Hi there. I have a domain that will be accessed by a small, private group of people. So I want to control access via authentication. The domain has a collection of applications installed that each have their own sub-domain. Eg: domain.com, app1.domain.com, app2.domain.com, app3.domain.com I'd love to have a single sign-on solution so ...
I'm porting a servlet from Tomcat 5.5 to OC4J 10.1.3.1. In Tomcat we set up a JDBCRealm for authentication and authorization. This was configured via the $TOMCAT_HOME/conf/server.xml. Is there a similar mechanism in OC4J? Where do I start looking for it? How do I define it? ...
Is it possible to mix all these access controls in one site? I have a requirement saying a) Users from the AD must be allowed access, using integrated security b) Users from some other AD must be allowed access; potentially by logging in c) Users not in the AD's should be able to create a new account on the site. Now, ofcourse, ...
We have two types of user - those that move around the building and access the app with PDAs on a wireless network, and those that are deskbound. Occasionally, a mobile user will try to use one of the deskbound users PCs to access the app. This can often result in data and pages bleeding between the two users. Modifying user behaviour i...
A project I'm working on supposed to authenticate users agains AD. I've never worked with AD before, neither did I work in organizations that use AD, so here's my stupid question: in case if AD involved, who manages roles, groups and users for application? Is it my responsibility to provide an UI for site admin to assign AD users to my a...
We are in the process of designing a simple service-oriented architecture using WCF as the implementation framework. There are a handful of services that a few applications use. These services are mostly used internally, so a basic authentication and authorization scheme (such as Windows-based) is enough. We want, however, expose some o...
Hello, I have a console application that i would like to run as 'NT AUTHORITY\NetworkService', but i cant remember how to do so - the only reason is that i will be hosting my service in a windows service, but for kerberos authentication testing i want to use the spn that is already at the domain (it does have delegation enabled) In sho...
First off, the server: Exchange 2003 sp2 running on Windows 2003 Server sp2 I have a script that sends email to two email accounts, one called students@ and the other being fs@ (faculty/staff). We are setting both those email accounts to only accept incoming email by authenticated users on the exchange server, to spare ourselves from sp...
Hi, does anyone know is there a way to implement Windows Live ID authentication into your ASP.NET MVC site. There is some info about OpenID implementations and it uses some libraries. So is there a way to implement Live ID or it is not yet supported. Thank you ...
I am creating an application in .NET that will serve as a second UI for my already-deployed Django app. For some operations users need to authenticate themselves (as Django users). I used a super-simple way to do this (without encrypting credentials for simplicity):- Step 1. I created a django view that accepted the username and passwor...
Do you build all your login, account creation, password recovery, etc. into your Flex app, or do you keep all of that in web pages and only redirect to the .swf on successful login? ...
I was recently given an older ASP web application to maintain. I haven't touched it much, from what I understand, the actual VB6 project files are gone, so I only have the ASP files themselves to work with. Recently, users began complaining of being logged off, sometimes after a minute or less. I tried myself, and logged in once, clicked...
I'm working on a project where I need the following WCF service on server side (.net 3.5) WPF client for the client side (.net 3.0) I have an existing application that I have to utilize the authentication and authorization from (on the server side). I also need to store some metadata about the user in the WCF Service's Thread Principa...
How do I check if a user/password pair works without actually making a connection to the database? The DBMS in question is MySQL. That was my original question. Since most people get this question wrong, then I should rephrase it as: How do I check if a MySQL username/password is valid, without connecting to MySQL as that user? (thanks ...
is there any best practice data model for authentication/ authorization schema ...
I am working on an ASP.NET page that we, in code impersonate the requesting user. We are using the following code to start impersonating. Dim impersonationContext As System.Security.Principal.WindowsImpersonationContext Dim currentWindowsIdentity As System.Security.Principal.WindowsIdentity currentWindowsIdentity = CType(User.Identity,...
I am using path-based authentication with svnserve, but it is giving me permission errors if I specify a repository. However, if I just specify a path then it authenticates. In my authz file, if I do this it works: [/my/path] my_username = r If I do this, it does not work: [svn:/my/path] my_username = r I'm fairly certain that "sv...
I have a scenario where I have a web application hosted externally (ie: the webserver is not a member of my internal active directory domain). I would like to authenticate users of the web app using their active directory credentials. Is there a product or some setup I can use to accomplish this? ...
Hello, I have a simple task of authenticating against Active Directory using Java. Just verifying credentials and nothing else. Let's say my domain is "fun.xyz.tld", OU path is unknown, and username/password is testu/testp. I know there's a few Java libraries out there that simplify this task, but I wasn't successful at implementing t...
I have an application thats going to use Active Directory for Authentication. This will be used in mnay locaitons, so I want the user to be able to input their AD domain into a settings file. So, the first time they run this app, they won't be able to login, because they haven't entered the AD Domain name, so want I want to do, is check ...