Web Forms :: Passing Encrypted Data Between Two Applications
Jan 25, 2011
I need to design two apps who can interact with each other. The first app, App A needs to send an encrypted string over to App B and App B will have to decrypt it and do some stuff. How would I go about that?
App A - http://MachineA/default.aspx
App B - http://MachineB/default.aspx
I tried encrypting the data using AESCryptoServiceProvider and it returns a byte[]. Now how would I transfer it over to another application? Via query strings?
http://MachineB/default.aspx?data=<<EncryptedString>>
Query strings does not take a byte[] parameter. So I am clueless now.
View 2 Replies
Similar Messages:
Jan 31, 2011
I would like to implement the following functionality between 2 web applications:
a) Web application one contains a button, which, when pressed launches another web application.
b) The second application contains a form that is filled in by the customer.
c) After filling in the form, the second application validates the information and returns a 5 digit code to indicate whether validation was successful.
d) Web application one then displays the status and asks the user to continue with other steps.
Is the above scenario possible? Is it possible to transfer data between 2 seperate web applications? I have considered using a query string, database and flat file to trasnfer the data from one application to another. Which of these (if any) would be the best choice?
View 2 Replies
Feb 20, 2010
I am having two reports Report1 and Report2. From Report1 i have to call report2 while clicking link.
I have acheived this by using Jump to report and also i have passed some parameters to report2.
Using report viewer i am viewing this report1. In link field right click properties i am getting report2 url. In new browser if paste the report 2 url with paramters values URL report is coming and also it allows to change report parametes in address bar.
Is it possible to excrypt parameters values while calling report2
eg URL
http://myserver/reports/Pages/ReportViewer.aspx?/FEPSReports/RPT_ViewTransaction&AccessEmployeeID=MUTHU&FilterEmployeeID=*&ShowABC=False&ConvertToUSD=False&FromDate=01/01/2009&ThruDate=12/30/2009&Level=4&HDL=1&TopLevel=2&FilterCompanyCode=*&FilterDivision=*&FilterSBUID=*&FilterSBUName=*&FilterLocation=*&FilterTeam=*&ShowAllEmployee=yes&DecimalPlaces=2&rs:ParameterLanguage=&rc:Parameters=Collapsed
View 6 Replies
Jul 14, 2010
We have several web applications that create a shopping cart, save it to a database, then redirect to a centralized web application to process and accept payment for the shopping cart. Right now, we are using GUIDs for the shopping cart IDs and passing those GUIDs in the querystring to the payment application. We are using GUIDs so that a user cannot easily guess the shopping cart ID of another user and simply plug that ID into the URL.
Now, using GUIDs in the database is bad for indexing and using GUIDs in the URL does not truly prevent a user from accessing another cart. However, using passing integers around would make it too easy.
What is the best and most secure way to pass the IDs from the individual applications to the centralized payment application?
I know that some people may say, "Who cares if someone else wants to pay for someone else's shopping cart?" However, we have the same concern when passing IDs to the page that displays the receipt and that page includes the customer's name.
View 4 Replies
Aug 2, 2010
I had three web applications and each one has its own login page , now i want to build web portal which allow members to login and choose one of these applications to redirect to it .
Is there any way to passing user information across secure connection??
View 2 Replies
May 31, 2010
I'm just wondering if anyone has come across a good, easy method for updating a SQL Server 2000 DB table using the edit feature in GridView. The catch here is that I need it to encrypt, send to database, then decrypt when the page calls it to be displayed. I have successfully implemented an insert method using FormView with encryption. For some reason, I just can't seem to figure out the edit/update.
View 1 Replies
Mar 10, 2011
I have a datapager control
<asp:DataPager ID="DataPager1" QueryStringField="pageid" runat="server">
The control works perfectly when the QueryStringField "PageID" not not encrypted. When it's encrypted the control no longer works. Is there a way to assign the page number in the back end? Is there a way to work with encrypted query string with this control?
View 1 Replies
Aug 31, 2010
Coding is not working for Making Password Field Encrypted in sql
View 1 Replies
Jan 18, 2011
Even with https enabled, you can write a password to the event log in code-behind. Any way to keep that password encrypted in code while you're checking it against a data store?
(using Login control)
(couldn't add comment to Andrew's answer, so I'm putting it here)
NTLM uses the username/password of the machine the user is logged into right? For this, I was thinking using ActiveDirectory on the server as the data store. It would have a diferrent un/pw than what the user is currently signed in to their machine as.
