When creating a customer facing system (such as a customer portal), some developers may want to allow end users to reset their own passwords. We have implemented such a process in a few previous projects and wanted to share the steps with an interested audience. This specific process will include a button on the sign … Continue reading Password Management System
Tag Archives: Security
Master Dictionary Menu
A recent common request has been the ability to control multiple dictionary menus from a central/master dictionary. In the past, the answer for this request has been to drop the mrc security tables from the database and create views in each dictionary pointing to the master dictionary security tables. While this method will continue to … Continue reading Master Dictionary Menu
Handling iSeries password expiration in m-Power App
In the event you are authenticating your m-Power applications against an iSeries profiles, you may come across the scenario where your user’s profile is about to expire. The feature described in this document will allow the user to update their iSeries password through a web application. To implement: Place mrcChangePswd.html in the appropriate Data Dictionary … Continue reading Handling iSeries password expiration in m-Power App
Masking & Scrambling Sensitive Data
When creating web applications, developers occasionally wish to hide, scramble or otherwise obfuscate data that is displayed on the page and/or sent via the URL. The main reason for this is that application developers need to protect the information being sent across the URL from being read by the end-user. An example of this would … Continue reading Masking & Scrambling Sensitive Data
Encrypting Passwords
m-Power can easily be configured to use any existing encrypted column for password values when securing your applications against a flat file. For more on how to do this, see this page. While this works great for existing encryptions, it is also possible to use m-Power to encrypt new values as well. To do so, … Continue reading Encrypting Passwords