I've been trying to use the Windows Authentication low level credential API functions to backup/restore credentials. http://msdn.microsoft.com/en-us/library/aa374731%28VS.85%29.aspx#low_level_credentials_management_functions However, I've found that while I can use CredEnumerate to obtain every credential on the system, all the pass...
I want to access one site that first requires an (tomcat server) authentication and then log in with a POST request and keep that user to see the site's pages. I use Httpclient 4.0.1 The first authentication works fine but not the logon that always complains about this error: "302 Moved Temporarily" I keep cookies & I keep a context an...
I have a WPF C# client app with an embedded webbrowser control. I have all of the proper hooks in place so that if the site I'm browsing to requires authentication, I handle the IAuthenticate and pass in the required credentials (the user has already logged in to the client app itself). That works great, except... If user "Bob" visits t...
I'm thinking if it's a good idea to have a Web app which doesn't require a site login. This is for something like a public wiki where you just want to jump in and create stuff but still have a way to control access. Content can be read/edited by the content creator (or a few other people). What would be good references or existing apps...
I'm looking to integrate a J2EE app running on JBoss with RSA's Access Manager (which provides authentication with SecurID tokens). The documentation I've found so far is pretty sparse. RSA's site says there are " Java Runtime API and Admin API; Web Services Interfaces for runtime and admin" but I haven't found more details. Any pointe...
I would like to grant document level permission based on custom claims in claims based web site. A user may have hundreds of document or one. Is it a good idea to apply custom claims? What is the avantages or disadvantages? Is there a limit on the number of claims that can be added to the claim set? Thanks in advance for your help. ...
For some reason, I cannot authenticate user credentials using LDS for users created in LDS. My test code is: PrincipalContext context = new PrincipalContext(ContextType.ApplicationDirectory, "adlds:50000", "CN=test,DC=test,DC=internal", ContextOptions.Negotiate); UserPrincipal user = new UserPrincipal(context); ...
I got uploadify to work properly with a model that I have without any authentication. The problem is, a user needs to be authenticated before s/he can upload a file. When I enable the before filter, the file doesn't get uploaded. before_filter :authenticate def authenticate authenticate_or_request_with_http_basic do |name, password| ...
I have set up a login system that checks a mysql db validating username,hashed password, and a banned column (0 means not banned and is the default value, 1 means banned). if there banned they obviously cannot loggin. The problem is i'm new to php and having a hell of a time trying to figure out how to log out a user who is currently lo...
I am working on a silverlight 4 business application. for the form based authentication I created a user database with all the user, role and profile tables on SQL Express. In my VS2010 ASP.NET configuration I can see and manage my users and roles by adding, removing or modifying them. So, I assume my app.config connectionstrings set...
I'm still learning LINQ. I can do some simple queries, but this one is a little different. I have the following query that authenticates a user. User user = (from u in db.Users where u.Username.Equals(username) && u.Password.Equals(UserSecurity.GetPasswordHash(username, password)) && ...
I'm trying to store rules for web requests in a JSON object and am having trouble thinking of a good structure. Here are some examples of my rules: Possible Conditions the user must be logged in the user must belong to an account of type [____] the user must belong to an account named [___] the user must have a username [___] the user ...
I'm building a Webapp that uses OpenId to authenticate users, like Stackoverlfow does. There will be a mobile App too, e.g. Android or iPhone. These Apps have to authenticate or login somehow, to access data and update stuff that belongs to the user. Since there is no username and password one could provide to authenticate the mobile dev...
Hi, Our client's site currently uses forms authentication, so users have to go to the login page to type in their username and password. There are custom membership and role providers that access a database through NHibernate to get users and roles. The client now wants users from within the local Active Directory to get logged in aut...
I am trying to restrict a user from signing more than once (forcing the previous session to expire). I've checked the documentation on the subject here. I've set this up very similar to the documentation, but users are not being restricted to one session at a time. I can log in multiple times (in different browsers) with the same user a...
I need to call a WCF service programmatically. The service may be hosted with either NTLM or Kerberos authentication and needs to work under either. That is, if connecting to the service via Kerberos fails, then it should fall back to NTLM. Here's the code I'm using for Kerberos auth (if relevant, the service is hosted in SharePoint 201...
My registration form is not checking all the fields and is calling login and saying that I registered successfully. Also, if both passwords are blank, it still "registers" heres my User model <?php class User extends AppModel { var $name = 'User'; var $validate = array( 'username' => array( 'rule' => 'notEm...
I'm using tomcat 6, spring mvc 3.0.0 and spring security 3.0.0, and since the passwords I store in the database are sha1 hashed, I can't use digest authentication (section 9.2.1 of the documentation spells that out). For this reason, I need to make authentication happen through https. Due to potential processing overhead, I want to keep...
I have an AuthenticationManager with multiple AuthenticationProviders. That works very well, the first AP that can auth² the Authentication authenticates the user and if none can, the user is refused. Now I have an a bit more special case, and I need to find out which AuthenticationProvider authenticated a user that was authenticated su...
application is based on facebook authentication & message post on wall after googling ifind some code in this uses NSRegularExpression & NSTextCheckingResult it generate some error becoz this class compatible with ios4 or lator but i using ios3.1 for removing this what i do (i know to resolve this NSString's rangeofstring or substring ...