Password Protect Problems

Question

DealthRune 2 Light Poster

15 Years Ago

I made this JavaScript that password protects a page. But the password you type in is completely visible! I want it so that the password are those black dots for each letter.... If anybody gots anything, please post it here, thx. Oh yea, here is the script

<HTML>
<BODY>
<SCRIPT>
function passWord() {
var testV = 1;
var pass1 = prompt('Please Enter Your Password',' ');
while (testV < 3) {
if (!pass1) 
history.go(-1);
if (pass1.toLowerCase() == "cheese") {
alert('You Got it Right!');
window.open('protectpage.html');
break;
} 
testV+=1;
var pass1 = 
prompt('Access Denied - Password Incorrect, Please Try Again.','Password');
}
if (pass1.toLowerCase()!="password" & testV ==3) 
history.go(-1);
return " ";
} 
</SCRIPT>
<CENTER>
<FORM>
<input type="button" value="Enter Here" onClick="passWord()">
</FORM>
</CENTER>
</BODY>
</HTML>

javascript

4 Contributors
6 Replies
128 Views
1 Day Discussion Span
Latest Post 15 Years Ago Latest Post by ShawnCplus

BestJewSinceJC 700 Posting Maven

15 Years Ago

You are in the Java forum. I imagine you'd get a better answer in the correct forum.

ShawnCplus 456 Code Monkey

15 Years Ago

I made this JavaScript that password protects a page. But the password you type in is completely visible! I want it so that the password are those black dots for each letter.... If anybody gots anything, please post it here, thx. Oh yea, here is the script
<HTML>
<BODY>
<SCRIPT>
function passWord() {
var testV = 1;
var pass1 = prompt('Please Enter Your Password',' ');
while (testV < 3) {
if (!pass1) 
history.go(-1);
if (pass1.toLowerCase() == "cheese") {
alert('You Got it Right!');
window.open('protectpage.html');
break;
} 
testV+=1;
var pass1 = 
prompt('Access Denied - Password Incorrect, Please Try Again.','Password');
}
if (pass1.toLowerCase()!="password" & testV ==3) 
history.go(-1);
return " ";
} 
</SCRIPT>
<CENTER>
<FORM>
<input type="button" value="Enter Here" onClick="passWord()">
</FORM>
</CENTER>
</BODY>
</HTML>

You do realize that you have the raw password "cheese" in javascript. Anyone that wants to can just view the source of the page, see the password then type it in. There's really no way to authenticate users on the client-side only and not be completely insecure.

Reply to this topic

Be a part of the DaniWeb community

We're a friendly, industry-focused community of developers, IT pros, digital marketers, and technology enthusiasts meeting, networking, learning, and sharing knowledge.

javaAddict 900 Nearly a Senior Poster Team Colleague Featured Poster · Answer 1 · 2009-04-30T19:21:29+00:00

You can at least use this:

<input type="password" name="pass" id="pass" />

When the user clicks the button use javascript to get the value of the field and do whatever you want.
But you shouldn't use javascript for password authentication

DealthRune 2 Light Poster · Answer 2 · 2009-05-01T02:33:01+00:00

You do realize that you have the raw password "cheese" in javascript. Anyone that wants to can just view the source of the page, see the password then type it in. There's really no way to authenticate users on the client-side only and not be completely insecure.

Thanks, I didn't realize that until now....

DealthRune 2 Light Poster · Answer 3 · 2009-05-01T02:38:10+00:00

You do realize that you have the raw password "cheese" in javascript. Anyone that wants to can just view the source of the page, see the password then type it in. There's really no way to authenticate users on the client-side only and not be completely insecure.

What should I use besides JavaScript to password protect a page?

ShawnCplus 456 Code Monkey Team Colleague · Answer 4 · 2009-05-01T02:47:13+00:00

What should I use besides JavaScript to password protect a page?

A serverside language. PHP, JSP, ASP, etc. etc.