Dynamic Drive DHTML Scripts- Encrypted Password script

Encrypted Password script - Dynamic Drive DHTML Scripts

Encrypted Password script

Author: Rob Heslop | homepage

Last updated: July 23rd 2001 by Mike to include username field

Description: JavaScript password scripts have improved substantially over time, with the latest enhancement being an encrypted password, archived using "fuzzy" algorithms. The result are password scripts that won't crumble as soon as the user views the page's source. Use this script to password protect your webpage; based on a simple yet effective encryption method, it's one of the best of its kind.

Important: In general JavaScript password scripts are significantly less secure that their CGI counterpart. If your server supports CGI, the ideal method of password protection is via that route.

Demo: Username is "john" & password is "good":

Enter username: Enter password:

---

Directions:

Step 1: First, generate the encrypted username/password set by typing the desired selections in the box below (ie: "john" and "good") and press calculate (the generator is NOT case sensitive):

Choose a UserName:
Choose a Password:
  Encrypted Usercode:
Encrypted Passcode:

Step 2: Once you have the encrypted set, name the secure page what your password is .htm (i.e. "good.htm"). Then, add the following script to the page leading up to the protected one, replacing the numbers inside the script (where indicated by the comments) with the numbers generated above:

Select All
<script> //Encrypted Password script- By Rob Heslop //Script featured on Dynamic Drive //Visit http://www.dynamicdrive.com function submitentry(){ password = document.password1.password2.value.toLowerCase() username = document.password1.username2.value.toLowerCase() passcode = 1 usercode = 1 for(i = 0; i < password.length; i++) { passcode *= password.charCodeAt(i); } for(x = 0; x < username.length; x++) { usercode *= username.charCodeAt(x); } //CHANGE THE NUMBERS BELOW TO REFLECT YOUR USERNAME/PASSWORD if(usercode==134603040&&passcode==126906300) //CHANGE THE NUMBERS ABOVE TO REFLECT YOUR USERNAME/PASSWORD { window.location=password+".htm"} else{ alert("password/username combination wrong")} } </script> <form name="password1"> <b>Enter username: </b> <input type="text" name="username2" size="15"> <b>Enter password: </b> <input type="password" name="password2" size="15"> <input type="button" value="Submit" onClick="submitentry()"> </form>

You're done.

Let's replay everything, just to make sure everyone's on the same page:

Step 1: Use the generator to create the encrpted, numeric versions of your username/password (ie: "good" becomes 126906300) Step 2: Name the page you wish to password protect what your password is, prefixed with .htm (ie: "good.htm") Step 3: Inside the code of Step 2 above, change the two numbers to the numbers generated by the generator Step 4: Finally, insert the code of Step 2 into the proceeding page visitors will login using.

Free free to rewind at this point...