View 3 Replies
Apr 12, 2012
how to prevent a rendered ASPX page from having the encrypted data in the head area. With the fact that the data is in there, it prevents bots and crawlers from reaching the true SEO data within the page. I would like to use ASPX pages to create my web pages. As of now, I cannot because of the garbage loaded in the beginning of a rendered page.
View 1 Replies
May 7, 2015
URL... Looking for decryption code to memory instead of decryption to file? i need to decrypt a pdf file then show it in browser without saving it to the drive, using response.
View 1 Replies
Jun 7, 2010
I've been worked with web services so far, and I'm interested in expanding my services to console applications as well so I started digging up with WCF but I'm conserned that I won't be able to use the HttpContext collection that I've been used to do with web services one important thing which is to generate a random value from HttpContext.Current.Request.ServerVariables["ALL_HTTP"] that I need to reckon if it's the same or at least near what machine that is calling my service. How can I overcome this problem?
I need to know what machine is calling to count the number of attempts to login into my system for example. So must do it inside of the svc code otherwise if I let the client inform what ip address or what computer he is using, anyone could forge this argument and surpass by another machine. May be I'm approaching this matter wrongly. And I should count the number of attempts per state session, but how is it done?
View 1 Replies
Oct 12, 2010
I want to Generate encrypted url in my .net application
I want show Encrypted url instead of actual Folder path ..
For Example
[URL]
View 3 Replies
Oct 13, 2010
I need to send password encrypted email in C# -how hard is this to do ?, and how to do it ...??Do you nee SSL certificate or not ?I know how to send normal emails becuase i did it already but not encrypted emailsIf you have personal experience , then tell me the how.
View 3 Replies
Sep 10, 2010
how can data be transfered between 2 web applications runnig on 2 web servers
View 4 Replies
Sep 22, 2010
im about to wirte an app that is an extension from the main application that is hosted on the IIS. My application is going to work as a child app (main app as parent) working in main application pool. User will be redirected from the menu to main app to my website. And here is my problem. I would like to pass informations like user login, login state etc. I cant do it via Query String - that wouldnt be safe. I thought I could pass it via Session state, since the SessionID is the same both sides but I cannot retrives parameters on my website(theyre null).
View 2 Replies
May 7, 2015
I have trouble using this encrypting and decrypting password
Refer here: [URL] ....
View 1 Replies
May 8, 2010
What does return the Eval() method in Markup portion?
View 1 Replies
Apr 22, 2010
Our corporate intranet is designed so that each web application is a child application in the primary application.. Everything has worked fine with Visual Studio 2008 and even in 2010 running the website locally works great, the output directory for the child apps is ..�in and the ProjectName.dll copies to that directory.. When I do a publish however it does not and I have to manually copy the dll from the bin folder in the project folder to the parent bin folder, this isn't hard of course but more of a pain in the butt each time I need to publish something. I made sure the output directory is correct for both debug and release yet on publish is just copies it to the child bin and not the parent bin as needed.
View 2 Replies
Jul 17, 2015
i don't know how to use a Encrypted ConnectionString with RoleManager in ASP.NET This is code in Web.config.
<connectionStrings>
<add name="strConnectionString" connectionString="eF8w9r2UJOsk0Ps3pxmV7/Fy/xPR2hN2S7BrC1iOYNnAUaI8AqkSm5bw7r+ta4sePWSV9t/3Spnpz6wsFpvMmcppNpqM5Zk7iiDqWVgIV4k="/>
</connectionStrings>
<roleManager enabled="true" defaultProvider="CustomizedRoleProvider">
[Code] ....
And in project I create a library to read web config
private const string ConnectionStringKey = "strConnectionString";
private readonly string SQLConnectionString =
Security.DecryptString(ConfigurationManager.ConnectionStrings[ConnectionStringKey].ConnectionString);
if I change my ConnectionString like this, it's working:
<add name="strConnectionString" connectionString="server=My-PCMSSQL2008; database=MyDB; uid=sa; pwd=passw0rd;"/>
But I want my ConnectionString Encrypted so i use
<add name="strConnectionString" connectionString="eF8w9r2UJOsk0Ps3pxmV7/Fy/xPR2hN2S7BrC1iOYNnAUaI8AqkSm5bw7r+ta4sePWSV9t/3Spnpz6wsFpvMmcppNpqM5Zk7iiDqWVgIV4k="/>
So when i running website it throw error:
System.ArgumentException:Keyword not supported: 'eF8w9r2UJOsk0Ps3pxmV7/Fy/xPR2hN2S7BrC1iOYNnAUaI8AqkSm5bw7r+ta4sePWSV9t/3Spnpz6wsFpvMmcppNpqM5Zk7iiDqWVgIV4k='.
