France,
Toulouse,
Wednesday, May, 3rd, 2006,
11:48 pm.
Hi Charles,
As always, thank you very much for your help.
Here how I write the code:
UsersDB.SQLExecute( "UPDATE UserAccounts SET Password = """ +
ConvertEncoding( EncodeBase64( MD5( aPassword ), 0 ), Encodings.UTF8 ) + """
WHERE ID = " + userID )
I hash the password with the MD5 method.
Then I encode the hashed password with EncodeBase64 which returns an ASCII
string.
I convert this ASCII string into UTF-8 string since the REALSQLDatabase
prefers UTF-8 encoded strings.
Is that correct ?
For the moment, that works fine and resolves my problem.
Thanks.
Have a very nice day,
Nils
----
Le 3/05/06 2:59, « [NOM] » <[ADRESSE]> a écrit :
> Encode the MD5 hash using EncodeBase64, which returns an ASCII string.
>
> Charles Yeomans
>
>
> On May 2, 2006, at 8:50 PM, Nils Frisch wrote:
>
>> Hi Everybody,
>>
>> I would like to know the best way for storing passwords treated by
>> the MD5
>> function.
>> I noted that MD5 returns strings without text encoding:
>>
>> MD5( aString ).Encoding = Nil
>>
>> REALSQLDatabase usually store UTF-8 strings. So I should convert
>> the MD5
>> function's result into UTF-8 encoding. But before that I have to
>> define an
>> encoding. Is it ISOLatin1 ?
>>
>> If I store the MD5 version of the password directly into the database
>> (without encoding treatment), I could meet some problem. For
>> example, if the
>> password is:
>>
>> aaaa
>>
>> The MD5 version is (displayed by MsgBox):
>>
>> t½s7EB²?Äf=Â
>>
>> This cause a database error:
>>
>> error code: 1
>> error message: Incomplete SQL statement
>>
>> It's because of the quotes generated by the MD5 function.
>>
>> What is the best strategy ?
>>
>> I have also an underlying question.
>> What is the best strategy to store data including quote symbols ?
>> Have I to use the ReplaceAll method to twin every quotes ?
>> For example:
>>
>> aStringToStore = aStringToStore.ReplaceAll( """", """""" )
>> aStringToStore = aStringToStore.ReplaceAll( "'", "''" )
>> aStringToStore = aStringToStore.ReplaceAll( "", "" )
>>
>> And so on.
>>
>> Thank you for your ideas.
>>
>>
>> Have a good day,
>>
>>
>> Nils
>>
>> ----
>>
>> Nils Frisch
>>
>> http://www.nils-frisch.com/
>>
>> Toulouse,
>> France.
----
Nils Frisch
http://www.nils-frisch.com/
Toulouse,
France.
_______________________________________________
Unsubscribe or switch delivery mode:
<http://www.realsoftware.com/support/listmanager/>
Search the archives of this list here:
<http://support.realsoftware.com/listarchives/lists.html>
