Genexus Authentication without using Genexus Access manager

Question

I want to implement authentication in Genexus customly. Is there any way to implement authentication in component without enabling Genexus Access Manager(GAM)?

score 1 · Answer 1 · answered Jul 17 '19 at 14:50

1

Of course you can manage by yourself and saving the encrypted passwords in your DB manually.

answered Jul 17 '19 at 14:50

Leonardo Scafarelli

11
1

1

Please visit the [help center](https://stackoverflow.com/help/how-to-answer) to learn how to write a good answer. – DjSh Jul 17 '19 at 14:59

score 1 · Answer 2 · answered Jul 03 '21 at 01:03

I suggest you store the passwords hashed and not encrypted for security according to OWASP Password Storage Cheat Sheet

Here is an example of how to hash with SHA512, but you can choose from all options in CryptoHash:

Parm(in:&PassWord, out:&HashSHA512);

&CryptoHash.Algorithm = CryptoHashAlgorithm.SHA512
&Digerido = &PassWord.Trim() // you can add salt here
for &i = 1 to 10 //number of iterations in hashing
    &Digerido = &CryptoHash.Compute(&Digerido)
endfor
&HashSHA512 = &Digerido.ToUpper()

So basically you use this proc to hash your password and store it in the database, and when the user logs in, you use the proc to get the hash and you compare the hash with the one stored in the database.

Genexus Authentication without using Genexus Access manager

2 Answers2