c# - reusable "save credentials" dialog (like IE's or Vista's) in .NET or Win32 -

-

Recently I am working in an office with a wireless network that uses an annoying authentication scheme: Every few hours, you can open a browser and type the username / password in the authentication web page, or you lose network access (when the time is over, your next browser request will redirect to the request page, And if your credit If you have already passed, you will be redirected to the page you were originally trying to get).

This kind of annoyance may be okay for an airport or coffee shop, but it is becoming unconscious in an office - especially if you work with network services (eg SVN, email) , Who suddenly stop working for a few hours, browser.

So I have written a small #console app that will login to me by sending me an HTTP request to the login form with my credentials.

This is clearly unsafe - everyone is sitting inside my source code to see my password. I am able to save my credentials using the same mechanism, which IE uses, for example, to save passwords and fill in the web form.

Ideally, I want to add credentials (including an optional "saved credits" checkbox with an optional "saved credits" checkbox) to enter, save, and retrieve an optional usable component so that my app is Something could do in Pseudocode): 

  // Retrieve any saved credentials from some secure location credentials creds = GetCreds (some parameters go here); // If no one is archived, show the user "Enter and optionally save credentials" dialog if (CRS == empty) creds = GetCredsDialog (some parameters go here); // if on the post authentication page (creds! = Null) {string authUrl = "https: // somehost / login /"; String postDataPattern = "post data pattern here"; // use the string instead here? String postData = string.format (postDataPattern, HttpUtility.HtmlEncode (creds.Username), HttpUtility.HtmlEncode (creds.Password)); Webclient wc = new webclient (); String html = wc.UploadString (authUrl, "POST", postData); // TODO: If HTML login fails, explicitly stored credentials // indicates and asks for new credit. Try again}

Actually I want to change the load of the stock safely from my app to Windows, under the assumption that Windows users will be better than this. )

I'm not looking for iron-worn protection here, just to secure my other stored passwords for some other websites, which is comparable to IE. I do not want to have plain text passwords in my code!

Of course, here is the right solution to work with the IT department to get the real certification plan for the wireless department, but in the meanwhile I am on my own

A .NET solution It would be better, but a Win32 solution would also be fine - I could just close the app without causing much trouble to the app.

To store credentials, use the class in System.Security.dll. By passing, no other user will be able to decrypt the data.

Edit : For the dialog, you can use the API function

Look for the .Net wrapper.


Comments

Post a Comment

Popular posts from this blog

c# - How to capture HTTP packet with SharpPcap -

-
I would like to capture all incoming HTTP packets on my machine. To do this, I am using SharpPcap which is a WinPcap The cover is. SharpPcap works very well, but it captures TCP packets and what it wants to do for me is a very low level. Does anyone know how can I easily get full HTTP requests / reactions from all these TCP packets? Thanks SharpPcap is already able to capture the packet in the same way That's what the virus does (just in the code instead of the GUI). And you can either either parse them directly or you can put them in the drive in the common .pcap file format. The steps to parse the capture are: Open a connection at any time Loop a while Or start capturing using an event callback Parsing the raw packet for the type you want If you are reading .PPP dump files In addition to calling you an offline capture reader is almost the same, there is no need to select an interface, and you can set the majority There is no need to do the modes. All st...
Read more

php - Multiple Select with Explode: only returns the word "Array" -

-
By using Wordpress I have created a multiple selection box so that users can select categories to exclude. When the page is initially loaded, I see my predefined default option. However, when I select a new value and I save ... I only see the word "Array" and have not chosen anything else? & lt; Class = "amultiple" id = "& lt; php echo $ value ['id'] ;? gt;" name = "& gt; php echo $ value ['id'] ;; gt; []" Multiple = "multiple" size = "8" & gt; & Lt ;? Php global option; Foreign currency ($ value as value $) {if (get_settings ($ value ['id']) === FALSE {$$ value ['id'] = $ value ['std']; } And {$$ value ['id'] = get_settings ($ value ['id']); }} $ Ranges = & amp; Amp; Categories ('type = post & orderbiz = name & amp; hide_empty = 1'); If ($ ranges) {$ ex_cat = implode (',', $ tt_cat_exclude); Forex Currency ($ range a...
Read more

php - jQuery AJAX Post not working -

-
I do not understand why this script does not work. It has something to do within AJAX PostScript / Function. Right now, when I submit my form, it runs php code on the same page. What it should do, send the values ​​of the form for Project_Azax.fp, then there will be a refund of success on the page which is correct or false. $ (document) .ready (function () {$ ('div # didIt'). Hide (); $ ('form [name = adminForm]'). Submit (function () ($ {'.post' ('/ project_ajax.php', {action: $ ('[name = action]') Val (), pId: $ ('[name = pId]'). Val (), name ('[Name = name]'. Val (), url: $ ('[url = url]'). Val (), summary: ('[summary = summary]'). Val ()}, Function (data) {if (data.success) {$ ('div # didIt') .Sliddown ('slow');} and {warning ('unsuccessful SA!');}}, 'Jason'); return false ;});}); What is the code for project_ajax.php below ... if ($ _ POST ['action'] == ...
Read more