Password

Lets the user enter a password in a single-line textbox.

The characters entered will be represented as '*' in the textbox to prevent it from being seen by unintended spectators.

IMPORTANT: Using a password control is only one small piece of keeping passwords secure. It only prevents the password from being displayed on the screen. It does not protect the traffic to and from the server, nor does it ensure the password is stored in a secure way.

Start value: Start value
Return value: Entered value
Supported in: NewEdit Multirow

Appearance

alt text

Automatic hashing and encryption

Automatic password hashing

If you're using the Password control for updating user passwords, you can enable automatic password hashing directly through the control. This not only provides faster hashing compared to the database but is also the sole method for hashing passwords in a cloud environment since SoftadminUtil.Password_Hash is not supported in the Cloud edition.

To set this up, configure the Transform password control setting to Hash, and your InsertUpdate procedure will receive a precomputed password hash alongside the plain-text password.

EXEC SoftadminApi.User_UpdatePassword
	@UserId = @UserId,
	@Password = @Password,
	@PasswordHash = @PasswordHash,
	...

Credential encryption

The credential security model is structured to ensure that, even though credentials are stored in the database, the encryption keys are exclusively held by the web server. Consequently, credentials need to be encrypted by the Password control.

To implement this, configure the Transform password control setting to Encrypt as credentials, and your InsertUpdate procedure will receive the password in an encrypted format.

EXEC SoftadminApi.Credentials_UpdateAccount
	@CredentialsId = @CredentialsId,
	@AccountName = @AccountName,
	@AccountPasswordEncrypted = @Password,
	...

Default value

SQL Call: Default value

Retrieves the default value for the control.

May modify database: No

Resultset: Default value

Table count: repeated exactly once
Row count: exactly one row
Columns
<column with ordinal 1> mandatory string
The default value

Validation

SQL Call: Validation

This call is only made if there is a field validation set for the field info and the field has any content. Fields used in an editable grid do not use this call.

Live Validation

Performs field validation when the user leaves the field or one of its dependencies is changed, initial values set by default value and initial values in edit-mode are not validated.

Save Validation

When saving the validation runs server side if the field value has changed. A field value is considered changed if in new mode the value is anything other than NULL. In edit mode it is considered changed if it has a value that was not returned by the GetEditFields procedure.

May modify database: No

Parameters

@Value string
The value of the field, the procedure will not be called if value is NULL.

Resultset: Validation messages (optional)

Table count: repeated zero or one time
Row count: zero or one row
Columns
Error optional string
Error message to display. Blocks the user from saving.
Info optional string
Informative message to display. Does not block saving.
Warning optional string
Warning message to display. Does not block saving.