Hi All, I am developing a REST API that supports two kinds of authentication protocols: login form authentication - for browser based clients. Simple Basic authentication - for non-browser clients. I developed a flow in which unauthenticated requests redirected to the "login form", the problem is that this is an undesired behavior f...
I'm trying to set up spring security 3 to authenticate users against my hibernate 3 database. I'm storing only sha1 hashes of the passwords in the database (not plaintext). I've looked at this and this, which tell me to implement my own UserDetailsService. Unfortunately, the UserDetails that loadUserByUsername spits out seem to need the...
I have been triying to upload a file from an asp.net application to a sharepoint document library. ASP.NET Configuration: ASP.net 2.0 Integrated security checked on IIS Virtual Directory Anonymous access disabled Web.config file with tag and tag. Both servers have been configured to "Trust for delegation" in AD. when using ServiceR...
Some forums that I regularly visit sell premium programs, and to prevent them from being leaked they use hardware-id authentication. That is, first they send you a program to run to grab your HWID, you tell them your HWID, they store it in a database, then they send you the actual program. If your HWID isn't in the database, the program...
I have a subversion server running with apache. It authenticates users using LDAP in apache configuration and uses SVN authorizations to limit user access to certain repositories. This works perfectly. Apache DAV svn SVNParentPath /srv/svn SVNListParentPath Off SVNPathAuthz Off AuthType Basic AuthName "Subversion Repository" AuthBasicP...
i would love to use mod_xsendfile but i live in a shared environment which does not provide such a module. processing large files such as videos through a server-side script and sending it to the browser that way seems to be unacceptable in my case, so i am looking for a way to enable per-file authentication in such a way that is not goi...
Getting very confused by PHP_AUTH_USER. Within my web pages I have .htaccess files in every directory, controlling who can (and cant) see certain folders. In order to further customise the pages I was hoping to use PHP_AUTH_USER within the PHP code, i.e. tailor page contents based on the user. This only seems to work partially. The cod...
Is there any possible way to mix Anonymous Authentication with Windows Authentication, or even Basic Authentication in IIS 7? My ideal setup would all attempt to authenticate with Windows or Basic Authentication and if that fails fall back to Anonymous Authentication. The problem I'm running into is that with any of the possible combin...
I am currently building a Rails app, and trying to figure out the best way to authenticate that a user owns whatever data object they are trying to edit. I already have an authentication system in place (restful-authentication), and I'm using a simple before_filter to make sure a user is logged in before they can reach certain areas of ...
hi i am new to joomla . i have made a folder in joomla directory and in this folder i have a some file . i want to authenticate these files from direct access using in url by name? how it is possible? help ...
Hello everybody. I use windows authentication and have one trouble: letter case of user name in User.Identity.Name is incorrect. For example, my user name is FOO-SERVER\Borovsky_D, but User.Identity.Name shows FOO-SERVER\borovsky_d. What is trouble? Does anybody have ideas? ...
In the process of building what I'd like to hope is a properly-architected authentication mechanism, I've come across a lot of materials that specify that: user passwords must be salted the salt used should be sufficiently random and generated per-user ...therefore, the salt must be stored with the user record in order to support verif...
Hi all, We have load balancing set up on out two web server, however, a few users are being asked to login when they are being re-directed to a particular server to upload a document (we are trying to keep all uploaded documents on one server only), here is the code from web.config: <authentication mode="Forms"> <forms name="EAAAut...
I have wrote a user manager script the uses NTLMSetUserInfo to set passwords of some users, including ADMIN... What I have noticed though is that if I do this the username / password combination works perfectly for all scenarios such as Telnet, HTTP Auth etc but NOT file browsing. Upon further inspection I noticed that when setting the ...
How do i authenicate users with SOAP ? Will i have the user require to send his username/pass with every SOAP request and i authenticate him against the database ? Doesn't that seem to cause unnecessary queries ? ...
Hi, I'am looking for an easy authentication for my users mostly via facebook, but keeping OpenID and other OAuth alternatives as well. For the case if something will go very bad, I will ask my users to optionally provide their email address, which should be obtained via OpenID or OAuth if possible. The same thing is about their name. I ...
Fails: //Note: webserviceProxy inherits from SoapHttpClientProtocol //App Pool is running as a user with permissions to call the external webservice var webserviceProxy = new webServiceProxy(); webserviceProxy.PreAuthenticate = true; webserviceProxy.UseDefaultCredentials = true; var returnVal = webServiceProxy.DoSomething(); //Fails...
Is there a sample application for using WIF with a ASP.NET MVC application? Can someone help me get started trying to integrate both of these technologies? ...
I have created a blog application using Ruby on Rails and have just added an authentication piece and it is working nicely. I am now trying to go back through my application to adjust the code such that it only shows information that is associated with a certain user. Currently, Users has_many :posts and Posts has_many :comments. When...
What is meant by silent authentication/ silent update? ...