Closed. This question needs to be more focused. It is not currently accepting answers.
Want to improve this question? Update the question so it focuses on one problem only by editing this post.
Closed 6 years ago.
Improve this question
How JavaScript take user ID and password? And where do it stores that data? And how it check the authentication when next time user wants to login in?
It doesn't. JavaScript running in the browser cannot perform meaningful authentication. You'd need a server-side application that performs the authentication. At most, JavaScript could perform an AJAX request, sending the user ID and password to the server — but how exactly you'd do that would depend entirely on the application. You'd need to read the documentation for your system to find out how authentication is performed.
(It is conceivable that we're talking about a server-side application written in JavaScript à la node.js, but since the question is not tagged as such I'm assuming not.)
Related
Closed. This question needs to be more focused. It is not currently accepting answers.
Want to improve this question? Update the question so it focuses on one problem only by editing this post.
Closed 1 year ago.
Improve this question
Good day.
Could someone please tell me how I can control that a user does not enter a web application more than once?
Currently I am controlling it by storing the session that is created in php in a field of a table and through javascript using ajax I consult it every 10 seconds. I think there must be a better way ... thanks !!!
And finally solved it by validating that the session created is different from the previous one, thus updating it and the previous user wanting to validate his session in order to make any request will realize that it does not exist and this will remove him from the application .
Closed. This question needs to be more focused. It is not currently accepting answers.
Want to improve this question? Update the question so it focuses on one problem only by editing this post.
Closed 5 years ago.
Improve this question
we are creating a chrome extension that can able to retrieve a data from MYSQL database and display in extension.is it possible? second question is it possible to authenticate localhost .aspx website from java script.
If you want to make a native database connection I think it would be possible with npapi, see https://developer.chrome.com/extensions/npapi. However it sounds to make like a big security risk due to the fact the username and password will be stored in the extension code that can be early access, a better solution would be to develop some http service/api that will connect to the database and return some information, then you can just make an ajax request to your service and display any information you want.
About the second question, you can make any http request just like the browser using chrome extensions.
Closed. This question needs to be more focused. It is not currently accepting answers.
Want to improve this question? Update the question so it focuses on one problem only by editing this post.
Closed 7 years ago.
Improve this question
I am working on a Laravel project right now. I have a route www.website.com/auth/register. All I want is that when a hits this page, he should be asked for some credentials. If he inputs incorrect credentials, then he should not be able to see the registration page.
I have seen some web pages ask for authentication before we can see them. How is that achieved? I suppose those credentials are handled on the client side by the browser. Please help.
I think you're talking about the BASIC Authentication method, which exchanges credentials in plain text and is configured at the Web Server level.
Also, see this: https://security.stackexchange.com/questions/988/is-basic-auth-secure-if-done-over-https
http://laravel.com/docs/4.2/security#http-basic-authentication
Closed. This question needs to be more focused. It is not currently accepting answers.
Want to improve this question? Update the question so it focuses on one problem only by editing this post.
Closed 8 years ago.
Improve this question
I am very new to web technologies. I don't even know what keywords to search with, so please bear with me.
I want to make a hybrid web app. The user visits the site and gets a login prompt to verify his/her identity via facebook.
When the use logs in correctly, they are allowed to query the database on my website. If the login fails, they cannot query my database.
I do not want any heavy duty SDKs or special purpose libraries. Is there a shortcut, lightweight implementation?
thank you for the help!
I see that you have tagged it as javascript, so i would suggest you t go through this official Facebook tutorial : https://developers.facebook.com/docs/facebook-login/login-flow-for-web/v2.2
Once the user is done with this, you just need to allow the user to query your database.
P.S. - For a more appropriate answer in regards to the later section, you need to put forward a more "to the point" question.
Closed. This question needs to be more focused. It is not currently accepting answers.
Want to improve this question? Update the question so it focuses on one problem only by editing this post.
Closed 9 years ago.
Improve this question
I am testing a simple registration form (username, password, email... etc), where input validation is done on the client side every time the user writes/deletes a character (not allowing some characters, checking length... etc).
I have recently saw something about doing the email validation on the server side not only the client side because it is insecure since javascript can easily be deactivated on the client side.
Is that really a threat when using javascript only for validating the inputs before sending them with a submit ? or am I worrying for nothing ?
Attackers can send any HTTP request they want, without running any Javascript code.
Yes, it's a threat. Yes, you need to worry about it.