I have a problem with authorization when my login-conf is <login-module code="org.jboss.security.auth.spi.DatabaseServerLoginModule" flag="optional"> <module-option name="dsJndiName">java:/myDS</module-option> <module-option name="hashAlgorithm">MD5</module-option> <module-option name="hashEncoding">hex</module-option> <...
We have an ASP.Net web application running on IIS6 that manages its own database of users. The site itself just allows anonymous access and all authentication/security is managed using our application itself. We have a page that contains an HTML table of data that we import into Excel and is then used for Reporting purposes. The page c...
I'm using jquery to access a asp.net web service from my website. This web service needs to get the userid of the user that access it and the user is logged in with asp.net authentication on my website. In asp.net I can just write "User.Identity.Name" to get the userid, now I need to find a way of getting this on the client side, how i...
When I'm connecting to imap.gmail.com, the server is connected. But, the authentication is failed due to following error Server returned:CAPABILITY IMAP4rev1 UNSELECT LITERAL+ IDLE NAMESPACE QUOTA ID XLIST CHILDREN X-GM-EXT-1 UIDPLUS COMPRESS=DEFLATE Any Idea plz??? ...
I'm developing Flickr client. It's a desktop application. I need to pass authentication without opening a browser i.e. I have 2 fields for login and password and when user press "Log in" button all authentication steps should be performed behind the scenes. Flickr API actually offers to open a default browser and let user pass authent...
Hello everyone. Please help! I am new to the .NET web application development. I have used the code from the link below to create a basic login page in front of the Microsoft Live Single Sing On. http://support.microsoft.com/default.aspx/kb/326340 I managed to combine the two together (LiveSSO w/ Forms Authentication) turning off the...
Given a user model something along the lines of: class User < ActiveRecord::Base acts_as_authentic do |config| config.validate_email_field = true end end I would like to be able to modify "true" to be specific to the user that is signing up. I would like to be able to do something like: class User < ActiveRecord::Base ac...
I have a WCF service where I use a customUserNamePasswordValidatorType (specified in the behaviors\serviceBehaviors\serviceCredentials\userNameAuthentication section of the web.config file). My custom UserNamePasswordValidator works that way: public bool Authenticate(string userName, string password) { If ( IsUserValid(username, p...
I am upgrading a cakephp app at my new job from l.1 to 1.2. I am replacing the homegrown 1.1 authorization code with the great Auth component. The problem is that the passwords are not hashed in the legacy DB. How can I turn off the password hashing temporarily so I can start using the Auth component. Don't worry, I will hash the passwo...
What is the best way to share authentication information between two unrelated applications. Is there a standard for this? For example, if I use MoinMoin and vBulletin on a same website, is it possible for both systems to share the same authentication information (i.e. so, a user will only need to signup for 1 to have a common login for...
If I built an application that accessed some of the data from say Gmail, Twitter and Facebook, and I want the user to be able to only have to enter their authentication info once, and it's reset after some days or weeks, what is the best way to do this, dynamically, in Ruby? I see a lot of people just having a config file of their clien...
I'm trying to stream a live feed to a Publishing Point but keep getting 'Access is Denied' errors. I can do this just fine in the Expression Encoder application (using a valid username and password). But when I try to use the same username/password in my custom app, I get that error. I've tried pre-connecting without credentials, whic...
I'm relatively new to WCF and would like some opinions on what's the best (or most correct) way to implement authentication on an application that exposes its' business layer operations through WCF? Is a token supposed to be passed, encripted username/password and verified each time...or what? Also any links would be appreciated. Tha...
Simple situation. An existing project will need authentication and authorization and I need to design it. First of all, I choose to divide the whole thing into two modules, one for authentication and the other for authorization. Both will be seen as blackboxes for the project. For now, the authentication module will just use the Windows ...
Question is about providing auditing (who used the application, when) and securing (who can launch the application - no fine grain control or data security) a desktop application developed you. What would you prefer? Have an authentication mechanism built into your application If using this option, we have to include user and passwo...
I use a web application that forces you to reauthenticate with the application even if you open a new browser window that shares the same session, e.g. File, New Window in Internet Explorer. I was surprised since I thought that if you opened a new browser window from File, New in both IE and Firefox (vs. starting a new browser process) ...
Hi, im Using CakePHPs standard Auth mechanism, but I have some problems with that. Everytime a user logges in the password got hashed twice. I have the Auth Component in the var $componets Array in the app_controller.php and one in the var $components Array from my users_controller where the login action is defined. I have defined a ...
How do you open https url in Python? import urllib2 url = "https://user:[email protected]/path/ f = urllib2.urlopen(url) print f.read() gives: httplib.InvalidURL: nonnumeric port: '[email protected]' Thanks in advance, Etam. ...
I have this problem. I first connect(log) to SQL Server using SQL Management Studio the authentication is set to Windows Authentication. Then I go to the Security => Logins folder and add a user, the authentication is: SQL Server authentication, I give him also the sysadmin role [all roles] I try to login as that user, but I can't I...
I'm looking to restrict access to controllers/actions that represent my website's api. Only registered users who meet a certain criteria (pay accounts, not free trials) will be able to use the api. The website currently supports forms authentication with users logging in with a username/password combination or via open id. How would...