Hi All

I am working on a HRMS (Human Resource Management Solutions) web application. My login page has two logins for employee and admin. I create the employee inside the application (admin login) and login with the same username and password (provided in employee database) for employee view. I had encrypted the password before saving using "encrypt password" server action. I have to decrypt the password and login using the same. Can someone suggest me how to decrypt the password.

Hi Kavya,

follow this link for your answer.

https://www.outsystems.com/forums/discussion/19923/decrypt-and-retrieve-the-login-password/


Regards 

Rahul Sahu

Hi Kavya,

Hashing is typically a one way procedure: once you hash a password reversing the procedure is practically impossible, by design.

Why do you need to decrypt a password to login? Assuming you're using the OutSystems Users module, all you need to do is call User_Login and validate the result.

Afonso Carvalho wrote:

Hi Kavya,

Hashing is typically a one way procedure: once you hash a password reversing the procedure is practically impossible, by design.

Why do you need to decrypt a password to login? Assuming you're using the OutSystems Users module, all you need to do is call User_Login and validate the result.


Hi Afonso

I have to login as an employee and also as a user( admin). That is why I have employee login.

Hi Kavya,

From your post what I understand is you are adding employees in OutSystems users table but managing your own employee table. In that same employee table you have stored password as well. 

1. If that is the case I would suggest you to not create separate table to manage employee user account. You can create users in the outsystems users table itself and have separate roles for each type of users, which you can select on screen or other places to restrict user access for users with specific roles.

2. And if you are not managing employee user account in saparate teple and having them in outsystems users table then there is no need to encrypt the password. Outsystems will do it for you automatically.

Solution

Hi Kavya,


Encrypted password cannot be decrypted. But we can able to validate the password.

There is a default out systems server action called validate password which will compare  salted password

with plain text(entered password) and return Boolean value. Hope this might help.

Thanks & Regards

Suriya

Solution

Suriya Narayanan Ramakrishnan wrote:

Hi Kavya,


Encrypted password cannot be decrypted. But we can able to validate the password.

There is a default out systems server action called validate password which will compare  salted password

with plain text(entered password) and return Boolean value. Hope this might help.

Thanks & Regards

Suriya

Thank you suriya.... It worked out for me