Api or command to decode password

Similar Messages

• Converting from Tcl to Java...need to decode passwords stored in DB

  Hello:
  I am converting an application that was previously coded in Tcl/Vignette to Java. Part of this application is a login process. There are already passwords established for thousands of users and I need to be able to have Java decode these passwords from the DB when the users log in. The Vignette Tcl method used to encode the passwords previously was ENCODE64.
  I am almost completely ignorant of doing encrypting/decrypting in Java. can someone give me some idea of what I can use to be able to encode incoming passwords at login so that they can match with the ENCODE64 passwords that exist in the database??
  Basic lgoic is this (pseudocode):
  login = false
  encryptedPassword = encrypt(password_in)
  if encryptedPassword = dbPassword then set login = true
  Does that make sense??
  Thanks!
  Brian

  The Bouncy Castle JCE provider (www.bouncycastle.org) has Base64 encoder/decoder classes that 'just work'.
  import org.bouncycastle.util.encoders.Base64;
  String base64encodedString = "ABCKD4632adcomd";
  byte[] decoded = Base64.decode(base64encodedString);
  String reencoded = new String(Base64.encode(decoded));As for your second question re: how should you re encrypt the passwords? The standard, quite secure way of doing this is to use a one-way cipher. This will encrypt the password text to an unintelligible mess, that CANNOT be decrypted back to the original.
  When a new user enters their password for the first time, you use your cipher to encrypt it, and store this (not the actual password).
  To verify this user, you take the password they give you, encrypt it in the same way, and compare the results.
  Unix/Linux can use a shell command called 'crypt' to do exactly this... MySQL will also do it for you... INSERT INTO blah VALUES(CRYPT('blahpasswordstring'), and SELECT * FROM blah WHERE password=CRYPT('enteredpassword')).
  ... and its far too early in the morning, and I cant for the life of me remember the JCE equivalent of this function :(

• Hide command line ebs password

  Hi All,
  is there a way to hide command line password for apps user.
  when start or stop ebs apps from command line, i have to type
  $adstrtal.sh apps/apps
  is there a way to hide this password.
  Thanks in advance.

  Hi,
  I do not think there is a direct way to do this. However, look at this document and see if it helps.
  Note: 377858.1 - Use Encrypt To Prevent Apps Pwd Being Displayed In Log/Sql Script
  https://metalink2.oracle.com/metalink/plsql/ml2_documents.showDocument?p_database_id=NOT&p_id=377858.1
  Another option would be calling "adstrtal.sh apps/<apps password>" from some other script.
  Regards,
  Hussein

• API or command for WVC210

  Good day >>>
  I use Cisco WVC210 (Cisco Small Business Video Surveillance Camera ) in my project ( in my study in University ) and I have some problem and I need help me in it if possible  ...
  * I want API or  URl command to control in video resolution .
  Sorry for noise .

  These products are being handled by the Cisco Small Business Support Community. (URL: https://supportforums.cisco.com/community/netpro/small-business)

• API Sample to Remove User password

  I am new to the api for adobe. I am wondering if anyone has a sample of using an API program that would remove the User Password from a set of pdf files? (FYI - They all have the same password. )

  The Acrobat SDK is a tool for automating Acrobat, nothing else, so it
  can't be used to make completely standalone tools.
  Next question: what is the user environment?
  * A user, who owns Acrobat Professional, will run it as needed
  * A user will run it automatically on their own files as they need it
  (each user will need Acrobat Professional)
  * No real user as such, this is an automated process on a server
  Aandi Inston

• Acrobat reader command line switch - password

  Hello everybody,
  I am a developer for macromedia director applications.
  I need to open a password protected PDF-file from within a
  director-projector-application with any suitable
  xtra-extension (not the
  problem discussed here!).
  all I would need is the complete command line for acrobat
  reader to do
  this.
  A complete list of command line switches for Acrobat Reader
  would be helpful
  in respect to further needs.
  where can i get this.
  By the way, the solution for Windows and Mac OS would be
  welcome. Are they
  the same?
  Thanks
  Peter Grambitter

  Hello everybody,
  I am a developer for macromedia director applications.
  I need to open a password protected PDF-file from within a
  director-projector-application with any suitable
  xtra-extension (not the
  problem discussed here!).
  all I would need is the complete command line for acrobat
  reader to do
  this.
  A complete list of command line switches for Acrobat Reader
  would be helpful
  in respect to further needs.
  where can i get this.
  By the way, the solution for Windows and Mac OS would be
  welcome. Are they
  the same?
  Thanks
  Peter Grambitter

• Unix command to require password to wake computer from sleep or screensaver

  Yo folks,
  Just as the subject says, is there a Unix command we can send that turns on the option to require password when the computer wakes from sleep or screensaver...which is the first option in System Preferences --> Security?
  I looked through the systemsetup commands and didn't find anything.
  Thanks!

