SQL-based authentication: Difference between revisions

← Older edit

SQL-based authentication (view source)

Revision as of 15:57, 9 February 2024

15,542 bytes added , 3 months ago

m

→‎{{header|Wren}}: Changed to Wren S/H

PureFox

9,476

edits

Revision as of 21:06, 13 April 2021 (view source) rosettacode>Lscrd (→‎{{header\|Nim}}) ← Older edit		Latest revision as of 15:57, 9 February 2024 (view source) PureFox (talk \| contribs) m (→‎{{header\|Wren}}: Changed to Wren S/H)
(4 intermediate revisions by 4 users not shown)
Line 7: This is the table definition: <~~lang~~syntaxhighlight lang="sql">create table users ( userid int primary key auto_increment, username varchar(32) unique key not null, Line 14: pass_md5 tinyblob not null -- binary MD5 hash of pass_salt concatenated with the password );</~~lang~~syntaxhighlight> (<tt>pass_salt</tt> and <tt>pass_md5</tt> would be <tt>binary(16)</tt> values, but MySQL versions before 5.0.15 strip trailing spaces when selecting them.) Line 20: {{libheader\|mysqlclient}} (MySQL client library) {{libheader\|OpenSSL}} (for MD5) <~~lang~~syntaxhighlight lang="c">#include <stdio.h> #include <stdlib.h> #include <string.h> Line 193: } return EXIT_SUCCESS; }</~~lang~~syntaxhighlight> From the command line, <tt>program add user password</tt> to add users, and <tt>program auth user password</tt> to see if the user with that password is authorized or not. Line 199: =={{header\|C sharp\|C#}}== Class for hashing and random salt generation. <~~lang~~syntaxhighlight lang="csharp">using System.Security.Cryptography; using System.Text; Line 236: } } }</~~lang~~syntaxhighlight> Class for creating and authenticating users. <~~lang~~syntaxhighlight lang="csharp">using MySql.Data.MySqlClient; namespace rosettaMySQL Line 302: } } }</~~lang~~syntaxhighlight> Class with main method and database connection method. <~~lang~~syntaxhighlight lang="csharp">using System; using MySql.Data.MySqlClient; Line 356: } } }</~~lang~~syntaxhighlight> Output <pre>Bob has been created: True Line 364: =={{header\|Go}}== <~~lang~~syntaxhighlight lang="go">package main import ( Line 442: // clear table to run program again db.Exec(`truncate table users`) }</~~lang~~syntaxhighlight> {{out}} <pre> Line 455: =={{header\|Java}}== {{works with\|Java\|1.7}} <~~lang~~syntaxhighlight lang="java">import java.io.UnsupportedEncodingException; import java.sql.Connection; import java.sql.DriverManager; Line 596: } } }</~~lang~~syntaxhighlight> =={{header\|Julia}}== <~~lang~~syntaxhighlight lang="julia"> using MySQL using Nettle # for md5 Line 648: println("""Mary does not authenticate with password of 123: $(authenticate_user(mydb, "Mary", "123")==false)""") mysql_disconnect(mydb) </syntaxhighlight> ~~</lang>~~ =={{header\|Kotlin}}== {{trans\|Java}} <~~lang~~syntaxhighlight lang="scala">// Version 1.2.41 import java.sql.Connection Line 752: } } }</~~lang~~syntaxhighlight> =={{header\|Mathematica}}/{{header\|Wolfram Language}}== {{libheader\|DatabaseLink`}} <~~lang~~syntaxhighlight ~~Mathematica~~lang="mathematica">Needs["DatabaseLink`"]; connectDb[dbUser_, dbPass_, dbUrl_] := OpenSQLConnection[JDBC["mysql", dbUrl], "Username" -> dbUser, Line 779: SQLColumn["username"] == user][[1]]}, Hash[FromCharacterCode[data[[2, 1]]] <> pass, "MD5"] == FromDigits[data[[3, 1]], 256]]; CloseSQLConnection[db]; rtn];</~~lang~~syntaxhighlight> =={{header\|Nim}}== Line 785: Even if this program is only an example, we have chosen to generate the salt using the random number generator provided by the third-party module “nimcrypto” rather than using the PRNG from the standard module “random” which is totally inadequate for cryptographic usage. <~~lang~~syntaxhighlight ~~Nim~~lang="nim">import db_mysql, nimcrypto, md5, strutils proc connectDb(user, password: string): DbConn = Line 850: # Clean-up and close. db.clean() db.close()</~~lang~~syntaxhighlight> {{out}} Line 858: =={{header\|Objeck}}== <~~lang~~syntaxhighlight lang="objeck">use ODBC; use Encryption; Line 961: return true; } }</~~lang~~syntaxhighlight> =={{header\|Perl}}== Line 967: {{libheader\|DBI}}<br> {{libheader\|DBD::mysql}} <~~lang~~syntaxhighlight lang="perl">use DBI; # returns a database handle configured to throw an exception on query errors Line 996: undef, $user, $pass); $userid }</~~lang~~syntaxhighlight> =={{header\|Phix}}== Uses SQLite, there is a MySQL wrapper in [http://phix.x10.mx/pmwiki/pmwiki.php PCAN] that I have not personally tried yet.<br> Uses code from [[MD5/Implementation#Phix\|MD5]], now modified to be an executable library. <!--<syntaxhighlight lang="phix">(notonline)--> ~~<lang Phix>-- demo/rosetta/SQL-based_authentication.exw~~ <span style="color: #000080;font-style:italic;">-- demo\rosetta\SQL-based_authentication.exw</span> ~~include pSQLite.e~~ <span style="color: #008080;">without</span> <span style="color: #008080;">js</span> <span style="color: #000080;font-style:italic;">-- (file i/o)</span> ~~include md5.exw~~ <span style="color: #008080;">include</span> <span style="color: #000000;">pSQLite</span><span style="color: #0000FF;">.</span><span style="color: #000000;">e</span> <span style="color: #008080;">include</span> <span style="color: #000000;">md5</span><span style="color: #0000FF;">.</span><span style="color: #000000;">exw</span> <span style="color: #000000;">sqlite3_stmt</span> <span style="color: #000000;">pAddUser</span> <span style="color: #0000FF;">=</span> <span style="color: #004600;">NULL</span> <span style="color: #008080;">procedure</span> <span style="color: #000000;">add_user</span><span style="color: #0000FF;">(</span><span style="color: #000000;">sqlite3</span> <span style="color: #000000;">db</span><span style="color: #0000FF;">,</span> <span style="color: #004080;">string</span> <span style="color: #000000;">name</span><span style="color: #0000FF;">,</span> <span style="color: #000000;">pw</span><span style="color: #0000FF;">)</span> ~~sqlite3_stmt pAddUser = NULL~~ <span style="color: #008080;">if</span> <span style="color: #000000;">pAddUser</span><span style="color: #0000FF;">=</span><span style="color: #004600;">NULL</span> <span style="color: #008080;">then</span> <span style="color: #000000;">pAddUser</span> <span style="color: #0000FF;">=</span> <span style="color: #000000;">sqlite3_prepare</span><span style="color: #0000FF;">(</span><span style="color: #000000;">db</span><span style="color: #0000FF;">,</span><span style="color: #008000;">"INSERT INTO users (username,pass_salt,pass_md5) VALUES(:name, :salt, :md5);"</span><span style="color: #0000FF;">)</span> ~~procedure add_user(sqlite3 db, string name, pw)~~ <span style="color: #008080;">end</span> <span style="color: #008080;">if</span> ~~if pAddUser=NULL then~~ <span style="color: #004080;">string</span> <span style="color: #000000;">salt</span> <span style="color: #0000FF;">=</span> <span style="color: #7060A8;">sq_rand</span><span style="color: #0000FF;">(</span><span style="color: #7060A8;">repeat</span><span style="color: #0000FF;">(</span><span style="color: #000000;">#FF</span><span style="color: #0000FF;">,</span><span style="color: #000000;">16</span><span style="color: #0000FF;">)),</span> ~~pAddUser = sqlite3_prepare(db,"INSERT INTO users (username,pass_salt,pass_md5) VALUES(:name, :salt, :md5);")~~ <span style="color: #000000;">md5s</span> <span style="color: #0000FF;">=</span> <span style="color: #000000;">md5</span><span style="color: #0000FF;">(</span><span style="color: #000000;">salt</span><span style="color: #0000FF;">&</span><span style="color: #000000;">pw</span><span style="color: #0000FF;">)</span> ~~end if~~ <span style="color: #000000;">sqlite3_bind_text</span><span style="color: #0000FF;">(</span><span style="color: #000000;">pAddUser</span><span style="color: #0000FF;">,</span><span style="color: #008000;">":name"</span><span style="color: #0000FF;">,</span> <span style="color: #000000;">name</span><span style="color: #0000FF;">)</span> ~~string salt = sq_rand(repeat(#FF,16)),~~ <span style="color: #000000;">sqlite3_bind_text</span><span style="color: #0000FF;">(</span><span style="color: #000000;">pAddUser</span><span style="color: #0000FF;">,</span><span style="color: #008000;">":salt"</span><span style="color: #0000FF;">,</span> <span style="color: #000000;">salt</span><span style="color: #0000FF;">)</span> ~~md5s = md5(salt&pw)~~ <span style="color: #000000;">sqlite3_bind_text</span><span style="color: #0000FF;">(</span><span style="color: #000000;">pAddUser</span><span style="color: #0000FF;">,</span><span style="color: #008000;">":md5"</span><span style="color: #0000FF;">,</span> <span style="color: #000000;">md5s</span><span style="color: #0000FF;">)</span> ~~sqlite3_bind_text(pAddUser,":name", name)~~ <span style="color: #0000FF;">{}</span> <span style="color: #0000FF;">=</span> <span style="color: #000000;">sqlite3_step</span><span style="color: #0000FF;">(</span><span style="color: #000000;">pAddUser</span><span style="color: #0000FF;">)</span> <span style="color: #000080;font-style:italic;">-- (nb: ignores any errors.)</span> ~~sqlite3_bind_text(pAddUser,":salt", salt)~~ <span style="color: #000000;">sqlite3_reset</span><span style="color: #0000FF;">(</span><span style="color: #000000;">pAddUser</span><span style="color: #0000FF;">)</span> ~~sqlite3_bind_text(pAddUser,":md5", md5s)~~ <span style="color: #008080;">end</span> <span style="color: #008080;">procedure</span> ~~{} = sqlite3_step(pAddUser) -- (nb: ignores any errors.)~~ ~~sqlite3_reset(pAddUser)~~ <span style="color: #000000;">sqlite3_stmt</span> <span style="color: #000000;">pAuthUser</span> <span style="color: #0000FF;">=</span> <span style="color: #004600;">NULL</span> ~~end procedure~~ <span style="color: #008080;">function</span> <span style="color: #000000;">authenticate_user</span><span style="color: #0000FF;">(</span><span style="color: #000000;">sqlite3</span> <span style="color: #000000;">db</span><span style="color: #0000FF;">,</span> <span style="color: #004080;">string</span> <span style="color: #000000;">name</span><span style="color: #0000FF;">,</span> <span style="color: #000000;">pw</span><span style="color: #0000FF;">)</span> ~~sqlite3_stmt pAuthUser = NULL~~ <span style="color: #008080;">if</span> <span style="color: #000000;">pAuthUser</span><span style="color: #0000FF;">=</span><span style="color: #004600;">NULL</span> <span style="color: #008080;">then</span> <span style="color: #000000;">pAuthUser</span> <span style="color: #0000FF;">=</span> <span style="color: #000000;">sqlite3_prepare</span><span style="color: #0000FF;">(</span><span style="color: #000000;">db</span><span style="color: #0000FF;">,</span><span style="color: #008000;">"SELECT pass_salt, pass_md5 FROM users WHERE username = :name;"</span><span style="color: #0000FF;">)</span> ~~function authenticate_user(sqlite3 db, string name, pw)~~ <span style="color: #008080;">end</span> <span style="color: #008080;">if</span> ~~if pAuthUser=NULL then~~ <span style="color: #000000;">sqlite3_bind_text</span><span style="color: #0000FF;">(</span><span style="color: #000000;">pAuthUser</span><span style="color: #0000FF;">,</span><span style="color: #008000;">":name"</span><span style="color: #0000FF;">,</span> <span style="color: #000000;">name</span><span style="color: #0000FF;">)</span> ~~pAuthUser = sqlite3_prepare(db,"SELECT pass_salt, pass_md5 FROM users WHERE username = :name;")~~ <span style="color: #004080;">integer</span> <span style="color: #000000;">res</span> <span style="color: #0000FF;">=</span> <span style="color: #000000;">sqlite3_step</span><span style="color: #0000FF;">(</span><span style="color: #000000;">pAuthUser</span><span style="color: #0000FF;">)</span> ~~end if~~ <span style="color: #008080;">if</span> <span style="color: #000000;">res</span><span style="color: #0000FF;">!