p2p.wrox.com Forums

p2p.wrox.com Forums (http://p2p.wrox.com/index.php)
-   BOOK: ASP.NET 2.0 Website Programming Problem Design Solution ISBN: 978-0-7645-8464-0 (http://p2p.wrox.com/forumdisplay.php?f=264)
-   -   Passwords from version 1 to version 2 (http://p2p.wrox.com/showthread.php?t=53683)

Maxxim February 6th, 2007 09:02 AM

Passwords from version 1 to version 2
Hello my friends!

I have a site based on the first edition of this book.
My site has 200 users.
I already bought the book of the second version!
I go to make a new site in asp.net 2 but but I want to keep mine 200 users.

My doubt is about passwords...
I read that thebeerhouse uses “symmetric encryption”.
It is possible to transform passwords of my users into this new system?

What is my option to do this whitout asking my users to generate a new password?

Users don't like this...

I liked the first version and I quess that I will like this too!

Max, from Portugal

plb February 6th, 2007 01:52 PM

Here's one way you can do it.

Download the Beer House Starter Kit. Get it up and running in the default VS2005 directory with the default MDF file data connection. Never change anything on this site!

Make a copy on which you can make changes. Make changes one at a time. When your new site stops working you can look at the original and figure out the problem.

The use of symetric encryption is a design choice. Change it to use clear text passwords if that's OK with you. Simple.

The bigger problem is that a NET 1.1 database typically had passwords as fields in a standard table. But in NET 2.0 the password and all the other user information are all in one long string field called PropertyValuesString in the aspnet_Profile table.

I suspect that someone has written a utility to help with this conversion. I'd Google it.

MythicalMe February 6th, 2007 02:23 PM

The password is stored in the aspnet_membership table. Only the profile is stored in the long profile string.

You can still use the tables from version 1, but instead of using the built in capabilities, you'll have to write the membership and roles as a provider.

Maxxim February 6th, 2007 06:49 PM

Thanks! I know that i can store my users information in a table... but for this my choice is simple!

I can make a loop that retrieves all my users information from my mssql 2000 database and store this information as PropertyValuesString for each user...

I have to do this for all my data. I have a forum with 2500 replies, 2000 private messages, etc etc

After this task done i can delete my mssql 2000 datatable!

My problem is:
I want my site to be like thebeerhouse, because i think this is the best way to do things in asp.net 2.

But I want to upgrade the system without asking users to choice new passwords...

In ThePhile i have:

password clean -> asp.net 1.1 encrypt -> store this binary field into database.

My Question:
I can have the same encrypton type in asp.net 2 that i had in asp.net 1.1 ?

If answer is "Yes" I just have to make this encrypton type in asp.net 2, and change the database type from "varchar" to "binary"
Then i can pass all the passwords from sql 2000 to sql 2005 express edition!

Am I right?
Are this an efficient way to solve this problem?

Thanks, forgive my bad english!

All times are GMT -4. The time now is 12:44 PM.

Powered by vBulletin®
Copyright ©2000 - 2020, Jelsoft Enterprises Ltd.
© 2013 John Wiley & Sons, Inc.