So I created a web-service for a co-worker to consume, but his department is using Java where everything my department is in .NET. On top of that we have Windows Integrated Authentication turned on in our IIS server. Is there some type of Java library/framework that provides windows integrated authentication credentials to Java clients...
I've got an internal C# application that I want to start deploying externally. I've got features that I only want available to internal users, but I don't want to bother with multiple releases. I also don't want to change the way that internal users are currently using the program. So, what I'm thinking is: 1) Check the domain of the...
We've got an existing ASP.NET web application that already uses a home-grown role based authentication system. Each user has a role and that role is actually a fully realized class in itself. It still boils down to a pretty standard set of roles (user, administrator, owner, etc). Now we're starting up a new ASP.NET MVC project that us...
A WCF service has been written and can be hosted in any web site. These web sites could use Windows, Kerberos, or Forms authentication. Is any particular configuration or development required within the service to handle these different authentication types? Or is authentication independent and the service doesn't need to worry about it...
Is there a library already created to talk with an CAS server via objective-c? I know there are many supported clients but have yet to find anything I can use on the iPhone. ...
Hi, I want to secure some endpoint of a WCF service, i dont know if you can secure some endpoint and some not. Below I have the stripped WCF service (self hosted). The same WCF serves also the CA Policy file. If I secure this WCF service or some endpoints of ut the CA Policy part must not ask me a username password. The policy file must...
I am working with a piece of code implementing JAAS LoginModule and in the commit method I set the principal with user UUID: subject.getPrincipals().add(new SimplePrincipal(userUUID) But for some reason when I access the user from EJB Context: context.getCallerPrincipal().getName() I receive the login name of the user instead of t...
I'm rather new to SOA and therefore experimenting around. Currently, the part that creates the biggest problem to me is authentication, my current thought about it involves the following: The client sends some kind of authentication message to the authentication / user service, this service queries the db and if the user is found and t...
Hi all, I have created a username and password to enter and search people in linkedin. Now, I am devloping a web application using asp.net. I need to open a popup page which is displaying the searched results in linked in as logged in. When the popup page is displaying, I need to logged in automatically using the username and password....
I finally realised the problem with swfupload... I have a page used to process the uploaded file in swfupload but previous problem I had, I couldn't reach to the page to do the processing. Now I know why, it is because the authentication problem. The server thought the user hasn't been authenticated when the swfupload trying to upload...
I have a simple Desktop Facebook application that allows the user to retrieve some of their Facebook info(Written in Java). This info is then sent to their phone. When the user sees something of interest (e.g. new comment) in their phone's 'facebook-viewer' (JavaME) they can click to launch a browser and go to 'facebook.com' to view it...
I have a web app built upon CakePHP. Currently it is doing user authentication / Access Control with the built-in AuthComponent and the ACL functionality. Throughout our organization, we have MANY applications (web and otherwise) that all require their own user/pass combo. Our company is looking to migrate as many of our internal apps...
I like the Visual Studio 2008 IDE integrated (not command line) feature to choose to publish an ASP.NET website to my webserver via FTP. I'm able to store my FTP username but I don't see any option to store my FTP password and so I must type it in each time I publish. Is there an equivalent to the "Remember password" functionality foun...
This is very similar to a question posted last September, but I haven't come across any working solutions for it (and am not versed well-enough in session cookies to do it myself). If I'm having the user authenticate in WordPress, how do I read that session cookie with MediaWiki such that the user then has permission to edit the wiki? I'...
I am trying to use custom ASP.NET MembershipProvider and RoleProvider to handle security for my service. The service is self-hosted in a console app, not in IIS. I use webHttpBinding with Basic Authentication. I configured serviceCredentials and serviceAuthorization to use providers. Providers really get initialized. But WCF seems to ig...
Hi. I have authenticated users to log on my system using this code: FormsAuthentication.SetAuthCookie(user, false); I want to hide my system menu for non authenticated users. Something like this: <% if(???) {%> <ul id="menu> ... </ul> <% } %> How can I do this? Thank you. ...
I have WCF service that being used by clients, and the following is my current implementation for user authentication, I want a recommendation to enhance it or better mechanism. I am using RSACryptoServiceProvider class (RSA implementation) to save encrypted user passwords into database The client should encrypt password every log-in u...
I am using Prowser to screen scrape internal corporate websites. Some of the sites use basic authentication where the username is: [email protected] According to the documentation, in order to user digest or basic auth, I need to open the URL like this: https://username:[email protected]/ But when I actually construct the URL, it lo...
I've written my own model to handle authentication but I was just wondering how I would go about implementing a 'Remember Me' function? To log in a user I simply set the following userdata: UserID(int), LoggedIn(bool) ...
Looking for a robust and efficient implementation where I can restrict a user to only log in to my web app from a single computer. If a the same user is already logged in and another person tries to log in from another computer then I should either have the option to end the session of the currently logged in user, or show a message ...