Wednesday, September 22, 2010

Basic hashing example

protected void btnhash_Click(object sender, EventArgs e)
{
string salt = CreateSalt(txtpassword.Text.Length);
string pass = CreatePasswordHash(txtpassword.Text.Trim(), salt);
Label1.Text=pass;
}

public string CreateSalt(int size)
{
//Generate a cryptographic random number.
RNGCryptoServiceProvider rng = new RNGCryptoServiceProvider();
byte[] buff = new byte[size];
rng.GetBytes(buff);
// Return a Base64 string representation of the random number.
return Convert.ToBase64String(buff);
}

public string CreatePasswordHash(string pwd, string salt)
{
string saltAndPwd = String.Concat(pwd, salt);
string hashedPwd =
FormsAuthentication.HashPasswordForStoringInConfigFile(saltAndPwd, "sha1");
return hashedPwd;
}

posted by Jinesh B @ 9:07 PM   0 Comments

Password encryption and decription in asp.net

protected void btnsignup_Click(object sender, EventArgs e)
{
SqlConnection con = new SqlConnection(ConfigurationManager.AppSettings["cnn"].ToString());
con.Open();
string pass = passencrypt(txtpassword.Text.Trim());
SqlCommand cmd = new SqlCommand("insert into userdetails values('" + txtusername.Text.Trim() + "','" + pass + "')", con);
cmd.ExecuteNonQuery();
txtusername.Text = ""; txtpassword.Text = "";
}
protected void btnrecoverpassword_Click(object sender, EventArgs e)
{
SqlConnection con = new SqlConnection(ConfigurationManager.AppSettings["cnn"].ToString());
con.Open();
SqlCommand cmd = new SqlCommand("select password from userdetails where username=" + session["uname"].Tostring(), con);
string pass =(string) cmd.ExecuteScalar();
pass = passdecrypt(pass);
}

private string passencrypt(string sData)
{
byte[] encData_byte = new byte[sData.Length];
encData_byte = System.Text.Encoding.UTF8.GetBytes(sData);
string encodedData = Convert.ToBase64String(encData_byte);
return encodedData;
}
public string passdecrypt(string sData)
{
System.Text.UTF8Encoding encoder = new System.Text.UTF8Encoding();
System.Text.Decoder utf8Decode = encoder.GetDecoder();
byte[] todecode_byte = Convert.FromBase64String(sData);
int charCount = utf8Decode.GetCharCount(todecode_byte, 0, todecode_byte.Length);
char[] decoded_char = new char[charCount];
utf8Decode.GetChars(todecode_byte, 0, todecode_byte.Length, decoded_char, 0);
string result = new String(decoded_char);
return result;
}

posted by Jinesh B @ 2:15 AM   0 Comments

Tuesday, September 21, 2010

Basic example of Stored procedure

Hai,

In Asp.net page

SqlConnection con = new SqlConnection(ConfigurationManager.AppSettings["cnn"].ToString());
con.Open();
SqlCommand cmd = new SqlCommand("storedetails", con);
cmd.CommandType = CommandType.StoredProcedure;
cmd.Parameters.AddWithValue("@name", txtname.Text.Trim());
cmd.Parameters.AddWithValue("@class", txtclass.Text.Trim());
cmd.Parameters.AddWithValue("@mark", txtmark.Text.Trim());
cmd.ExecuteNonQuery();

Query to create stored procedure

CREATE PROCEDURE storedetails
@name varchar(30) = NULL,
@class varchar(5) = NULL,
@mark int = NULL
AS
BEGIN
SET NOCOUNT ON;
insert into student values(@name,@class,@mark)
insert into result values(@name,@class)
return
OnError: --If error exit gracefully
Return
END

posted by Jinesh B @ 1:53 AM   0 Comments