I am designing an application in Java and it requires networking and for that I am using a framework called Kryonet, now I've been able to learn how to send packets and connect, etc, but I'm still not sure how I would handle logging in. The user would need to send their credentials for validation, how would this be done securely? After the server receives it, it would hash and salt it and check it against what is stored in the user database, would it be better to hash and salt it before sending it or is there a better way?
Haroon_4
0
Newbie Poster
Recommended Answers
Jump to PostI think I want to ask you why do all that if you are on a https connection. Yes, we know that certain governments have cracked https but for the rest of us it's good enough. Unless you want to launch yet another https "is it secure" discussion.
Maybe you …
Jump to PostOK, I'll ask you directly. Are you using https or not?
I think the secure http discussion ship sailed a few years back but I guess we can go over that again.
All 5 Replies
rproffitt
2,565
"Nothing to see here."
Moderator
Haroon_4
0
Newbie Poster
rproffitt
2,565
"Nothing to see here."
Moderator
jwenting
1,889
duckman
Team Colleague
jwenting
1,889
duckman
Team Colleague
rproffitt
commented:
Now in stereo.
+11
Be a part of the DaniWeb community
We're a friendly, industry-focused community of developers, IT pros, digital marketers, and technology enthusiasts meeting, networking, learning, and sharing knowledge.