HashPassword
No edit summary
(Automatically adding template at the end of the page.)
 
(5 intermediate revisions by 3 users not shown)
Line 1: Line 1:
In order to Hash and Validate Turnkey passwords you must add two ExternalLateBound methods to SysUser.
In order to Hash and Validate Turnkey passwords, add two ExternalLateBound methods to SysUser.
  HashPassword(pwd:String):String
  HashPassword(pwd:String):String
  VerifyHashedPassword(hash:String; pwd:String):Integer
  VerifyHashedPassword(hash:String; pwd:String):Integer
SysUser must also have an attribute Email:string(?) in .net core since the underlying pwd salt uses the email.
SysUser must also have an attribute Email:string(?) in .net core since the underlying pwd salt uses the email.


These methods must have Tagged Value Eco.ExternalLateBound on them - set any value - we only check existence
These methods must have Tagged Value Eco.ExternalLateBound on them. Set any value - we only check its existence.
 
'''NOTE''': When you run with codedress - you should '''leave Body empty''' for ExternalLateBound methods - if not empty this will be executed instead of ExternalOverride. Leaving it empty will force the codegen to create a stub - but this will be ignored for ExternalLateBound. Mind that you may need to add return statements etc to the stub to make it compile.


'''NOTE''': When you run with CodeDress, you should '''leave Body empty''' for ExternalLateBound methods. If it is not empty, this will be executed instead of ExternalOverride. Leaving it empty will force the Codegen to create a stub - but this will be ignored for ExternalLateBound. Mind that you may need to add return statements, etc to the stub to make it compile. Like this:
public string HashPassword(string pwd)
{
  return "";
}
The VerifyHashedPassword returns an integer that is defined as:
The VerifyHashedPassword returns an integer that is defined as:
  Failed = 0,
  Failed = 0,
Line 13: Line 16:
  SuccessRehashNeeded = 2
  SuccessRehashNeeded = 2
[[File:2018-08-02 13h38 18.png|none|thumb|281x281px|x]]
[[File:2018-08-02 13h38 18.png|none|thumb|281x281px|x]]
[[Category:Security]]
{{Edited|July|12|2024}}

Latest revision as of 15:35, 10 February 2024

In order to Hash and Validate Turnkey passwords, add two ExternalLateBound methods to SysUser. 

HashPassword(pwd:String):String
VerifyHashedPassword(hash:String; pwd:String):Integer

SysUser must also have an attribute Email:string(?) in .net core since the underlying pwd salt uses the email.

These methods must have Tagged Value Eco.ExternalLateBound on them. Set any value - we only check its existence.

NOTE: When you run with CodeDress, you should leave Body empty for ExternalLateBound methods. If it is not empty, this will be executed instead of ExternalOverride. Leaving it empty will force the Codegen to create a stub - but this will be ignored for ExternalLateBound. Mind that you may need to add return statements, etc to the stub to make it compile. Like this: 

public string HashPassword(string pwd)
{
  return "";
}

The VerifyHashedPassword returns an integer that is defined as: 

Failed = 0,
Success = 1,
SuccessRehashNeeded = 2
x
This page was edited 99 days ago on 02/10/2024. What links here
Retrieved from "https://wiki.mdriven.net/index.php?title=Documentation:HashPassword&oldid=16304"

© MDRIVEN . All Rights Reserved

Glossary API Docs
MDriven World | Portal | Blog | YouTube | StackOverflow | Facebook

© MDRIVEN . All Rights Reserved