=</span><span style="color: #000000;">SQLITE_ROW</span> <span style="color: #008080;">then</span> ~~sqlite3_bind_text(pAuthUser,":name", name)~~ <span style="color: #000000;">res</span> <span style="color: #0000FF;">=</span> <span style="color: #004600;">false</span> <span style="color: #000080;font-style:italic;">-- (no such user)</span> ~~integer res = sqlite3_step(pAuthUser)~~ <span style="color: #008080;">else</span> ~~if res!=SQLITE_ROW then~~ <span style="color: #004080;">string</span> <span style="color: #000000;">salt</span> <span style="color: #0000FF;">=</span> <span style="color: #000000;">sqlite3_column_text</span><span style="color: #0000FF;">(</span><span style="color: #000000;">pAuthUser</span><span style="color: #0000FF;">,</span><span style="color: #000000;">1</span><span style="color: #0000FF;">)</span> ~~res = false -- (no such user)~~ <span style="color: #004080;">string</span> <span style="color: #000000;">pass_md5</span> <span style="color: #0000FF;">=</span> <span style="color: #000000;">sqlite3_column_text</span><span style="color: #0000FF;">(</span><span style="color: #000000;">pAuthUser</span><span style="color: #0000FF;">,</span><span style="color: #000000;">2</span><span style="color: #0000FF;">)</span> ~~else~~ <span style="color: #000000;">res</span> <span style="color: #0000FF;">=</span> <span style="color: #0000FF;">(</span><span style="color: #000000;">pass_md5</span><span style="color: #0000FF;">==</span><span style="color: #000000;">md5</span><span style="color: #0000FF;">(</span><span style="color: #000000;">salt</span><span style="color: #0000FF;">&</span><span style="color: #000000;">pw</span><span style="color: #0000FF;">))</span> ~~string salt = sqlite3_column_text(pAuthUser,1)~~ <span style="color: #008080;">end</span> <span style="color: #008080;">if</span> ~~string pass_md5 = sqlite3_column_text(pAuthUser,2)~~ <span style="color: #000000;">sqlite3_reset</span><span style="color: #0000FF;">(</span><span style="color: #000000;">pAuthUser</span><span style="color: #0000FF;">)</span> ~~res = (pass_md5==md5(salt&pw))~~ <span style="color: #008080;">return</span> <span style="color: #000000;">res</span> ~~end if~~ <span style="color: #008080;">end</span> <span style="color: #008080;">function</span> ~~sqlite3_reset(pAuthUser)~~ ~~return res~~ <span style="color: #008080;">constant</span> <span style="color: #000000;">create_cmd</span> <span style="color: #0000FF;">=</span> <span style="color: #008000;">""" ~~end function~~ CREATE TABLE IF NOT EXISTS users( userid INTEGER PRIMARY KEY AUTOINCREMENT, ~~constant create_cmd = """~~ username VARCHAR(32) UNIQUE NOT NULL, ~~CREATE TABLE IF NOT EXISTS users(~~ pass_salt tinyblob, ~~userid INTEGER PRIMARY KEY AUTOINCREMENT,~~ -- a string of 16 random bytes ~~username VARCHAR(32) UNIQUE NOT NULL,~~ ~~pass_salt~~ pass_md5 tinyblob,); -- abinary ~~string~~MD5 hash of 16pass_salt concatenated with ~~random~~the ~~bytes~~password """</span> ~~pass_md5 tinyblob);~~ ~~-- binary MD5 hash of pass_salt concatenated with the password~~ <span style="color: #008080;">procedure</span> <span style="color: #000000;">main</span><span style="color: #0000FF;">()</span> ~~"""~~ <span style="color: #004080;">sequence</span> <span style="color: #000000;">sqlversion</span> <span style="color: #0000FF;">=</span> <span style="color: #000000;">sqlite3_libversion</span><span style="color: #0000FF;">(</span><span style="color: #004600;">true</span><span style="color: #0000FF;">)</span> <span style="color: #008080;">if</span> <span style="color: #000000;">sqlversion</span><span style="color: #0000FF;"><{</span><span style="color: #000000;">3</span><span style="color: #0000FF;">,</span><span style="color: #000000;">3</span><span style="color: #0000FF;">,</span><span style="color: #000000;">0</span><span style="color: #0000FF;">}</span> <span style="color: #008080;">then</span> ~~procedure main()~~ <span style="color: #7060A8;">crash</span><span style="color: #0000FF;">(</span><span style="color: #008000;">"a newer sqlite.dll/so is required (for IF NOT EXISTS)"</span><span style="color: #0000FF;">)</span> ~~sequence sqlversion = sqlite3_libversion(true)~~ <span style="color: #008080;">end</span> <span style="color: #008080;">if</span> ~~if sqlversion<{3,3,0} then~~ <span style="color: #000000;">sqlite3</span> <span style="color: #000000;">db</span> <span style="color: #0000FF;">=</span> <span style="color: #000000;">sqlite3_open</span><span style="color: #0000FF;">(</span><span style="color: #008000;">"users.sqlite"</span><span style="color: #0000FF;">)</span> ~~crash("a newer sqlite.dll/so is required (for IF NOT EXISTS)")~~ <span style="color: #004080;">integer</span> <span style="color: #000000;">res</span> <span style="color: #0000FF;">=</span> <span style="color: #000000;">sqlite3_exec</span><span style="color: #0000FF;">(</span><span style="color: #000000;">db</span><span style="color: #0000FF;">,</span><span style="color: #000000;">create_cmd</span><span style="color: #0000FF;">)</span> ~~end if~~ <span style="color: #008080;">if</span> <span style="color: #000000;">res</span><span style="color: #0000FF;">!=</span><span style="color: #000000;">SQLITE_OK</span> <span style="color: #008080;">then</span> <span style="color: #0000FF;">?</span><span style="color: #000000;">9</span><span style="color: #0000FF;">/</span><span style="color: #000000;">0</span> <span style="color: #008080;">end</span> <span style="color: #008080;">if</span> ~~sqlite3 db = sqlite3_open("users.sqlite")~~ ~~integer res = sqlite3_exec(db,create_cmd)~~ <span style="color: #000000;">sqlite3_set_fatal_id</span><span style="color: #0000FF;">(</span><span style="color: #000000;">SQLITE3_NON_FATAL</span><span style="color: #0000FF;">)</span> <span style="color: #000080;font-style:italic;">-- (else trying to re-add user crashes)</span> ~~if res!=SQLITE_OK then ?9/0 end if~~ <span style="color: #000000;">add_user</span><span style="color: #0000FF;">(</span><span style="color: #000000;">db</span><span style="color: #0000FF;">,</span><span style="color: #008000;">"user"</span><span style="color: #0000FF;">,</span><span style="color: #008000;">"password"</span><span style="color: #0000FF;">)</span> <span style="color: #7060A8;">printf</span><span style="color: #0000FF;">(</span><span style="color: #000000;">1</span><span style="color: #0000FF;">,</span><span style="color: #008000;">"user with correct password:%t\n"</span><span style="color: #0000FF;">,</span><span style="color: #000000;">authenticate_user</span><span style="color: #0000FF;">(</span><span style="color: #000000;">db</span><span style="color: #0000FF;">,</span> <span style="color: #008000;">"user"</span><span style="color: #0000FF;">,</span> <span style="color: #008000;">"password"</span><span style="color: #0000FF;">))</span> ~~sqlite3_set_fatal_id(SQLITE3_NON_FATAL) -- (else trying to re-add user crashes)~~ <span style="color: #7060A8;">printf</span><span style="color: #0000FF;">(</span><span style="color: #000000;">1</span><span style="color: #0000FF;">,</span><span style="color: #008000;">"user with incorrect password:%t\n"</span><span style="color: #0000FF;">,</span><span style="color: #000000;">authenticate_user</span><span style="color: #0000FF;">(</span><span style="color: #000000;">db</span><span style="color: #0000FF;">,</span> <span style="color: #008000;">"user"</span><span style="color: #0000FF;">,</span> <span style="color: #008000;">"wrong"</span><span style="color: #0000FF;">))</span> ~~add_user(db,"user","password")~~ ~~printf(1,"user with correct password:%t\n",authenticate_user(db, "user", "password"))~~ <span style="color: #008080;">if</span> <span style="color: #000000;">pAddUser</span><span style="color: #0000FF;">!