  Run the following AppleScript:
  set items_1 to items -18 thru -2 of (do shell script "ifconfig en0 ether")
  set items_2 to ""
  repeat with this_item in items_1
  if this_item is greater than ":" then
  set items_2 to items_2 & this_item
  end if
  end repeat
  set the_path to "defaults read ByHost/com.apple.screensaver." & items_2
  set old_string to do shell script the_path
  set new_string to (items 1 thru 6 of old_string) & "askForPassword = 1;" & (items 27 thru -1 of old_string) as string
  do shell script "defaults write ByHost/com.apple.screensaver." & items_2 & " '" & new_string & "'"
  The necessary plist key is part of an array, and is in a file which has the computer's Ethernet address in its file name, so the script needs to handle both tasks. This change will not show up in the GUI until the account logs out and back in.
  (24015)

• Trying to automate a Terminal command with a password

  Hi,
  I'm a long time Mac user, but not a Terminal expert.
  I've come upon a simple hack that enables me to run two instances of Skype simultaneously. This enables me to use it with two different user names.
  The idea is to create another user on the computer and run the other Skype like this:
  sudo -u user "/Applications/Skype.app/Contents/MacOS/Skype"
  In order to simplify this for daily use, I'd like to create a small applet which runs this terminal command.
  Trying to do so with Automator's +Run Shell Script+ fails with an execution error, probably due to the fact that this sudo command requires an admin password.
  Is there any way to accomplish this?
  Thanks

  hmm... I'm afraid that didn't do the trick. It now opens the Terminal window and launches Skype with the message "another copy of Skype is already running".
  Maybe I should add another step to workflow instead?
  Thanks again, I really appreciate your help.
  Guy

• OIM 11g R2 - API to validate user's password

  Hi,
  Is there any API available to validate if an user's password in OIM is valid.I have an user login and password and need to verify if the user's password in OIM is same the input password.I am not looking for the API to validate my password against password policy,for which I have the API.
  Thanks.

  One of the ways to do it would be to decrypt the current password and then compare with the new password. Where are you doing this check? Depending upon where you want to do this, you can use different ways to decrypt the current password of the user.
  There are various posts in the forum about decryting the password.
  On a side note, if your policy does not allow same password, then new password validation against the policy should suffice your requirement.
  -Bikash

• Encode and decode password

  In my LOGIN and LOGOUT module I am calling a cfc method using javascript ajax. But I want to pass password after encoding.
  Is there any way to encode the password to be send to CFC method so that I should be able to decode the same also in the CFC method.
  My javascript code is like below.
  xmlhttp.open("POST","cfc/useraccess.cfc?method=checkUserAccess&username="+username+"&password="+password,true);
  xmlhttp.send();
  I want to pass this password in encoded form.
  Any one have any idea on this.
  Your help is well appreciated.

  I don't think you want to urlencode the entire path, only the variable values of username and password.
  Security wise, you might want to put a little more thought into alternatives. Two issues that come up immediately in my mind:
  Even encrypted, the password is still usable by the intended user and anyone that can get to the browser cache. To mitigate this you'll want the encryption seed to be short lived and/or put a timestamp in the password and don't accept passwords that exceed some period.
  If you must comply with any sort of security program (like PCI), most scanners and assessors will red flag code like this because it is unsafe -- even with short lived seeds.
  That said, can this be tied to session security instead of URL query parameters?

