Secure Login with javascript

[Vapor]

I tried throwing that code into a free web host such as geocities or angelfire and I can't get it to work. Whenever I try to login, I get an error page from either geocities or angelfire. Is it something that can be fixed? Do I have to change the code at all?

[glenngv]

Did you use the tool that whammy developed to create the password file automatically? His post is in page 4 of this thread.

[Vapor]

Ok,

THis is exactly what I have done step by step

I downloaded all of whammys files. I then uploaded all of them on my geocities site. I tried to login in and I get an error page from geocities. I have also tried it on angelfire. I am not sure what to do. Here is the link to my site if you want to try it

http://www.geocities.com/christianfobian/login

If you try it, (just put something in the user and password form) you should get the auth.htm page that says authorization failed! in red letters.

All I did was take the straight code upload it and try logging in. Is there something I need to change?

[Vapor]

now I feel kinda silly,

I just posted my last post and I got the blasted thing to work... PARTLY! I have it so that if I just randomly type info into the user and pass part of the form I get the authorization failed! in read letters page (auth.htm) NOW the problem is I cant login once I use the right username and password!

Any ideas?

[Vapor]

Never mind, I played around with it for about an hour but I figured it out, thx though

[Doodah]

Couldn't you use a cookie to validate that someone has logged on? and then have the cookie checked on "page.htm" or any subsequent pages. This would keep people from going around the login page, also adding the index.htm page to the user ID folder.

Ideas?

[Doodah]

If anyone is interested I did add a cookie to this code and a redirect to the page.htm file. It does keep anyone from going to the page.htm file directly and the cookie expires immediately so anyone returning to the page from history should be blocked. I'm not a programmer, just a designer, so there may be bugs that I'm not aware of. I used an asp script that utilized this code, that's what made me think it should be possible to use it here.

If anyone sees a problem please let me know.

Thanks

doo

[pjf1985]

I am using the jslogin script that was posted in this topic. The script works great and does everything I want it to except for one thing. It directs to my secure/destination page that I want it to, but how do I make the destination page itself really secure so that it cannot just be viewed by typing in the URL to the page?

So for example, when the correct username and password is entered and it goes to the destination page:

http://www.mysite.com/myfolder/mypage.htm

But what is stopping someone from just entering that URL and bypassing the login?

Is there a way for me to properly secure the page or a folder and so I can still use this script? Would using .htaccess do the job? And if so, how would I go about it?

Thanks.

[mw2005]

If you want a 99.9% secure page use .htaccess and not JavaScript (some servers do not allow it though)

Below is a link teaching you about .htaccess (if you don't already know how to use it)

http://www.javascriptkit.com/howto/htaccess.shtml

HTH

MW2005

[dutycalls5609b]

Love the script, borg. And BTW for the skeptics, it works with all lowercase.

[DR.Wong]

Hey guys. I am always looking for a good way to create a JS client side database.

By the looks of it, this is modifyable to create a client side database. Could you not modify the VB Script to ask questions.. such as a persons name and address. The Script makes the JS file that uses the persons name as the file name. Then use a page to display the persons other information from within the JS file?

This sounds completely logical to me... only I dont know much VB either... I may however be able to poke around with the script and change it to add more options.

One problem that seems to circle over and over in my head, is once you have the entire directory full of JS files, how would you bring up a list of them, so you could click on a users name and that pull out the info, without you having to manually index the directory.

Is it viable???

I really would like your input, this is troubling me!!!

Thanks alot and MERRY CHRISTMAS!!!!!!!

[Bolter99]

Mines better lol... uses encryption to hide the source of the passowrds and username list...

Ah well.

[Bolter99]

Quote:

Originally Posted by DR.Wong

Hey guys. I am always looking for a good way to create a JS client side database.

By the looks of it, this is modifyable to create a client side database. Could you not modify the VB Script to ask questions.. such as a persons name and address. The Script makes the JS file that uses the persons name as the file name. Then use a page to display the persons other information from within the JS file?

This sounds completely logical to me... only I dont know much VB either... I may however be able to poke around with the script and change it to add more options.

One problem that seems to circle over and over in my head, is once you have the entire directory full of JS files, how would you bring up a list of them, so you could click on a users name and that pull out the info, without you having to manually index the directory.

Is it viable???

I really would like your input, this is troubling me!!!

Thanks alot and MERRY CHRISTMAS!!!!!!!

Well you could use a 3 dimensional array to do it...

[DR.Wong]

I'm sorry, your words elude me.

What do you mean??

Is it possible?

If it is, then this could be great!!

Thanks Alot and Merry Christmas!!!

[jettlarue2003]

its not really a very good database since you can view anyones data with looking at the source. also an idea for the secure javascript login. someone should write an algorithm to encrypt the name you entered and the password so it would be jabble instead of having names. it wouldnt be too hardbut adding a couple of letters in it contains a 5 or stuff like that.