New topic: Web app authentication
<http://forums.realsoftware.com/viewtopic.php?t=39785> Page 1 of 1 [ 2 posts ] Previous topic | Next topic Author Message Akiland Post subject: Web app authenticationPosted: Mon Jul 11, 2011 6:19 am Joined: Tue Jan 04, 2011 3:02 am Posts: 247 I'm developing a web app that needs to authenticate itself upon launch to prevent it being copied to another server and used by others that didn't buy it. We have a database, on our server, that will contain a server specific string and buyer info. Upon launch, the app will compare a string to the string in the database to authenticate itself. I'm trying to figure out what string to use, and this is where you guys come in I'm trying to figure out a command that the app can use to get a specific string from the server it runs on and make an MD5 hash. Using a shell, it can combine several strings received using "uname", but this can be reproduced on another server by simply using the exact hardware, os... Do you know if there is a way to get some kind of machine specific ID of some kind? I hope you see what I'm trying to do here, prevent unauthorized copying of my app Any tip appreciated _________________ Bixue Kommunikation Dev. iMac 27" (2.8GHz Intel Core i7, 12GB RAM) OS X 10.6.8 REAL.Studio Web Edition Top swort Post subject: Re: Web app authenticationPosted: Mon Jul 11, 2011 7:13 am Joined: Mon May 31, 2010 5:35 am Posts: 1263 Location: Netherlands Akiland wrote:I'm developing a web app that needs to authenticate itself upon launch to prevent it being copied to another server and used by others that didn't buy it. We have a database, on our server, that will contain a server specific string and buyer info. Upon launch, the app will compare a string to the string in the database to authenticate itself. I'm trying to figure out what string to use, and this is where you guys come in I'm trying to figure out a command that the app can use to get a specific string from the server it runs on and make an MD5 hash. Using a shell, it can combine several strings received using "uname", but this can be reproduced on another server by simply using the exact hardware, os... Do you know if there is a way to get some kind of machine specific ID of some kind? I hope you see what I'm trying to do here, prevent unauthorized copying of my app Any tip appreciated use a SecureDB (wich is a mysql db, on your server) that contains the information, this way your customers cant edit it. You should do this in the APP.Open event and close the db right after your done (keep no reference). You verify some details from an Encrypted XML file or whatever to be sure... The encrypted file will be for each customer different and they buy only that file (your app is not usable without it). So, i think that might be best. But be sure to Encrypt it with Like AES 512 or 1024, wich is hard to crack... I use the Toringo Crypto plugin for such things, and never been hacked/cracked (but i have no commercial apps yet)... There are more ways to do checking access if you wish to sell your Web App. _________________ SWORT⢠- Windows Vista, Windows XP, Linux Ubuntu 10.04 LTS and iMac OSX 27" - REAL Studio Enterprise(latest) and WEB Edition(latest) - Plugins (almost all) For Dutch User Groups ask me to enter! Completely free functions by the community: http://forums.realsoftware.com/viewtopic.php?f=1&t=36396&hilit=dutchtools+free Top Display posts from previous: All posts1 day7 days2 weeks1 month3 months6 months1 year Sort by AuthorPost timeSubject AscendingDescending Page 1 of 1 [ 2 posts ]
-- Over 1500 classes with 29000 functions in one REALbasic plug-in collection. The Monkeybread Software Realbasic Plugin v9.3. http://www.monkeybreadsoftware.de/realbasic/plugins.shtml [email protected]
