1,105,644 Community Members

autofill a username and password

Member Avatar
vamshi099
Newbie Poster
1 post since Jul 2009
Reputation Points: 0 [?]
Q&As Helped to Solve: 0 [?]
Skill Endorsements: 0 [?]
 
0
 

how can i autofill a username and password into a websiteB username nd password fields when i click a link present in websiteA.
The username and password vl b stord in a database. and when i click on the link referring to websiteB, present in websiteA , i shuld get automatically fill the usrname and password fields present in websiteB. can anybody giv idea how to write the script or code..

Member Avatar
kireol
Posting Whiz
305 posts since Mar 2008
Reputation Points: 10 [?]
Q&As Helped to Solve: 53 [?]
Skill Endorsements: 0 [?]
 
0
 

while you open yourself up to script kiddies/hacking, and highly NOT recommended that you do this....

when a user clicks the link, that should call a php script with GET parameters.

1 of the parameters should be a unique identifier.

That identifier should be stored in a table along with user names and passwords.

with SQL, select the username and password.

Set the values of the text and password boxes with the results returned from the database.

Member Avatar
diafol
Where are my eyes?
13,007 posts since Oct 2006
Reputation Points: 1,821 [?]
Q&As Helped to Solve: 1,850 [?]
Skill Endorsements: 92 [?]
Moderator
Featured
Sponsor
 
0
 

Why aren't you using cookies like a 'remember me' option?

If your DB is on website A, then you could spoof the login form on website B (change the text/password fields for hidden inputs with your username and password details - you have to ensure that name/id values are the same in both forms). **Check the site B source code for names/ids and any hidden inputs**. If you want to use a link as opposed to a submit button on website A. Change the submit button to a hidden field as well, keeping the name/id values. Then use a link with a javascript 'onclick' causing a 'submit' event.

As long as the website B login validation routine isn't checking your 'referer' details, you will be automatically logged into website B. If 'referer' is checked, there are ways around this by fiddling http requests (but that deserves a whole topic to itself).

I've used this before for connecting different websites BUT be aware that this is really unsafe - especially if website A isn't that secure - you'll probably need to beef up site A security.

You
This article has been dead for over three months: Start a new discussion instead
Post:
Start New Discussion
Tags Related to this Article