| Subject | Re: [firebird-support] Safe method for users to change its own password |
|---|---|
| Author | Michael Ludwig |
| Post date | 2010-04-27T18:37:39Z |
Ramiro Barreca schrieb am 26.04.2010 um 10:09:06 (-0300):
Firebird account for your application and have a server grant or deny
access to the database upon successful or unsuccessful authorization
against a user database of your own implementation (stored in Firebird),
which is the standard thing to do with web applications. But if your
application is just two-tier Delphi to Firebird, then this isn't an
option.
--
Michael Ludwig
> Is there any SAFE method to allow users to change their own passwordDepending on the kind of application you have, you could have just one
> from an app (i.e. a Delphi one)?
> We need to encrypt in some way users passwords, but this means allow
> the app to use "gsec" with the SYSDBA user/pass from within the app.
> Isn't it? Is there another way that would allow the own user change
> its own password with its own credentials from the app?
Firebird account for your application and have a server grant or deny
access to the database upon successful or unsuccessful authorization
against a user database of your own implementation (stored in Firebird),
which is the standard thing to do with web applications. But if your
application is just two-tier Delphi to Firebird, then this isn't an
option.
--
Michael Ludwig