CST 336 - Module 7

 Week 7,

This week’s module covers authentication using sessions. A problem with loading different pages on a web application without sessions is the fact that information is only being obtained for that page specifically. In other words, if a user logs in then loads a new page, then the user wouldn’t be logged in anymore.


Using sessions solves the problem in an easy way. In short, we can use sessions to keep track of information we would want to remember across multiple pages. Much like global variables in a program. Sessions are useful when it comes to keeping track of which user is signed in at that moment.


Besides using sessions, we were also introduced to using BCrypt to hash passwords. When creating an account, we send that information to the MySQL database. Normally there isn’t a problem with sending data to a database such as images or random information about a character in a show. However, with user’s creating accounts with their private passwords, there is now an issue of privacy. One problem that could arise is the database could be compromised, and all the passwords would be floating about the internet. Another problem would be packet sniffing, allowing people to intercept network traffic and obtain private information such as the password to an account. So, we use BCrypt to hash the password provided by a user, making it harder to understand what that password may be normally, even if the information was leaked.

Comments

Post a Comment

Popular posts from this blog

CST 300 - Module 4

Part 1 - Educational Goals This week's lecture readings in class have to do with setting goals. There are a few different types of goals to consider such as career, financial, family, artistic, attitude, physical, and public service. However, for now let's go over my educational goals. Some things I would particularly like to learn more about are software design and software engineering. I want to be able to create more professional applications to be an important member of any team I may join in the work field. To be more general, I would like to pass all of my classes with a grade higher than a C as I think they all are useful to know, especially for some of the things I want to do in the far future. Part 2 - Career Goals Another type of goal I should talk about is my career goal. Overall, I would like to have enough experience in working with the game development industry. There are a few levels to this goal, one is I would like to work with a company that develops games suc...
Read more

CST 338 - Module 4

 This week in CST 338, there were few assignments to complete. This time we got to get our hands on Android Studio, where we created very simple app where android users can convert temperature °c to temperature °f, or vice versa. We also got to complete our first project, where we practiced inheritance using an abstract class, and concrete classes. However, besides that, we were also allowed to go back to our previous assignment, Markov, and have our teammates review each other's code. I worked with my teammate Ryan Matsuo  and after reviewing his code, I learned a few things that could help me in the future, like splitting a string using str.split() with a regex of "\\s+" instead of what I did which was more complicated. My strategy with solving the Markov assignment was that I started writing the code right away. I didn't put anything to practice into paper because I feel I can do the same thing in the code. I would read the prompt, create stubs for the methods to b...
Read more

CST 300 - Module 6

 Part 1 - Brainstorming our Capstone Project Ideas This week, during our team meeting we focused on our previous module's journal about our capstone project ideas. It was great to hear what some of the other members' ideas were, and to be honest, they were more developed than mine, so it gave me a great opportunity to learn. After talking about some of the ideas, one stood out to the group. Our team member, Ryan suggested an inventory type of mobile application which would be able to analyze one's wardrobe, or other types of inventories. Part 2 - Overall Lecture This week's module was another interesting one. This one was more focused on what is to come in our future with an assignment to start our individual learning plan portfolio, to create a cover letter and resume for an internship, and to finish our ethical essay draft plus review two other team members. Both team members' essays were well thought out and gave me insight as to how to improve my own, before I e...
Read more