and safer something like this:
B4X:
Dim RS As ResultSet = MySQL.SQLCon.ExecQuery("SELECT * FROM users WHERE T_username = '" & UserNameToCheck & "' AND T_password = '" & PasswordToCheck & "';")If you get no records, the password and/or the username are wrong.
Also consider avoiding storing passwords as plain text. you can use a hash function to store them.