Introduction
This article shows how to convert a plain password to a hashed password using the MD5 algorithm on the client side and save it to the database.
For the demonstration, I will do:
- Create a table in the database to store the login credentials of the user.
- Create a website and add a MD5 conversion file of JavaScript.
- Add a page in the website with 2 textboxes for User ID and Password and save button.
- Add a reference of the MD5 conversion file on the page and create a JavaScript function to convert the plain password to the hashed password.
- Add the code on the page load for adding JavaScript function via an attribute add of the save button and on the button click event save the data.
Step 1
Create a table named "LoginTable" in the database to store the login credentials of the user.
- create table LoginTable
- (
- UserID varchar(10) primary key,
- pwd varchar(50)
- )
![SQL Query]()
Step 2
Create a website and add a MD5 conversion file of JavaScript.
- Create an empty website named "LoginCredentials".
![Creating ASP.Net WebSite]()
- Add a new folder in the root and name it "Scripts". Add the "md5.js" into the "Scripts" folder.
Note: You can find the "md5.js" in the attached file.
![Adding js File]()
Step 3
Add a page in the website with 2 textboxes for User ID and Password and save button.
- Add a page named "SaveData.aspx".
![Adding WebForm]()
- Add some controls on the page like:
- Text box for user id named "txtUserID".
- Text box for password named "txtpwd" with TextMode="Password".
- Button for save the data named "btn_save" with "onclick" event.
![Design View of WebForm]()
Step 4
Add a reference of the MD5 conversion file on the page and create a JavaScript function to convert the plain password to the hashed password.
- Add the reference of the MD5 conversion file on the page.
- <script src="Scripts/md5.js"></script>
- Create a JavaScript function to convert the plain password to the hashed password in the "head" section of the page.
- <script type="text/javascript">
- function GeneratePwd() {
- if (document.getElementById("txtpwd").value != "") {
- document.getElementById("txtpwd").value = hex_md5(document.getElementById("txtpwd").value);
- }
- }
- </script>
Note: The "hex_md5" function exists in the "md5.js" file.
![]()
Step 5
Add the code on the page load for adding JavaScript function via an attribute add of the save button and on the button click event to save the data.
- Add the JavaScript function via an attribute add of the save button.
- protected void Page_Load(object sender, EventArgs e)
- {
- if (!IsPostBack)
- {
-
-
- btn_Save.Attributes.Add("onclick", "return GeneratePwd();");
- }
- }
- Save the data into the database on the save button click event.
- protected void btn_Save_Click(object sender, EventArgs e)
- {
- if (txtUserID.Text != "" && txtpwd.Text != "")
- {
-
- using (SqlConnection connection = new SqlConnection())
- {
- connection.ConnectionString = ConfigurationManager.ConnectionStrings["constr"].ToString();
- connection.Open();
- SqlCommand cmd = new SqlCommand();
- cmd.Connection = connection;
- string commandText = "Insert into LoginTable values ('" + txtUserID.Text + "','" + txtpwd.Text + "')";
- cmd.CommandText = commandText;
- cmd.CommandType = CommandType.Text;
- cmd.ExecuteNonQuery();
- cmd.Dispose();
- connection.Close();
- Response.Write("Data has been Added");
- }
- }
- }
At Run Time: After running the page, type the user id and password.
![Calling WebForm in Browser]()
Note: Here User ID is "Admin" and password is "abcd1234".
Result: Now the output in the database is as you can see.
![SQL View]()