Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
M
M
Michael2017-03-08 21:40:34
ASP.NET
Michael, 2017-03-08 21:40:34

How to properly store login and password for Admin in Asp.Net Identity?

Hello, I want to cover the site admin panel with a login and password so that only the admin can enter, for this I study Asp.Net Identity , I look at various tutorials, and I see a dangerous situation, the login and password for the admin are saved in their pure form in the Web.config file

<forms loginUrl="~/Account/Login" timeout="2880">
        <credentials passwordFormat="Clear">
          <user name="admin" password="12345"/>
        </credentials>
      </forms>

I wanted to ask how this can be avoided and where to store the standard data (login and password) for the admin? More precisely, what is the safest way to do it? Thanks

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

1 answer(s)
Report
W
w1ld, 2017-03-08
@w1ld

So this is the default value apparently. After creating a database with Asp.net Idenitty entities, the admin password can, in theory, be changed and it will be stored in encrypted form. I don't see the point in hiding the defaults here.

Similar questions
S
Sergey2013-12-09 16:53:45
How to organize the work of several web applications on a site in ASP.NET? 2Reply
V
VanilaSpirit2020-07-23 14:20:22
Do I need to use Repository pattern and Entity framework together? 1Reply
A
Alexander Kosheverov2013-12-25 19:26:26
How to correctly call a service from Workflow? 1Reply
A
Alexander Degtyarev2016-03-24 13:39:00
Which is better for REST API approach? 1Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question