1. SA-MP Forums Archive
  2. SA-MP Scripting and Plugins
  3. Scripting Help

Threaded Mode
A failure of removing SHA256 (MySQL)
Fratello
Huge Clucker
****
Posts: 311
Threads: 27
Joined: May 2016
Reputation: 0
#1

11.08.2017, 08:29
Hey gang,

I started using easy-mysql include recently and I removed SHA256 hashing which resulted empty password. I can make an account but I can't login and my password row is empty.

https://sampforum.blast.hk/showthread.php?tid=590310
(I'm using Login-Register exampl)

Код HTML:
case DIALOG_LOGIN:
        {
            if(!response) Kick(playerid);
            if(UserInfo[playerid][p_password])

            {
                new handle = SQL::Open(SQL::READ, "players", "p_id", UserInfo[playerid][p_id]);
                SQL::ReadInt(handle, "p_score", UserInfo[playerid][p_score]);
                SQL::ReadFloat(handle, "p_posx", UserInfo[playerid][p_posx]);
                SQL::ReadFloat(handle, "p_posy", UserInfo[playerid][p_posy]);
                SQL::ReadFloat(handle, "p_posz", UserInfo[playerid][p_posz]);
                SQL::Close(handle);
                SetPlayerScore(playerid, UserInfo[playerid][p_score]);
                UserInfo[playerid][p_loggedin] = 1;
                SendClientMessage(playerid, -1, "Successfully logged in!");

            }
            else
            {
                ShowPlayerDialog(playerid, DIALOG_LOGIN, DIALOG_STYLE_PASSWORD, "{0080FF}Login", "Please input your password below to log in.", "Login", "Exit");
            }
        }
I tried to switch operators but it will always result blank.
Find
Reply
Paulice
Huge Clucker
****
Posts: 435
Threads: 2
Joined: Jul 2017
Reputation: 0
#2

11.08.2017, 08:43
You aren't even comparing the entered password with the account's password.
Find
Reply
Fratello
Huge Clucker
****
Posts: 311
Threads: 27
Joined: May 2016
Reputation: 0
#3

11.08.2017, 08:55
Can you help me do it?
Find
Reply
Vince
Spam Machine
*****
Posts: 10,066
Threads: 38
Joined: Sep 2007
Reputation: 0
#4

11.08.2017, 10:15
Quote:
Originally Posted by Fratello
Посмотреть сообщение
I removed SHA256 hashing
Don't. Seriously. Neither you nor anyone else has anything to do with a player's password. If that database ever gets leaked (and if it can happen to Adobe then it can happen to you) then all information will be visible in plain text.

As for the follow-up question "what if a player forgets his password?": generate a new random one and mail it to them. Then the player can set a new password himself using conventional means.
Find
Reply
Fratello
Huge Clucker
****
Posts: 311
Threads: 27
Joined: May 2016
Reputation: 0
#5

11.08.2017, 10:20
I'm not planning to open a server with that script at all. I just have my reasons why I want to remove it.
Find
Reply
« Next Oldest | Next Newest »


Forum Jump:


Users browsing this thread: 1 Guest(s)
  1. SA-MP Forums Archive
  2. SA-MP Scripting and Plugins
  3. Scripting Help