Django: searching on an EncryptedCharField (django-extensions), is this possible? -


is possible?

for model encryptedcharfield named "first_name" notice field not decrypt when search on it. in other uses fine. not work:

if form.is_valid():     cd = form.cleaned_data     search_results = mytable.objects.filter(first_name__icontains=cd['search_term'])

is design or doing wrong? help...

encrypting search term first, if exact decrypted value, not work cipher not going same 1 stored in db. not work:

crypter = crypter.read(settings.encrypted_field_keys_dir) if form.is_valid():     cd = form.cleaned_data     cipher = crypter.encrypt(cd['search_term'])     search_results = mytable.objects.filter(first_name__icontains=cipher)

when encrypted (or @ least, when done properly), impossible gain value has been encrypted, without knowing value. means while can check value of password quickly, user has given value of password, hard find out value of password encrypted string. part of p=np topic.

when search via mytable.objects.filter(first_name=cipher), comparing encrypted strings, fine. however, when try mytable.objects.filter(first_name_icontains=cipher), asking django unencrypt of values, compare them, return matches. however, django cannot that, no 1 knows value of decrypted first_name field is. design, means if database compromised, data safe (it why should beware website or organisation show password, means have not encrypted value in database). overall, not being able see users password thing, , if not agree, small price pay security.


Comments

Post a Comment

Popular posts from this blog

asp.net - repeatedly call AddImageUrl(url) to assemble pdf document -

i'm using abcpdf , i'm curious if can recursively call addimageurl() function assemble pdf document compile multiple urls? something like: int pagecount = 0; int theid = thedoc.addimageurl("http://stackoverflow.com/search?q=abcpdf+footer+page+x+out+of+", true, 0, true); //assemble document while (thedoc.chainable(theid)) { thedoc.page = thedoc.addpage(); theid = thedoc.addimagetochain(theid); } pagecount = thedoc.pagecount; console.writeline("1 document page count:" + pagecount); //flatten document (int = 1; <= pagecount; i++) { thedoc.pagenumber = i; thedoc.flatten(); } //now try again theid = thedoc.addimageurl("http://stackoverflow.com/questions/1980890/pdf-report-generation", true, 0, true); //assemble document while (thedoc.chainable(theid)) { thedoc.page = thedoc.addpage(); theid = thedoc.addimagetoc
Read more

java - Android recognize cell phone with keyboard or not? -

in android app, want detect user's device if device has keyboard(like motorola milestone) , show corresponding user interface. guys know how that? ! regards justicepenny http://developer.android.com/reference/android/content/res/configuration.html public int keyboard the kind of keyboard attached device. 1 of: keyboard_nokeys, keyboard_qwerty, keyboard_12key. that's it!
Read more

iphone - How would you achieve a LED Scrolling effect? -

how achieve led scrolling effect example below? led sign - led ticker emulator iphone , ipad http://img.skitch.com/20101201-rsfh4p1bajb1wp94k466pdpiuj.preview.jpg sometimes remunerates comment in other posts :) have put code you, should implement font '8pin matrix' realistic feeling. uilabel *label; - (void)viewdidload { [super viewdidload]; label = [[uilabel alloc]initwithframe:cgrectmake(10, 50, 300, 20)]; label.font = [uifont fontwithname:@"courier-bold" size:16.0]; label.backgroundcolor = [uicolor blackcolor]; label.textcolor = [uicolor greencolor]; label.linebreakmode = uilinebreakmodecharacterwrap; // otherwise "…" label.text = @"this led text scrolled "; // blanks space between [self.view addsubview:label]; [nstimer scheduledtimerwithtimeinterval:0.12f target:self selector:@selector(scrolllabel) use
Read more