Security Xamarin Registration/Login

Hey, so in my app, user has to login by sending his credidentials to ours web service.
We will store hashed passwords on our server, but what is best way to send login data, it should be sent hashed or just a plain string using POST method?
Service is built using PHP.

Does anyone knows best practice used in Xamarin for secure Registration/login?

thx! :-)

Best Answer

Answers

  • kotetotemkotetotem Member ✭✭

    @Mabrouk said:
    Hey @kotetotem

    Sure it should be hashed or crypted and also it should be saved in the batabase as a HASH not a clear value.

    Regards,
    Mabrouk

    Hey, thx for answer.

    Hm, but when I send REG/LOGIN RQ to the server from mobile, should I send it hashed or?
    And should I save hash code localy in ombile app?

    thx

  • MabroukMabrouk USMember ✭✭✭

    Yes you send hashed value and in the server you can check PASSWORD with comparing the hashed values (Case of login).

    In the mobile, if you want to have the 1-time-login sure you need to save locally your login data.

    You can use my Package : https://www.nuget.org/packages/AutoLogin.Mabrouk/

    I hope that helps,
    Mabrouk

  • kotetotemkotetotem Member ✭✭

    @Mabrouk said:
    Yes you send hashed value and in the server you can check PASSWORD with comparing the hashed values (Case of login).

    In the mobile, if you want to have the 1-time-login sure you need to save locally your login data.

    You can use my Package : https://www.nuget.org/packages/AutoLogin.Mabrouk/

    I hope that helps,
    Mabrouk

    Thx for answer, I will check it out! :-)

    But I want my user to log in every time he wants to use app (if he logouted first).

Sign In or Register to comment.