|
|
|
|
|
|
by joshka
1810 days ago
|
|
|
I'm a dev not an admin. Change your password query from something like (pseudo code) SELECT username, ... FROM applications WHERE username = ? AND password = MD5(?)
to SELECT username + ' ' + applicationName FROM ... (as above)
Then log the user name for each session, or return an extra field that is the app name when doing a password check (assumes your MX can do this). This is the general idea, and it's more pointing out why the advice is wrong, than talking about how to fix it and make it possible. |
|
|