Products

Evoq Content Overview Content Creation Workflow Asset Management Mobile Responsive Personalization Content Analytics SEO Integrations Security Website PerformanceEvoq Engage Overview Community Management  Dashboard  Analytics  Member Profile Gamification Advocate Marketing Community Engagement  Ideas  Answers  Discussions  Groups  Wikis  Events Mobile ReadyDNN Support PackagesEvoq: CMS FeaturesEvoq OnDemandCompare DNN's CMS Products

Solutions

Content Management SystemMulti-Channel PublishingDigital MarketingOnline Community ManagementIntranet Software SolutionOur CustomersPrime

Resources

Test DrivesSchedule A DemoDocumentation CenterWebinarsWhite PapersProduct ManualsRequest PricingData SheetsCase StudiesEvoq Preferred Products Content Management Ecommerce Forms Identity Management and Authentication Site Management Social Themes

Partners

DNN Partners Partner Directory Become a DNN Partner Partner Program Overview  Hosting  Implementation  ISV  Training  Competencies

Community

Participate Ask a Question Forums Community Showcase DNN MVP  Program Overview  Lifetime MVPs  Honorary MVPs Subscribe to DNN Digest Advisory Groups  Awareness Advisory Group  Developer Advisory Group  Partner Advisory Group  Technology Advisory GroupLearn Documentation Wiki Community Blog Video Library Project History Development RoadmapDownload DNN Store Language Packs Manuals Nightly BuildsSecurity Policies Security Center

Blog

About

News Press Releases News Coverage Press KitCareersContact DNN

QA

Ideas Test

New Community Website

Ordinarily, you'd be at the right spot, but we've recently launched a brand new community website... For the community, by the community.

Yay... Take Me to the Community!

Welcome to the DNN Community Forums, your preferred source of online community support for all things related to DNN.
In order to participate you must be a registered DNNizen
HomeHomeDNN Open Source...DNN Open Source...Module ForumsModule ForumsIFrameIFramePassing User Password to the iframePassing User Password to the iframe
Previous
 
Next
New Post
5/14/2008 3:14 PM
 
maguirre

Joined: 2/4/2008
Posts: 4

Thanks for your responses-

I have two questions:

-1-What is a SALT, which you propose?

-2-As I cannot obtain password through the iframe settings, maybe I can do something by coding the load method of the iframe. Maybe I can encrypt the password. But what class has the user password. I see that userinfo has userid, email, etc, but not the password. How can I obtain password by coding?
 
New Post
5/14/2008 4:48 PM
 
Vitaly Kozadayev


Joined: 12/11/2003
Posts: 1112

Salt is a generic term that relates to something that is mixed in to change the initial value. Sort of like the salt we all know.

So, in the world of encryption, Salt is added into the value that's getting encrypted to make "guessing" much harder.

There is nothing that can be done without programming some code. I'll check later on the exact method. Please hit me up again if you don't hear from me in a day

Vitaly Kozadayev
Principal
Viva Portals, L.L.C.
 
New Post
5/14/2008 8:33 PM
 
Sebastian Leupold


Sebastian Leupold's Avatar

Sebastian Leupold's Avatar

Sebastian Leupold's Avatar

Sebastian Leupold's Avatar

www.dnnwerk.de
Joined: 3/8/2004
Posts: 46212

A safe procedure for a secure login to a remote site, we implemented for a customer, worked like this:

  • when the user enters the transfer page (with iframe, popup or forward page, logging into a remote site with user credentials),
  • the web server sends a request to the target server containing user id, using a secret key and requesting a user "ticket"
  • the target server verifies the request and sends back to the web server (by webservice, URL, file) the ticket, which is valid for a limited time
  • the web server requests the target page using an url containg the (encrypted) user id and ticket.
Cheers from Germany,
Sebastian Leupold

dnnWerk - The DotNetNuke Experts   German Spoken DotNetNuke User Group

Speed up your DNN Websites with TurboDNN
 
New Post
5/20/2008 3:38 PM
 
maguirre

Joined: 2/4/2008
Posts: 4

Hello, I haven't heared from you, so, I'm writing...

Well, I'm trying to pass user id and password to the iframe without encryption until I know how to do it. But, meanwhile, I'm  trying to pass them decrypted. Debugging, I can see the value of the entire querystring. If I type it into a new browser window, I get logged in into the site, but if I pass them to the iframe, I'm not logged in into the site and I receive its login screen.

How can I pass these parameters?

Thanks a lot.
 
New Post
5/20/2008 3:50 PM
 
Vitaly Kozadayev


Joined: 12/11/2003
Posts: 1112

At what point do you see password inside the querystring?

IFrame module is not set up (and unlikely ever will be) to pass passwords. So, if you want to do that - you'll have to modify IFrame code or  have tha password passed to IFrame module as a pass-through value (you should definitely NOT use QueryString for that - at least hide it in a Form field).

Vitaly Kozadayev
Principal
Viva Portals, L.L.C.
 
 Page 2 of 4
Previous1234Next 
Previous
 
Next
HomeHomeDNN Open Source...DNN Open Source...Module ForumsModule ForumsIFrameIFramePassing User Password to the iframePassing User Password to the iframe


These Forums are dedicated to discussion of DNN Platform and Evoq Solutions.

For the benefit of the community and to protect the integrity of the ecosystem, please observe the following posting guidelines:

  1. No Advertising. This includes promotion of commercial and non-commercial products or services which are not directly related to DNN.
  2. No vendor trolling / poaching. If someone posts about a vendor issue, allow the vendor or other customers to respond. Any post that looks like trolling / poaching will be removed.
  3. Discussion or promotion of DNN Platform product releases under a different brand name are strictly prohibited.
  4. No Flaming or Trolling.
  5. No Profanity, Racism, or Prejudice.
  6. Site Moderators have the final word on approving / removing a thread or post or comment.
  7. English language posting only, please.
What is Liquid Content?
Find Out
What is Liquid Content?
Find Out
What is Liquid Content?
Find Out