ODP: [firebird-support] Re: Explicit Login with Windows Domain username
Hi Ask self – do you have Windows Domain supported 2 passwords? No. You can have 2 different autentication methods. On Firebird3 you have autentication plugins. You can implement one self or use apropiate design on your rest service. Better to not allow all users to have same password is to redesign you REST service. You should have login method on your rest service and user should recive token. And he/she should comunicate with this token in new requestes to other rest methods. I can only hint to also use hmac with this token design to do not allow someone to recive token only and override user privileges. Regards, Karol Bieniaszewski
[firebird-support] Re: Explicit Login with Windows Domain username
Hello, I posted a similar question on 20. September 2017 how to login with a windows domain username without using trusted authentication. At this time the answer was: ist not possible or you have to In the meanwhile I have some customers with FB 3.x and recognized that trusted authentication is dependent on the EF and .net provider and not in place yet. For that reason I tried following steps: 1. My domain user is called BAURADAR\NIKOLAUS 2. Firebird 2.5.9 a. I logged in: isql localhost/3060:b58 -u "DOMAIN\TEST44" -p test -r BAURADAR_ADMIN b. It worked ! 3. Firebird 3.0.5 a. isql localhost:oberrater -u "BAURADAR\TEST" -p test -R BAURADAR_ADMIN b. It worked as well 4. I check the current user with: a. show users; b. select current_user from rdb$DATABASE; What do I want to achieve: I. Automatic login with Windows Domain account without the need for a password. This is the level of security with FB2.5.x and trusted authentication II. Explicit login with any Windows domain account with a specific password via a REST Service In order to get this working on FB3.x I need to setup all Firebird users with Windows Domain Accounts with the same default password. Questions: 1. As far as I see this the objective I. is in conflict with objective II. Or is there a parameter to login without password check? 2. Is the use of special german characters (like ÄÖÜ) possible with Firebird Usernames? Also in as a Windows Domain Username like "BAURADR\OBERMÜLLER? Thanks in advance Niko
