Password Options

So... I've never liked the fact that System.DirectoryServices requires you provide passwords in plain-text any time you need it. While AD-RestAPI requires you to Base64-encode passwords that are supplied in JSON request bodies, don't mistake this for encryption!

I came up with a way (while not a 100% solution) to provide the capability of using certificate-based encryption when doing any of the password operations (changing, resetting, etc.).

Certificate Encryption

You're no doubt aware that websites (such as GitHub) use certificate encryption (SSL) in order to encrypt traffic between your browser and the web server. While I absolutely suggest you use AD-RestAPI with SSL, I wanted to give the text in the request a little extra security padding.

Using a something similar, I've programmed the ability to:

Encrypt passwords with "certificates"
Send the encrypted base64 to the API
Have the API be able to decrypt the string.

That way, not only is the tunnel between the requester and the API secure, but the sensitive portions of the body are as well.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Password Options

Certificate Encryption

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Clone this wiki locally