4,815 questions
The login page (as should the whole site) needs to use ssl (https) to be secure. The password is hashed in the database and the cookie is encrypted.
ASP.Net Core Identity : Credential Obfuscation
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(224.00000000000003, 24%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDL%3C/text%3E%3C/svg%3E)
Dan Lee
0
Reputation points
I am new to ASP.Net Core Identity and new to Encryption.
I followed the article @ https://learn.microsoft.com/en-us/aspnet/core/security/authentication/identity?view=aspnetcore-6.0&tabs=visual-studio
I created a new Web App using ASP.NET Core Web App template. with Authentication type as Individual User Accounts.
After the project is created, i ran Update-Database
I then Ran the app and registered a new user with following details
Input.Email: ******@somedomain.com
Input.Password: Hello@2023
Input.ConfirmPassword: Hello@2023
When i click Register in the form ""Create new Account", I see that email and password is sent as plain text without an encryption. Observed this @ Payload section of Network tab in chrome.
Question : Do i need to write code to do client-side encryption OR need to setup some configuration so that encryption is done without writing any code.
Developer technologies ASP.NET ASP.NET Core
{count} votes
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 8%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
Anonymous2023-09-22T06:53:19.2466667+00:00 Hi,
According to the article's codes, it generated a codes and use it as the Email link to send to the user, it will not use user name and password. Could you please share your register codes?
Sign in to comment
1 answer
Sort by: Most helpful
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(211.20000000000002, 61%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EBS%3C/text%3E%3C/svg%3E)
Bruce (SqlWork.com) 77,686 Reputation points Volunteer Moderator2023-09-22T15:23:16.12+00:00