QUESTION Which of the Youtube Data API auth methods will allow me to upload videos to a single channel without having to force my site's user to authenticate? OAuth AuthSub Client Login I've read http://code.google.com/apis/youtube/2.0/developers_guide_protocol.html#Authentication but am still unsure. BACKGROUND I'm building an ap...
Hello, I'm writing a small GWT front-end for a backend app and I was wondering about the best security model for GWT apps? I was thinking of implementing an RPC method that receives an MD5 of a user password from the client webpage, then passing back a session ID to the client page (or a failcode). All subsequent calls would simply use...
I've got a web API that provides data to users without authentication (the website lets users post data, after they've logged in using traditional cookies & sessions). Someone wants to develop an iPhone app that adds things to my database, so I want a user to authenticate on the iPhone, and then the api will allow posting. So, what shou...
I am trying to use the ASP.NET forms authentication service with the MySQL connector version 6.3.2. I was able to get it working using cleartext passwords but unable to get hashed passwords working. Here is a snippet from my machine.config file <system.web> <membership defaultProvider="MySQLMembershipProvider"> <providers> ...
I know this question has been asked before, but I haven't found any answers that seem ideal. I have a php app that needs a login system. I'm no crypto expert by any means, and I am wary of reinventing the wheel, which has doubtless been invented many times already, and very well. I'm wondering if anyone is aware of a good authenticati...
We are developing a suite of windows applications for a client and need to add a security module. The basic needs are fairly simple: A function to return a list of permissions: string[] AllowedApplications = Security.GetList("Applications"); string[] AllowedMenusAndButtons = Security.GetList("Functions"); //In General: string[] Allowed...
I'm working on the login system for a php web app. I'm aware of the dangers of rolling your own system, so I'm hoping to use a pre-built library of some kind. I have seen zend_auth recommended in several places. I have also heard that zend_auth can be used independent of the rest of the Zend framework. This would be preferable, as my...
I am writing an application in Google appengine python. Due to the limited support of the appengine environment I have to implement some of the functionality on external dedicated servers. Is there an authentication mechanism available that will preserve login information over the external servers and appengine. ...
I would like to know if it's possible to implement two types of authentication in my web site. I would like to have username/password and also be able to use a security token service to login in my site Thanks. ...
Could someone enumerate the main differences between OAuth 2.0 and previous versions? Or point me to good documentation. (Not the full OAuth 2.0 Protocol draft; I don't have time to read it.) ...
Can any one tell me how to authenticate users(SVN users) for a repository using SharpSVN Library. That repository should only be committed by those users. Thanks ...
Google Reader API Seems expecting something different for authentication today! About a week ago, I downloaded this, and everything is working and I try to port that to java. For my code, it is working perfectly (with the help on your examples) until today. I stack tracing everything and I found out that suddenly the google reader is no...
When trying to access my site: www.X.com The browser changes the url to: www.X.com/ The problem is that the result url is: www.X.com/HomePage.aspx?ReturnUrl=/ (HomePage.aspx is the default page) On IE: www.X.com/HomePage.aspx?ReturnUrl=%2f For some reason the Forms Authentication treats / as a page that the user is trying to acc...
What are the exact steps required for a cookie to persist after a browser is closed? At the moment I have: createPersistentCookie set to true on LoggedIn event. MachineKey specified. Forms sliding expiration set to true. As long as the browser is open, the user will stay logged in, but as soon as it's closed, and it doesn't matter f...
Hi, I'm developing an intranet web app and I'm learning how to hook VB into the Active Directory. We're going to be doing some location specific permissions, and my boss wants (if possible) me to hook into the Active Directory to get the users location. I think that all I need to do is get the user name, but I'm not sure what is the be...
I am having a hard time understanding the ZeroMQ messaging system, so before I dive in, I wanted to see if anyone knew if what I want to do is even possible. I want to setup a pubsub server with ZeroMQ that will publish certain streams of data and to subscribe to some of those streams, a user must authenticate to see if they have acces...
When a smart phone, specifically an iPhone, connects to a server through an app, what information, if any, is available to the server? Just in case knowing the scenario helps answer my question: There is an iPhone app that allows the user to enter an IP address and port number from which the app receives a data feed. I would like to...
I'm using JQuery to call an asp.net webservice that is set in web.config to only allow logged in users access. This works fine. When run locally from Web Developer Express, if I logout and try call the webservice I get a 401 message returned which I then use to redirect the user to the login page. However when run on the live server I'...
Scenario I have an InfoPath form. the user fills it in the details, and then a manager checks it over for accuracy. The manager then signs off the form to say that they are happy with the details and then the form gets submitted. This process does not happen every time and its purpose is to validate that the user is performing the job t...
Since working with Exchange Web Services 2010 is a bit ridiculous, especially from anything other than .NET, I've been tasked with wrapping some functionality up in a SOAP web service that acts as a pass-through for other languages to interact with our Exchange environment. [Misc] <-(SOAP)-> ASP.NET ASMX web service <-(EWS Managed AP...