If you must store user login information (such as for 4D mobile or web application), never save users’ plain password directly to the database. Instead, store passwords as hashes by using the command Generate password hash. Then, when authenticating the user, the command Verify password hash can be used to verify that the user-inputted password matches the user’s password hash stored in the database. This extra layer of security ensures that it is unfeasible to steal user passwords from the database.