locked
using a common encryption .dll RRS feed

  • Question

  • Hello,

    Followup question to:

    http://social.microsoft.com/Forums/en-US/crmdevelopment/thread/d15619a3-417b-4135-99d7-9b4a589e479f

    Our web team has various websites where we can login as a customer to see his custom website.  It would be nice for our support team to be able to link to this site and automatically log in after they have looked up the customer in CRM.

    Is it possible to use a common encryption .dll (common between CRM and our website) to pass credentials through the url in an IFRAME on a form?  If so, how would I reference the .dll in CRM?  The web team has provided me with the .dll and the parameters to pass, but I'm not sure how this would be set up on the CRM side.

    Thanks!
    gg

    Monday, February 15, 2010 4:04 PM

Answers

  • Your custom aspx page can do what ever it wants. So gather your user credentials (username/password) process the password if needed. Then build your hyperlink to the external website with the  (username/password) as querystring parameters.

    The custom aspx page in the CRM iframe would be placed under the CRMWeb\ISV folder and have windows authentication set (so the system users will always be able to access it). You can get the current executing user of the custom app or even get it from CRM during the form onload and pass it to the custom app in a query string (if you need the current user).


    You could create a new field for a customer that holds there password, possibly encrypted already. So every time you type in a password in CRM for the customer is automatically encrypts it. This depends on what your encrytion.dll is doing for you with regards to passing credentials to the website.


    Summary

    1. So it sounds like you want a user to link to an external website from within CRM while viewing an Account by clicking a hyperlink.
    2. You need to pass something in the querystring of the hyperlink address to the external website to login and direct the correct page to load. (e.g http://www.mySite.com/mysite.aspx?user=test&pwd=DFDF&productId=123455
    3. Is the external site on https?


    Note: There are many ways to get CRM to link to other websites, either by a button or this scenario regarding the IFRAME.


    Is there anything your unclear about? I read through your thread that you linked to above and there is some good information there.
    • Marked as answer by geeky girly Tuesday, February 16, 2010 10:34 PM
    Tuesday, February 16, 2010 9:27 PM
    Moderator

All replies

  • Are you thinking of just creating a custom .NET Web application that references your .dll and that displays hyperlink to your website on the aspx page. Then just embed this aspx page in your iFrame.
    Monday, February 15, 2010 4:33 PM
    Moderator
  • Hi Rhett, if I understand what you are saying, the credentials would need to pass from CRM to the custom .NET web application, and would that part be secure?

    There are two problems to solve -
    1.  Login as ourselves to another website.  This would require our username/password, or proof that we have authenticated through CRM/AD.
    2.  Login as our custom to another website.  This would require our customer's username/password, which could be stored in CRM, but only if encrypted.

    I understand the idea of setting up a custom website and referencing the .dll there, but it seems that we would still need to send password information to that page first, which would not yet be encrypted.



    Tuesday, February 16, 2010 4:54 PM
  • Your custom aspx page can do what ever it wants. So gather your user credentials (username/password) process the password if needed. Then build your hyperlink to the external website with the  (username/password) as querystring parameters.

    The custom aspx page in the CRM iframe would be placed under the CRMWeb\ISV folder and have windows authentication set (so the system users will always be able to access it). You can get the current executing user of the custom app or even get it from CRM during the form onload and pass it to the custom app in a query string (if you need the current user).


    You could create a new field for a customer that holds there password, possibly encrypted already. So every time you type in a password in CRM for the customer is automatically encrypts it. This depends on what your encrytion.dll is doing for you with regards to passing credentials to the website.


    Summary

    1. So it sounds like you want a user to link to an external website from within CRM while viewing an Account by clicking a hyperlink.
    2. You need to pass something in the querystring of the hyperlink address to the external website to login and direct the correct page to load. (e.g http://www.mySite.com/mysite.aspx?user=test&pwd=DFDF&productId=123455
    3. Is the external site on https?


    Note: There are many ways to get CRM to link to other websites, either by a button or this scenario regarding the IFRAME.


    Is there anything your unclear about? I read through your thread that you linked to above and there is some good information there.
    • Marked as answer by geeky girly Tuesday, February 16, 2010 10:34 PM
    Tuesday, February 16, 2010 9:27 PM
    Moderator
  • Rhett, thank you - I'm still a bit unclear but I think I just need to spend some time on it - web programming is not my expertise.  I will post back my results.

    Cheers,
    gg
    Tuesday, February 16, 2010 10:34 PM
  • Cool, no worries, you should first identify the the address and query string requirements if you are going to link to the external site. e.g. http://www.mySite.com/mysite.aspx?user=test&pwd=DFDF&productId=123455

    Then you'll have a good starting place for how to build the link and where to put it in CRM.
    Tuesday, February 16, 2010 10:49 PM
    Moderator