Hi, I'm trying to implement a client-side ajax login on Asp.Net MVC. I used to have this set up just fine on WebForms, but now that I've moved to MVC it's giving me some troubles. If you'd like a tutorial on Client-side Ajax Login for Asp.Net Webforms, it can be found here -- Easy, A++ Now... for some reason it's not working for Asp.N...
http://www.docjar.com/html/api/org/apache/catalina/realm/JDBCRealm.java.html To use this JDBCRealm we need two tables, user and user_role. user table - user_id, user_name, user_password user_role table - user_id, role_id, user_name Why user_name is required in user_role table when user_id is there as foreign key. The JDBCRealm could...
I work for a department of a university that uses CAS to provide single-sign-on authentication, and am writing a CakePHP application that needs to use this CAS service. I need to write code that: Checks with the CAS server to see if the user is logged in Pulls some credentials from the server if so Checks the credentials against an int...
Hi, I don't understand what's the need to declare element of , or even itself in DD, because the Container can still create a mapping between role in tomcat-user.xml file and role declares in DD in auth-constraint element of a security-constraint for authenticating any client. I'm using Tomcat 5.5. Thanks in advance ...
i am having a user register but IsApproved is false but when i check Request.IsAuthenticated it still returns true. Do you know how this can happen? ...
I would like to determine whether or not the user is logged in or if they're just anonymous from javascript... I found this question, but it's php code and I wasn't sure if there is a session variable called logged_in that gets stored on login or if that was just something that person had implemented himself. Anyone know how I can che...
Trying to figure out how to get the current User's Full Name as entered in Active Directory from a BLL class in my ASP.Net application. So far I have: public static string Username { get { var name = System.Security.Principal.WindowsIdentity.GetCurrent().Name; if (name.Contains("\\")) ...
I'm building a client-side ajax login for Asp.Net MVC by doing jquery posts to the controller to log in the user. What I'm wondering is when the user goes to log out, should the page refresh? (for security reasons) This tutorial here says: There will always be a page refresh on logout. This is necessary to ensure that any user...
I want to implement something similar to what Digg has done. When the user logs in for the first time, I want it to force them to create an account on my site. More importantly I want to know how to log a user into my site when they login with facebook connect. If they login with facebook connect, they still haven't provided me the pa...
Hi All, I have a winform application and a list of logins to some web-service. Upon checking 'remember me' I serialize a dictionary into a file along with the encrypted password, but I wonder if this is the best practice to do such a thing or not.. Here's my code public void LoginsInit() { FileStream file = new FileStream(loginsFileP...
My table, AccLink, has a foreign key, UserId, to the aspnet_User table created by the Membership Provider. When creating an object of type AccLink (I'm using the entity framework) I need to assign the aspnet_User by getting the current user object. I tried Membership.GetUser(userName) but it said it couldn't be converted to type aspnet...
I've always used a proper per-entry salt string when hashing passwords for database storage. For my needs, storing the salt in the DB next to the hashed password has always worked fine. However, some people recommend that the salt be stored separately from the database. Their argument is that if the database is compromised, an attacker...
Hi. I was recently asked to provide a quote on integrating a security solution like most Online Banks use, where there is a security token which key/numbers are randomly changing. The portal is an ASP.NET website, 2.0... I haven't implemented this type of security authentication before. Can anyone provide guidance, suggestions, experi...
Facebook Connect allows for very limited communication and access to the user's information. When a user logs in with Facebook Connect I would like to create an account for the user on our site that is linked up to their Facebook account. The only problem is registration (MembershipService.CreateUser(username, password, email)) requi...
I'm using this code in login page. This is work fine. FormsAuthenticationTicket ticket = new FormsAuthenticationTicket( 1, // Ticket version eUserName.Text, DateTime.Now, DateTime.Now.AddMinutes(30), true, "administrator", FormsAuth...
I am wanting to view web pages on a SharePoint site. A Page Viewer is the obvious way to do this. However, the web pages require authentication. Is it possible to pass the credentials of the current authenticated user? ...
I'm trying to make a web app in Sinatra, and I was wondering if there was a good solution for user sign-up with email verification, as well as authentication - perhaps as rack middleware? OpenID support would be nice to have too. I suppose I can roll my own, but I didn't want to reinvent the wheel. If I have to do so, can anyone point m...
We have an intranet site on our corporate network (SharePoint 3). If I look at it via Internet Explorer - I'm already logged in. If I look at it using Firefox I have to enter my windows username & password. My questions is this: Why is there this discrepancy between the browsers? Does Microsoft have some proprietary plugin in IE that c...
I'm building an internal website in Perl and I would like to get it to use Windows credentials for authentication. My research so far has turned up a lot of keywords: Kerberos, LDAP, NTLM, etc, but no solid information. Anyone got pointers or good tutorials? Thanks. ...
We use a websense internet filter at my workplace. I have an application that tries to retrieve information from the internet. On my client machine, I have to authenticate with websense manually (i.e., open firefox and give my username / password) or I'll get an error in my application when it tries to do the download. The error messa...