Line 46: string[] roleNames;
Line 47: roleNames = Roles.GetAllRoles();
View 1 Replies
Apr 1, 2010
Long story short: I'm basically trying to learn visual web developer/asp.net/and how to get all this to work on a shared hosting environment. The idea is to eventually develop this into something a friend of mine with a garage can use to allow his customers to check their various maintenance records. I basically made a small database with a couple of test tables in it and a gridview to display data based on a variable passed from a text box. I finally got it working on my shared hosting server with just one such 'application', but when I tried to add a second one, both stop working. If I put one in default.aspx, and the other in default1.aspx, they both work perfectly. I've tried using the same dataset for both, and different datasets for each, and same behavior. Also tried using 1 and 2 objectdatasources with the same results. Also tried putting each in their own content placeholders and no change. From my research into the subject, I've come to the conclusion that more than one gridview isn't the problem, so I'm extra stumped now. I'm guessing it's something relatively simple for someone who knows this stuff. Oh, I thought it may have something to do with not using default values, so the 'tables' weren't being drawn, so there wasn't 'room' to do so, but after splitting the apps into two different divs, and floating one bottom/right, again, no change.[URL](first working example)[URL](second working example)[URL](both in same page, not working - might not be up yet if someone reads this quickly)
View 3 Replies
May 7, 2015
I was able to encrypt the password and save it in the database but I need to encrypt the password now when the users try to login. For example, user comes and types his/her username and password but the password is already encrypted in the database, how can I decrypt and authenticate the user?
protected void ValidateUser(object sender, EventArgs e)
{
int userId = 0;
string constr = ConfigurationManager.ConnectionStrings["constr"].ConnectionString;
using (SqlConnection con = new SqlConnection(constr))
{
using (SqlCommand cmd = new SqlCommand("Validate_User"))
[code].....
here is the decrypt function
private string Decrypt(string cipherText)
{
string EncryptionKey = "MAKV2SPBNI99212";
byte[] cipherBytes = Convert.FromBase64String(cipherText);
using (Aes encryptor = Aes.Create())
[Code]......
View 1 Replies
Feb 11, 2011
I have a very simple (rather stupid) question, I hope someone can clear my mind on this :)
I want to send an email to my site user once he clicks a button. This email will contain a link with the userID of a user in the link URL (as query param of a link).
Once the user clicks this email link, my server side code will parse and decrypt the userID query string key to get the user ID and perform some action on it.
I cannot use base64 encoding as it can be reversed and 'hackers' can get to know the real userID. I have to encrypt the ID but when I am using AES alogrithms for encryption, the encrypted text is not "understandable" by the browser, ie I cannot pass the encrypted userId text as a part of the URL because it contains un-encoded characters like "/" which the browser cannot by pass. One option I can think of is to base64 encode the encrypted text once I send it across via URL. Then I can bease64 decode and decyrpt it.
Is this approach better than using Uri.EscapeDataString() on the encyrpted text?
View 4 Replies
Jun 18, 2010
My aim is to make the web.config not readable by external users, but my application should be able to access it. Is there any way to do this?
I have tried the following way, but how to set the application to use string instead of web.config?
I want to encrypt my web.config file so that others do not open the file using any editor like notepad. But my application should be able to use the same web.config file. I could encrypt the web.config file and decrypt it inside the application and I saved the entire web.config to a string file. Now I want to use this string variable instead of web.config(now in encrypted form, which cannot be accessed by the application).
View 3 Replies
Oct 14, 2010
I have a web application (MainApplication) where many of the pages contain a custom Web Control that looks for some content in a cache. If it can't find any data within the cache, then it goes out to a database for the content. After retrieving the content, the Control displays the content on the page.
There is a web application (CMS) in a subdirectory within the aforementioned web application. Users use this CMS to update the content pulled in by the MainApplication.
When a user updates some content using the CMS, I need the CMS to clear the relevant portion of the cache used by the MainApplication. The problem is that, as two different web applications, they can't simply interact with the same static cache object.
The ideal solution would be to somehow share an instance of a cache object between both web applications.
Failing that, what would be the best (performance-wise) way of communicating between the two web applications? Obviously, writing/reading to a database would defeat the purpose. I was thinking about a flat file?
View 3 Replies
