huayan889
-
Posts
99 -
Joined
-
Last visited
Content Type
Profiles
Forums
Events
Posts posted by huayan889
-
-
hi,1.90.0.1550 bin\hyper_server.exe is 1.90.0.1549
-
hyper_server true hot update works very well, it would be a shame if hyper_server could not be used due to security issues with the password plaintext.
-
-
hello,Using the browser development are mode found login hyper_server.exe background management page password in plaintext display, can fix this security hole?
The repair method can be referred to:
How do you deal with the problem of plaintext? - Page 4 - General - uniGUI Discussion Forums -
uniserverModile.custimCSS
<style type="text/css">
.x-grid-cell {
vertical-align: middle;
}
.x-grid-cell-inner {
white-space: initial;
}
</style>
-
hello @Sherzod,Are there any plans to fix the problem of hyper server login?
-
-
47 minutes ago, irigsoft said:
Hello.
What are you using root / server for? I deactivated this root
hello irigsoft,uses hyperserver .
-
login hyper_server.exe Management page appears is a plaintext problem, please fix it, thank.
-
5 minutes ago, Sherzod said:
Well, the algorithm is this:
JS fn call (client side, use ajaxRequest to send data to server) -> Handling OnAjaxEvent (server side)
Thank.
-
I mean, is there any way to call JS function in Delphi code to return the result.
-
6 minutes ago, Sherzod said:
You can use it like this:
Uses ... IdHash, IdHashMessageDigest; with TIdHashMessageDigest5.Create do try MD5HashStr := HashStringAsHex(edPass.Text); finally Free; end;
MD5 is just an example, I need to use other encryption algorithms
-
15 minutes ago, huayan889 said:
It's OK to assign a value to the control, but now I want to return the result to the specified variable
Something like this,Delphi Code call js MD5 function, Can it be realized?
UniQuery1.SQL.Text := 'select * from ss_customer_info where (customer_id=' + chr(39) +
UniEdit1.Text + chr(39) + ') and (admin_id =' + chr(39) + admin_id.Text + chr(39) +
') and (admin_pass=' + chr(39) + MD5(fromCode(FpKey)) + chr(39) + ')';
UniQuery1.Open;
-
Just now, Sherzod said:
Well, something like we did in your post.
It's OK to assign a value to the control, but now I want to return the result to the specified variable
-
Just now, Sherzod said:
I understood you, but you won't just use the addition function, will you?
I want to call JS's encryption algorithm and return the result of encryption or decryption
-
Just now, Sherzod said:
Hello,
For what purpose, sorry?
get add function(js code) result
-
How to Get JS function ADD(10,2) result?
procedure TMainForm.UniFormCreate(Sender: TObject);
begin
Script.text:=
'function add(x,y) {'+
' return x+y;' +
'}';showmessageN(add(10,2));//display result= 12
end; -
Thanks irigsoft, it has been solved. According to your method, ssleay32.dll and libeay32.dll need to use the latest version.
UniServerModule:
function GetCipherList(AStrength: Integer): WideString;
const
cCIPHER_LIST_1: WideString = 'DHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES128-GCM-SHA256';
cCIPHER_LIST_2: WideString = 'DHE-RSA-AES256-SHA256:DHE-RSA-AES128-SHA256:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-SHA256';
cCIPHER_LIST_3: WideString = 'ECDHE-RSA-AES256-SHA:ECDHE-RSA-AES128-SHA:DHE-RSA-AES256-SHA:DHE-RSA-AES128-SHA';
cCIPHER_LIST_4: WideString = 'AES256-GCM-SHA384:AES128-GCM-SHA256:AES256-SHA256:AES128-SHA256:AES256-SHA:AES128-SHA';
cCIPHER_LIST_5: WideString = 'DES-CBC3-SHA';begin
case AStrength of
// Advanced Plus (A+)
1: Result := cCIPHER_LIST_1;
// Advanced (A)
2: Result := cCIPHER_LIST_1 + ':' + cCIPHER_LIST_2;
// Broad Compatibility (
3: Result := cCIPHER_LIST_1 + ':' + cCIPHER_LIST_2 + ':' + cCIPHER_LIST_3;
// Widest Compatibility (C)
4: Result := cCIPHER_LIST_1 + ':' + cCIPHER_LIST_2 + ':' + cCIPHER_LIST_3 + ':' + cCIPHER_LIST_4;
// Legacy (C-)
5: Result := cCIPHER_LIST_1 + ':' + cCIPHER_LIST_2 + ':' + cCIPHER_LIST_3 + ':' + cCIPHER_LIST_4 + ':' + cCIPHER_LIST_5;
else
Result := EmptyStr;
end;
end;procedure TUniServerModule.UniGUIServerModuleCreate(Sender: TObject);
begin
UniServerModule.SSL.SSLOptions.CipherList := GetCipherList(5);end;
-
1
-
-
8 minutes ago, irigsoft said:
Yes it is .
But when you use older versions of TLS they will not work. You have to try this in mind.
Mozzila have explained very well, I have no methods to try, maybe with some api to your server with tls 1.0 or older will show that I'm right.
I have to disable the old version of TLS
-
1 hour ago, irigsoft said:
Hello,
Did You succeed with this problem ?
Can You try my solution ?
There is still this problem.
-
18 minutes ago, Sherzod said:
Hello,
Try this code:
procedure TMainmForm.UnimFormCreate(Sender: TObject); begin //UnimButton1.ClientEvents.ExtEvents.Values['tap'] := //'function tap(sender, e, eOpts)' + //'{'+ //' document.getElementsByName("' + uniMEdit1.JSName+'")[0].value = MD5 (document.getElementsByName("' + //uniMEdit1.JSName +'")[0].value);'+ //'}'; UnimButton1.JSInterface.JSAddListener('tap', 'function(){'+ UnimEdit1.JSName +'.setValue(MD5('+ UnimEdit1.JSName +'.getValue()))}'); end;
thank Sherzod,That's what I want.
-
The result of PC is what I want.
-
-
5 hours ago, Sherzod said:
Hello,
Can you please clarify your question again? What's problem?
Debugging found unisession. Addjs ('alert ((document. Getelementsbyname ("'+ user_ Password. Jsname + ') [0]. Value))) Displayed value and FpKey:=user_password.text Obtained values are not the same
1.90.0.1550 bin\hyper_server.exe is 1.90.0.1549
in General
Posted
thank