I recently simulated multiple login in PHP using 1 account. Here's what I did opened 2 login screens logged into account 1 using the first login screen login successful logged into account 2 using the second login screen What I want to do is to logout user 1 when user 2 logs in on the same machine and the same browser. How do I do t...
I am trying to use Python to write a client that connects to a custom http server that uses digest authentication. I can connect and pull the first request without problem. Using TCPDUMP (I am on MAC OS X--I am both a MAC and a Python noob) I can see the first request is actually two http requests, as you would expect if you are famili...
I used the Single Sign-on demo from: http://www.codeproject.com/KB/aspnet/SingleSignon.aspx And I add a SignOut function for this demo, but found a problem: when I set the cookie.Domain, FormsAuthentication.SignOut() is not working and the cookie can not be cleared. If the cookie has not been set the cookie.Domain, FormsAuthentica...
Could anybody tell me some simple and practical Single Sign-On and Single Sign-Off solutions using asp.net ? I have googled a lot, but most articles just can not work for Single Sign-On and Single Sign-Off. ...
How do I use the App Pools Crendentials to authenticate a WebRequest? I have a web site that call a page from itself, but I keep getting 401.... ...
I have a silverlight app, which uses forms authentication for security purpose. I have a custom membership provider to authenticate the user. This is hooked up properly and is working. Then, after its authenticated I have user information which I need to save (More than just the name), hence I create a custom cookie and save it. All wor...
We recently attempted to add ip address validation to our website's login security. So in addition to having a cookie with valid credentials, we checked that your ip address on page request matched the one you initially signed in with. The idea was that if your cookie is stolen, a different user cannot impersonate you unless they actua...
If I have a type like: public class Context { public Context() { } public IQueryable<Record> Records { get { if (user == someone) //psuedocode { //return something } else { //return something else } ...
Hello, I'm trying to use Exchange authentication from my app using JavaMail to do this. Could some one give me a guide to do this? After authentication I need to send mails that's the main reason that I'm using JavaMail. All the links that I found talks about problems with this but I think this must be an easy task to do from Java. Than...
How can a PHP script complete a login form to enter the members area (I have a username and password), such that it can send POST data to complete another form only accessible if logged in? ...
In a Grails app, how can I mock an authenticated user so that I can write integration tests for controller actions, which are protected by Acegi? For example, let's say I have a blog application, and the /post/save action is restricted to ROLE_AUTHOR. What might an integration test for this action look like? ...
Which CAS implementation should i use to enable CAS single sign on to my django app (trusing a specified CAS server, I'm not interested in creating a CAS provider) ? What I can find are the following: http://code.google.com/p/django-cas/ http://github.com/Nitron/django-cas-consumer I've used django-cas before, and it seems to work b...
I've imported a bunch of users into my Active Directory with some custom fields. Then I did a profile import from Active Directory to Sharepoint with all the custom fields and regular fields. After this, I needed each user to be in a site collection with a MySite set up for them. I did that by writing some code that ensured the user e...
I need to know when tomcat accepts a login using realm authentication for a given context. I've been looking at the possible listeners available (ServletContextListener and ServletContextAttributeListener) but can't figure out how to be notified when a login occurs. This should also work when using tomcat single sign on for multiple c...
I'm looking to implement something similar to Microsoft's BPOS Sign In tool: http://www.tomshardware.com/reviews/microsoft-mos-bpos,2357-7.html However, I'm having trouble finding information on how they manage to pass the credentials on to Outlook. The main issue I'm trying to resolve, is signing in to Outlook on a non-domain joined ...
My client created paid iGoogle apps but would like to demo them on an iGoogle page for which the user would need to log in to Google with a demo account. On clicking a 'view demo' link, the user would need to be forced out of their own google account and logged into the demo one, then taken to iGoogle. I have been playing around with p...
When I use Authorize filter on an action or a controller used by uplodify (http://www.uploadify.com/) the action isn't reach... moreover Session are not retrieved. I found this to retrieved user session : http://geekswithblogs.net/apopovsky/archive/2009/05/06/working-around-flash-cookie-bug-in-asp.net-mvc.aspx But how to use it with...
I'm developing an ASP.NET MVC site that utilizes forms authentication for part of the application. During development, I need to be able to give external parties access to a development server hosting the site. Since I don't want to expose the site to the entire internet, I need to password protect it while still allowing forms authentic...
The infrastructure team wants to update the authentication protocol to NTLMv2 and Kerberos. Will this affect CRM 4.0 on-premise installation. What would need to be changed in order to use the updated protocols. I am having a difficulty locating any official documentation on what the current authentication protocols are for CRM on-prem...
Suppose I am writing a server for a particular network protocol. If I know that the client is running on a Windows machine, is it possible for my server to authenticate the Windows user that owns the client process that initiated the connection independently of the network protocol in question? Rationale I actually wish to write an FTP...