Encrypt password in javascript

Foren

Juan Camilo Quintero, geändert vor 7 Jahren.

Encrypt password in javascript

New Member Beiträge: 4 Beitrittsdatum: 13.09.16 Neueste Beiträge

Hi All;

I have a portal with a hook for the login process, and the login is with the screenname and password, but when i use the tamper data tool i can get the password without encrypt this field, then i have the following questions:

* Liferay implements libraries to encrypt data in javascript?.
* Exists a module in alloyui for password type fields?
* How can encrypt the password field in each submit?

Thanks;

David H Nebinger, geändert vor 7 Jahren.

RE: Encrypt password in javascript

Liferay Legend Beiträge: 14919 Beitrittsdatum: 02.09.06 Neueste Beiträge

Liferay handles passwords in the browser the same way that every other site handles them. They are clear text but in fields will be hidden from average view. But they are still there.

There's simply no good way or reason to attempt to "encrypt on the fly" the password as the user is entering it, so it is just not done. Plus there's no agreement on encryption in the browser and the back end, you'd have to expose your encryption key which means any hacker can still use the key to decrypt the password.

Perhaps you are under the (false) impression that login forms across the web are secure?