• Execute (API) UI Command

  Hi,
  Is there a way to integrate a UI Command in a Java iView?
  How can I execute an UI Command and show the Component in the jsp-File?
  Regards,
  Gerhard

  Did you search this forum before posting this question?
  It is very rude to post a question to a forum that has been answered so many times and that is easily findable in the forum...
  Process p = Runtime.getRuntime().exec("your command");
  BufferedReader read = new BufferedReader(new InputStreamReader(p.getInputStream()));
  String line = null;
  while( (line = read.readLine()) != null)
    System.out.println("OUT>>>" + line);
  //

• ISA - Get Default connection or Decode Password

  Hi!!
  I want to call an RFC from ISA using JCO and I find connection data in Session Data.
  Perhaps the password is encripted.
  How can I retrieve the real passaword?!?!
  Or how can I retrieve the "default" connection?!?!?
  Thanks for help,
          Mik

  If you look in the XCM admin then you can see that there are the full settings for the JCO connection.
  The entrypoint for XCM is:
  server/context/admin
  (the default username is Administrator with a blank password).
  Hence, once  you have a webshop running you don't have to worry about the connection parameters anymore.
  When you want to create a custom backend call you should follow the ISA BackendObject Framework, this framework offers you a convenient way of creating new RFC counterparts in ISA. Basically you should not create RFC calls outside of this framework (although it is completely possible to do so of course).
  You can decrypt the password as well with one of the utility classes in the ISA packages, but it is most likely not necessary for you to do so.
  Cheers,
  Kalle

• API to verify a resource Password?  Like pass through authentication...

  Howdy folks,
  OK. I have a requirement to check the old (or current) password of a user at the time that they change there password to something new. I can do this with lighthouse accounts, but.... We don't update Lighthouse accounts. We only update our LDAP account. I know that pass through authentication checks this automatically by attempting to bind as the user with the given password. Does anyone know if I can ask IDM to do that for me? If not I'll write a java class to do it, but since it is already happening in IDM, I thought there MUST be something in place that can do this already....
  Does anyone know?

  anyone?