=</span><span style="color: #004600;">NULL</span> <span style="color: #008080;">then</span> ~~printf(1,"user with incorrect password:%t\n",authenticate_user(db, "user", "wrong"))~~ <span style="color: #008080;">if</span> <span style="color: #000000;">sqlite3_finalize</span><span style="color: #0000FF;">(</span><span style="color: #000000;">pAddUser</span><span style="color: #0000FF;">)!=</span><span style="color: #000000;">SQLITE_OK</span> <span style="color: #008080;">then</span> <span style="color: #0000FF;">?</span><span style="color: #000000;">9</span><span style="color: #0000FF;">/</span><span style="color: #000000;">0</span> <span style="color: #008080;">end</span> <span style="color: #008080;">if</span> <span style="color: #008080;">end</span> <span style="color: #008080;">if</span> ~~if pAddUser!=NULL then~~ <span style="color: #008080;">if</span> <span style="color: #000000;">pAuthUser</span><span style="color: #0000FF;">!=</span><span style="color: #004600;">NULL</span> <span style="color: #008080;">then</span> ~~if sqlite3_finalize(pAddUser)!=SQLITE_OK then ?9/0 end if~~ <span style="color: #008080;">if</span> <span style="color: #000000;">sqlite3_finalize</span><span style="color: #0000FF;">(</span><span style="color: #000000;">pAuthUser</span><span style="color: #0000FF;">)!=</span><span style="color: #000000;">SQLITE_OK</span> <span style="color: #008080;">then</span> <span style="color: #0000FF;">?</span><span style="color: #000000;">9</span><span style="color: #0000FF;">/</span><span style="color: #000000;">0</span> <span style="color: #008080;">end</span> <span style="color: #008080;">if</span> ~~end if~~ <span style="color: #008080;">end</span> <span style="color: #008080;">if</span> ~~if pAuthUser!=NULL then~~ <span style="color: #000000;">sqlite3_close</span><span style="color: #0000FF;">(</span><span style="color: #000000;">db</span><span style="color: #0000FF;">)</span> ~~if sqlite3_finalize(pAuthUser)!=SQLITE_OK then ?9/0 end if~~ <span style="color: #0000FF;">?</span><span style="color: #008000;">"done"</span> ~~end if~~ <span style="color: #0000FF;">{}</span> <span style="color: #0000FF;">=</span> <span style="color: #7060A8;">wait_key</span><span style="color: #0000FF;">()</span> ~~sqlite3_close(db)~~ <span style="color: #008080;">end</span> <span style="color: #008080;">procedure</span> ~~?"done"~~ <span style="color: #000000;">main</span><span style="color: #0000FF;">()</span> ~~{} = wait_key()~~ <!--</syntaxhighlight>--> ~~end procedure~~ ~~main()</lang>~~ {{out}} <pre> Line 1,082 ⟶ 1,085: =={{header\|PHP}}== To use MySQL in PHP you need the php_mysql module installed <~~lang~~syntaxhighlight lang="php"> function connect_db($database, $db_user, $db_password, $host = 'localhost', $port = NULL, $die = false) { // Returns a MySQL link identifier (handle) on success Line 1,152 ⟶ 1,155: return $row['userid']; } </syntaxhighlight> ~~</lang>~~ =={{header\|Python}}== {{works with\|Python\|2.7}} Uses the [http://dev.mysql.com/downloads/connector/python/ official Python MySQL connector] <~~lang~~syntaxhighlight lang="python">import mysql.connector import hashlib Line 1,239 ⟶ 1,242: else: print 'User %s failed' % user </syntaxhighlight> ~~</lang>~~ =={{header\|Racket}}== <~~lang~~syntaxhighlight lang="racket">#lang racket (require db file/md5) (define-logger authentication) Line 1,307 ⟶ 1,310: (check-false (create-user test-DB #"tim" #"tim's password")) (check-exn exn:fail? (λ () (authenticate-user test-DB #"tim" #"password"))) (check-true (authenticate-user test-DB #"tim" #"shh! it's a secret!")))