DNN User credentials with Android application
Last Post 01/15/2015 5:55 AM by Joseph Craig. 6 Replies.
Author Messages
meenu
Nuke Master
Nuke Master
Posts:203


--
01/12/2015 7:26 AM  
Dear Friends,

Very Thanks

we have a DNN site which is working perfect . I created an Android application with a login screen recently with some of our personnel modules .Now my requirement is whenever user clicks on Login Button, It should check the DNN table username and Passwd and need to check the user credential correct or nt?

How can I do that???

Joseph Craig
DNN MVP
Posts:11667


--
01/12/2015 10:07 AM  
Do you want to authenticate the login to the Android application using the username and password from your DNN site?

If so, I think that the best way to do this would be to create a webservice in your DNN installation that you can call from the Android application. When you click the login button in the Android application, the result would be to call the webservice to get a yes/no answer for authentication.

You will want to have the latest version of DNN to do this.

There are modules available that simplify the process of creating webservices in DNN. I believe that DNNSharp.com has one. Also, the module from http://2sxc.org/.

Joe Craig, Patapsco Research Group
Complete DNN Support
meenu
Nuke Master
Nuke Master
Posts:203


--
01/13/2015 3:54 AM  
Dear Joe,

Yes we can use service ofor solving this . But can u help me any service code available to return the username and password of DNN User table? If the service return Username Password values from the table then I can check the textbox entry from Android application is correct or not?



It is for Android application
Joseph Craig
DNN MVP
Posts:11667


--
01/14/2015 10:09 PM  
Generally, it's a very bad practice to return a username/password.

The way that DNN works is verify that a password entered by the user "matched" the stored password. It does this by encrypting or hashing (depending on the password format) the submitted password, and comparing that to the stored value which is encrypted or hashed.

This is the only way that this can be done if using the hashed password, as the hashing is a "one-way" function. You cannot unhash a hashed password.

This is also the most secure approach, which is very important in these days of needing to protect user data.

When passing a passwor to a webservice, the password should also be protected!

Joe Craig, Patapsco Research Group
Complete DNN Support
meenu
Nuke Master
Nuke Master
Posts:203


--
01/14/2015 11:39 PM  
Dear Joe,

I tried the below service function.But always I am getting value as "False" even I pass correct username and passwd.Anything wrong in this?

Public Function GetUserAuthenti(ByVal userid As String, ByVal password As String) As String
Dim AuthUser As String = "True"
Dim loginStatus As New DotNetNuke.Security.Membership.UserLoginStatus
Dim user As UserInfo = UserController.ValidateUser(0, userid, password, "", "", "0.0.0.0", loginStatus)
If user Is Nothing Then
AuthUser = "False"
End If
Return AuthUser
End Function
meenu
Nuke Master
Nuke Master
Posts:203


--
01/15/2015 5:04 AM  
Dear Joe,

I solved my issues when I passed my portalID correctly.

Dim AuthUser As String = "True"
Dim loginStatus As New DotNetNuke.Security.Membership.UserLoginStatus
Dim user As UserInfo = DotNetNuke.Entities.Users.UserController.ValidateUser(2, userid, password, "DNN", "sitename.com", "Enter Correct IP", loginStatus)
If user Is Nothing Then
AuthUser = "False"
End If
Return AuthUser
Joseph Craig
DNN MVP
Posts:11667


--
01/15/2015 5:55 AM  
Great!

Joe Craig, Patapsco Research Group
Complete DNN Support


---