Extending PC Login Security to External Website

Message Topic Search Topic Options Post Reply Create New Topic Printable Version Translate Topic

   In the 15 years I've been building online stores, I can't count how many times merchants expect that lots of other merchants would have the same particular business rules for highly idiosyncratic scenarios such as their own ... and how rarely it is actually true. 

I, however, can count how many times something like this has been requested of us -- not once. I know Greg's been at this for a good long time too -- over a decade we've known each other -- and I wouldn't be surprised if he's had as many requests for such a thing as we have had.
If the external site is scripted in classic ASP as well, then the JavaScript layer wouldn't be necessary and it could be a little simpler to do, but I think the basic idea of creating a custom script file within the store to pick up the login credentials, parse the password through the RC4 encryption and then return a result via XMLHTTP would be the way to go. An experienced programmer such as Greg or myself could easily bang that bit out within a half hour or so.

Once the result of that is passed back to your external site, it should be very simple for your developer to handle the rest on that site.

Author	Message Topic Search Topic Options Post Reply Create New Topic Printable Version Translate Topic
Guests Members Profile Send Private Message Find Members Posts Add to Buddy List Guest	Post Options Post Reply Quote Guests Thanks(0) Quote Reply Posted: 04-January-2013 at 10:44pm
	In the 15 years I've been building online stores, I can't count how many times merchants expect that lots of other merchants would have the same particular business rules for highly idiosyncratic scenarios such as their own ... and how rarely it is actually true. I, however, can count how many times something like this has been requested of us -- not once. I know Greg's been at this for a good long time too -- over a decade we've known each other -- and I wouldn't be surprised if he's had as many requests for such a thing as we have had. If the external site is scripted in classic ASP as well, then the JavaScript layer wouldn't be necessary and it could be a little simpler to do, but I think the basic idea of creating a custom script file within the store to pick up the login credentials, parse the password through the RC4 encryption and then return a result via XMLHTTP would be the way to go. An experienced programmer such as Greg or myself could easily bang that bit out within a half hour or so. Once the result of that is passed back to your external site, it should be very simple for your developer to handle the rest on that site.