Owin验证密码 [英] Owin authentication password

问题描述

我在web api中使用Aspnet标识基于令牌的owin身份验证。

它将密码存储在无法解密的密码哈希中。我想在自动登录功能中输入密码。但它在密码哈希中。我如何以明文传递。



谢谢。



我尝试过：



尝试了这么多时间，但我没有找到任何解决方案............

Hi,
I am using Aspnet identity the token based owin authentication in web api.
It store password in password hash which cannot be decrypted. I want password it in autologin functionality. but it is in passwordhash. How i get passward in plaintext.

Thanks.

What I have tried:

tried so much time but i didnt find any solution............

推荐答案

你不能，而且你不需要。



很少有你需要知道的情况纯文本密码 - 主要用于对第三方系统进行身份验证。



对于99％的应用程序，您永远不需要了解平原 - 存储密码的文本版本。

You can't, and you don't need to.

There are very few situations where you would ever need to know the plain-text password - primarily if you're using it to authenticate to a third-party system.

For 99% of applications, you never need to know the plain-text version of the stored password.

你没有，这就是整个想法。

哈希是故意不可逆的，这就是重点 - 没人以可能被盗的格式存储密码。

您使用散列值 - 您可以存储并将其用于自动登录。

You don't, that's the whole idea.
Hashes are deliberately non-reversible, that's the whole point - nobody stores the password in a format that can be stolen.
You use the hashed value - you can store that and use it for your autologin.

这篇关于Owin验证密码的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！