Owin验证密码 [英] Owin authentication password
本文介绍了Owin验证密码的处理方法,对大家解决问题具有一定的参考价值,需要的朋友们下面随着小编来一起学习吧!
问题描述
我在web api中使用Aspnet标识基于令牌的owin身份验证。
它将密码存储在无法解密的密码哈希中。我想在自动登录功能中输入密码。但它在密码哈希中。我如何以明文传递。
谢谢。
我尝试过:
尝试了这么多时间,但我没有找到任何解决方案............
Hi,
I am using Aspnet identity the token based owin authentication in web api.
It store password in password hash which cannot be decrypted. I want password it in autologin functionality. but it is in passwordhash. How i get passward in plaintext.
Thanks.
What I have tried:
tried so much time but i didnt find any solution............
推荐答案
你不能,而且你不需要。
很少有你需要知道的情况纯文本密码 - 主要用于对第三方系统进行身份验证。
对于99%的应用程序,您永远不需要了解平原 - 存储密码的文本版本。
You can't, and you don't need to.
There are very few situations where you would ever need to know the plain-text password - primarily if you're using it to authenticate to a third-party system.
For 99% of applications, you never need to know the plain-text version of the stored password.
你没有,这就是整个想法。
哈希是故意不可逆的,这就是重点 - 没人以可能被盗的格式存储密码。
您使用散列值 - 您可以存储并将其用于自动登录。
You don't, that's the whole idea.
Hashes are deliberately non-reversible, that's the whole point - nobody stores the password in a format that can be stolen.
You use the hashed value - you can store that and use it for your autologin.
这篇关于Owin验证密码的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
查看全文