• Change password in Active Directory using the JNDI GSS-API/Kerberos

  Hi
  I am trying to the JNDI GSS-API to change a user password.
  When I actually try to change the password using ctx.modifyAttributes(userName, mods), I get the exception:
  09:39:38,163 ERROR [STDERR] javax.naming.OperationNotSupportedException: [LDAP: error code 53 - 0000001F: SvcErr: DSID-031A0FC0, problem 5003 (WILL_NOT_PERFORM), data 0 ]; remaining name 'CN=USER,OU=Usuarios,DC=testead,DC=br'
  Here's my java code:
  public class ChangePasswordLDAPCommand implements Command {
       static Logger logger = Logger.getLogger(ChangePasswordLDAPCommand.class.getName());
       @SuppressWarnings("unchecked")
       public boolean execute(org.apache.commons.chain.Context context) throws ApplicationException {
            logger.info("Início - execute");
            try {
                 CoreConfig config = CoreConfig.getInstance();
                 String userName = config.getProperty(CoreConfig.PARAM_CONFIG_LDAP_ADMIN_NAME);
                 char[] password = config.getProperty(CoreConfig.PARAM_CONFIG_LDAP_ADMIN_PASSWORD).toCharArray();
                 Subject subject = new Subject();
                 Krb5LoginModule krb5LoginModule = new Krb5LoginModule();
                 Map<String, String> map = new HashMap<String, String>();
                 Map<String, String> shared = new HashMap<String, String>();
                 map.put("com.sun.security.auth.module.Krb5LoginModule","required");
                 map.put("client","true");
                 map.put("useTicketCache","true");
                 map.put("doNotPrompt","true");
                 map.put("useKeyTab","true");
                 map.put("useFirstPass","true");
                 map.put("refreshKrb5Config","true");
                 logger.info(">>>>> map.toString(): "+map.toString());
                 shared.put("javax.security.auth.login.name", config.getProperty(CoreConfig.PARAM_CONFIG_LDAP_ADMIN_NAME));
                 shared.put("javax.security.auth.login.password", config.getProperty(CoreConfig.PARAM_CONFIG_LDAP_ADMIN_PASSWORD));
                 shared.put("javax.net.debug","SSL,handshake,trustmanager");
                 shared.put("sun.security.krb5.debug","true");
                 shared.put("com.sun.jndi.ldap.connect.pool.timeout","30000");
                 logger.info(">>>>> shared.toString(): "+shared.toString());
                 krb5LoginModule.initialize(subject, new UserNamePasswordCallbackHandler(userName,password),shared,map);
                 krb5LoginModule.login();
                 if(krb5LoginModule.commit()){
                      //Recupera o usuario a ser alterado
                      UsuarioTOLDAP usuarioTO = (UsuarioTOLDAP) context.get(CoreConfig.USUARIO_TO_LDAP);
                      logger.info(">>>>>>>>>>>>>>>>>>>>>> subject.toString(): "+subject.toString());
                      Subject.doAsPrivileged(subject, new JndiAction(usuarioTO), null);
            } catch (LoginException e) {
                 e.printStackTrace();
            } catch (PrivilegedActionException e) {
                 e.printStackTrace();
            logger.info("Fim - execute");
            return Command.CONTINUE_PROCESSING;
  @SuppressWarnings("unchecked")
  public class JndiAction implements java.security.PrivilegedExceptionAction{
       private static Logger logger = Logger.getLogger(JndiAction.class.getName());
       private UsuarioTOLDAP usuarioTOLDAP = null;
       public JndiAction(UsuarioTOLDAP usuarioTO) {
            this.usuarioTOLDAP = usuarioTO;
       public Object run() {
            performJndiOperation(usuarioTOLDAP);
            return null;
       @SuppressWarnings("unchecked")
       private static void performJndiOperation(UsuarioTOLDAP usuarioTOLDAP){
            logger.info(">>>>> entrei na JndiOperation");
            try {
                 CoreConfig config = CoreConfig.getInstance();          
                 String distinguishedName = "";
                 String keystore = "C:/Documents and Settings/user/.keystore";
                 System.setProperty(CoreConfig.JAVAX_NET_SSL_TRUSTSTORE,keystore);
                 System.setProperty("com.sun.jndi.ldap.connect.pool.timeout","30000");
                 System.setProperty("javax.net.debug","all");
                 System.setProperty("sun.security.krb5.debug","true");
                 Hashtable env = new Hashtable();
                 env.put(Context.INITIAL_CONTEXT_FACTORY, CoreConfig.INITIAL_CONTEXT_FACTORY);
                 env.put(Context.PROVIDER_URL, config.getProperty(CoreConfig.PARAM_CONFIG_LDAP_URL));
                 env.put(Context.SECURITY_AUTHENTICATION, CoreConfig.SECURITY_PROTOCOL_GSSAPI);
                 env.put(Context.SECURITY_PRINCIPAL, config.getProperty(CoreConfig.PARAM_CONFIG_LDAP_ADMIN_NAME));
                 env.put(Context.SECURITY_CREDENTIALS, config.getProperty(CoreConfig.PARAM_CONFIG_LDAP_ADMIN_PASSWORD));
                 env.put(CoreConfig.JAVAX_NET_SSL_TRUSTSTORE,keystore);
                 env.put("javax.security.sasl.qop","auth-int");
                 env.put("javax.security.sasl.strength","high");
                 env.put("javax.security.sasl.server.authentication","true");
                String userName = "CN=USER,"+config.getProperty(CoreConfig.PARAM_CONFIG_LDAP_BASE_DN);
                 // Cria o contexto inicial de acesso ao LDAP
                 //DirContext ctx = new InitialDirContext(env);
                 // Create the initial directory context
                 LdapContext ctx = new InitialLdapContext(env,null);
                 //set password is a ldap modfy operation
                 ModificationItem[] mods = new ModificationItem[1];
                 //Replace the "unicdodePwd" attribute with a new value
                 //Password must be both Unicode and a quoted string
                 String newQuotedPassword = "\"" + usuarioTOLDAP.getNovaSenha() + "\"";
                 byte[] newUnicodePassword = newQuotedPassword.getBytes("UTF-16LE");
                 mods[0] = new ModificationItem(DirContext.REPLACE_ATTRIBUTE, new BasicAttribute("unicodePwd", newUnicodePassword));
                 // Perform the update
                 ctx.modifyAttributes(userName, mods);
                 ctx.close();
            } catch (NamingException e1) {
                 e1.printStackTrace();
            } catch (UnsupportedEncodingException e) {
                 e.printStackTrace();
            } catch (IOException e) {
                 // TODO Auto-generated catch block
                 e.printStackTrace();
  }Edited by: c0m4nch3 on Jan 21, 2010 12:13 PM

  Refer to my response for a similar question in http://forums.sun.com/thread.jspa?threadID=5416736
  Also the following may be related: http://forums.sun.com/thread.jspa?threadID=5196192
  Good luck.

• API for password change

  I want to add user and change password for that user.
  I am not finding any API for doing that.
  Is there any API for user addition and password change?

  You want to add a user to the system or to a user application? If it's to the system then you need root priviledges. You can assess and manipulate (to a certain extent) the username and password files on the system using the nispasswd and passwd commands. If you have some user applcation for which you want to create users and passwords then you can use the NIS (Network Information name Service) system. Type man nis for lots of information.