protected application with user and pw.

I want my application to run only after login.It means that for the first time the app is running, I'll get a login window to insert user and pw and from that first login (the parameters will be written in .ini file) and on, each time someone wants to run this app, he should login with the user and pw he gave at the first time. How can I implement such a utility for the app?
another issue-Is there a way to write these parameters to .ini file but as an enchrypted data? (maybe there are specific classes for that?)
twgAsked:
Who is Participating?

[Webinar] Streamline your web hosting managementRegister Today

x
 
falterConnect With a Mentor Commented:
First problem INI-File:

Have a look at Properties class in Java.
You can write an ascii file my.ini like this.
myapp.user=john
myapp.password=doe

You can read this file by writing

Properties myPprops = new Proberties() try {
   myProps.load(new FileInputStream ("my.ini"));
} catch (Exception e) {
}
Now you can query the Properties with
myProps.getProperty("myapp.user",defaultValue);

DefaultValue is used if myapp.user isn't defined or set.

As I know Java has some classes in javax packages allowing encrypting and decrypting. (Never used them)

Another approach may be to provide a serialized class loaded by
ObjectInputStream and written by ObjectOutputStream.
something like
public class MyLoginConfig
{
 protected String user = null;
 protected String password = null;
 public void setUser(String user)
 {
   this.user = user;
 }
 public void setPassword(String passwd)
 {
    this.password = passwd;
 }
 public String getUser() { return user; }
 public String getPassword() { return password; }
 boolean validate(String user, String password)
 {
if (this.user.equals(user) && this.password(equals(password))
 {
   return true;
 } else {
   return false;
 }
}

In your main you can use this class:
File loginCfgFile = new File("login.ser");
if (loginCfgFile.exists()) {
  // readin the serialized object
  // compare the user input with the stored values
} else {
  // accept the input and
  // write the serialized object
}
0
 
twgAuthor Commented:
Thanks alot falter.  I thought of using hashCode for strings but there's no reverse function (i.e, getting back the string from the code).
Do you have any idea?
0
 
falterCommented:
Why didn't try something like Unix systems do with passwords.
They use an one-way algorithm do produce the stored value of a password.
During login they take the user input apply the algorithm and compare the result with the stored one and they have no need to recover the original string from the encrypted one.
May be hashcode is enough for what you want.

Store the hashcode and compare later the hascode of the userinput with the stored one.
0
The new generation of project management tools

With monday.com’s project management tool, you can see what everyone on your team is working in a single glance. Its intuitive dashboards are customizable, so you can create systems that work for you.

 
Laminamia063099Commented:
There isn't a way to get anything back from a hash code, because more than one object can provide the same hash code.  If you want secure encryption (for a high security application) then look into the javax.crypto packages.  Serialization won't work for the following reason: Most of the serialized data will appear as gibberish, but strings are stored as strings in the serialized file and hence are readable by anyone , because it will appear as mostly gibberish to the user.  

So, if you truly want encryption, look into the Java Encryption API.  If you just want privacy, use serialization or simple I/O, but find a way to store the password and username without simply writing them out.  This can partially be accomplished by overwriting writeObject() and readObject() in your serializable class to not output the password/username as strings.

Good luck

Laminamia :)
0
 
twgAuthor Commented:
I used the .ini file to store my parametes.
The problem is that each time I want to add something to the .ini file and I use Properties.store, then it writes everything again to the file instead of just adding. For example:
#preferences
#Wed May 17 12:16:30 IDT 2000
Password=2154053
User=1993601186
#Preferences (if I used .store() again)
#Wed May 17 12:17:14 IDT 2000
Password=2154053
User=1993601186
Param1=test1
Param2=test2.

Is there a way to update the file (like deleting the existing content and rewrite - I didn't find such a method for class 'File' either).



0
 
falterCommented:
twg,

try

File iniFile = new File("fileName.ini");
if (iniFile.exists())
{
  // file exists so let us delete it
  boolean bRC = iniFile.delete();
}
.... Properties.store...
0
 
twgAuthor Commented:
Hi falter, thanks for your answer.
But it means that everytime I want to add something to the file, I have to delete it and create a new file to store the Properties? isn't it a waste of resources?
0
 
falterCommented:
May be its not a very elegant solution.
You can write your own routines parsing your file and replacing the entries you want.
Also if you only want to append something to the file simply create a
Properties object and write it to the file.

0
All Courses

From novice to tech pro — start learning today.