</~~lang~~syntaxhighlight> =={{header\|Raku}}== (formerly Perl 6) {{trans\|Perl}} <syntaxhighlight lang="raku" line> ~~<lang perl6>~~ use v6; use DBIish; Line 1,341 ⟶ 1,344: my $userid = $sth.fetch; $userid[0] or Any; }</~~lang~~syntaxhighlight> =={{header\|Raven}}== MySQL connectivity is available out of the box. Below, we do not ever send the plain text password over the wire. <~~lang~~syntaxhighlight lang="raven"> 'mysql://root@localhost/test' open as mysql 'abcdefghijklmnopqrstuvwxyz0123456789' as $salt_chars Line 1,376 ⟶ 1,379: 'foo' 'bar' authenticate_user !if "could not authenticate user\n" print bye "user successfully created and authenticated!\n" print</~~lang~~syntaxhighlight> =={{header\|Ruby}}== Uses the [https://github.com/brianmario/mysql2 mysql2 gem] <~~lang~~syntaxhighlight lang="ruby">require 'mysql2' require 'securerandom' require 'digest' Line 1,409 ⟶ 1,412: password_md5 = Digest::MD5.hexdigest(user_record['pass_salt'] + password) password_md5 == user_record['pass_md5'] end</~~lang~~syntaxhighlight> =={{header\|Sidef}}== {{trans\|Perl}} <~~lang~~syntaxhighlight lang="ruby">require('DBI') # returns a database handle configured to throw an exception on query errors Line 1,439 ⟶ 1,442: nil, user, pass ) }</~~lang~~syntaxhighlight> =={{header\|Tcl}}== {{works with\|Tcl\|8.6}} Also requires the TDBC driver for MySQL. <~~lang~~syntaxhighlight ~~Tcl~~lang="tcl">package require tdbc proc connect_db {handleName dbname host user pass} { Line 1,479 ⟶ 1,482: # Only get here if no rows selected error "authentication failed for user \"$user\"" }</~~lang~~syntaxhighlight> =={{header\|Wren}}== {{trans\|Phix}} {{libheader\|Wren-sql}} {{libheader\|Wren-crypto}} As we don't have a MySQL wrapper (and it's hardly worth the effort of writing one specifically for this task), I've used our SQLite wrapper instead. SQLite can emulate SQL types used in other dialects even though it's native type system is quite simple. Not an exact 'phiximile' but follows the same lines. <syntaxhighlight lang="wren">import "./sql" for Sql, Connection import "./crypto" for Md5 var addUser = Fn.new { \|db, name, pw\| var sql = "INSERT OR IGNORE INTO users (username,pass_salt,pass_md5) VALUES(?, ?, ?)" var stmt = db.prepare(sql) var salt = Sql.randomness(16) var md5s = Md5.digest(salt + pw) stmt.bindText(1, name) stmt.bindText(2, salt) stmt.bindText(3, md5s) stmt.step() } var authenticateUser = Fn.new { \|db, name, pw\| var sql = "SELECT pass_salt, pass_md5 FROM users WHERE username = ?" var stmt = db.prepare(sql) stmt.bindText(1, name) var res = stmt.step() if (res != Sql.row) { res = false // no such user } else { var salt = stmt.columnText(0) var passMd5 = stmt.columnText(1) res = passMd5 == Md5.digest(salt + pw) } return res } var createSql = """ DROP TABLE IF EXISTS users; CREATE TABLE users( userid INTEGER PRIMARY KEY AUTOINCREMENT, username VARCHAR(32) UNIQUE NOT NULL, pass_salt tinyblob NOT NULL, pass_md5 tinyblob NOT NULL); """ var db = Connection.open("users.db") var res = db.exec(createSql) if (res != Sql.ok) Fiber.abort("Error creating users table.") addUser.call(db, "user", "password") System.print("User with correct password: %(authenticateUser.call(db, "user", "password"))") System.print("User with incorrect password: %(authenticateUser.call(db, "user", "wrong"))")</syntaxhighlight> {{out}} <pre> User with correct password: true User with incorrect password: false </pre> {{omit from\|Batch File\|Does not have network access.}}