authentication

Automate SSH without using public key authentication or expect(1)

Is there a way to pass a password to ssh automatically. I would like to automatically ssh to a server without using public key authentication or expect scripts, by somehow getting ssh to read the password from stdin or a file. The reason it has to be that way is that I would like to backup my files to a server using rsync/ssh running as...

.NET Forms Authentication: How to limit access to resources like pdf files to authenticated users only

I am using .net2.0 and IIS6. When using .net Forms Authentication: How to limit access to resources like pdf files to authenticated users only; so in order to access a file say mysite.com/mydoc.pdf they would have to be authenticated first (go through the login page) It seems that by default only the .aspx pages are protected. E.g. to...

Better way to extend restful_authentication AASM states

I recently had to extend the aasm states for the latest version of restful_authentication (github) in one of my apps. I removed the "include Authorization::AasmRoles", copied the existing states and events from the plugin and made the changes necessary to support an additional "published" state on my account model. Does anyone have a cl...

Authentication system for ASP.NET web applications?

Hi! I have some question: How to make a role based web application? Such as in forum sites, there is many user types, admin, moderator etc... is the roles of these user types stored in database or web.config? And when a user login to our site, how to control this users roles? In short I want to learn about authorization and authenticati...

Coming up with a topology for a public facing SharePoint website

I'm currently planning the migration of a Microsoft Content Management Server (MCMS) website to a SharePoint 2007 publishing site. The top-level site is a public facing, anonymously-accessible website. It will contain two areas which need to be protected with forms-based authentication - each of which will have a distinct set of users. ...

Use ruby gem, apt-get,etc. through a proxy with NTLM authentication

What solutions are out there for getting through a corporate proxy using NTLM authentication? Anything that isn't a browser fails. I've tried NTLMAPS, without success. ...

Determine whether user is logged in

What's the best/most efficient way whether the user of my .NET web application is currently logged in. I'm currently using Membership.GetUser() != null, but now that I realize that this involves a DB-roundtrip, I wonder if there's a better way. Maybe HttpContext.Current.User.Identity.IsAuthenticated? ...

SQLMembershipProvider - Adding membership to an existing database. Setting permissions

I am adding membership-related schemas to an existing database (lets call it myDatabase) following those instructions. As a results the number of tables, views and stored procedures are being created in myDatabase. The next step is to modify web.config for the application to use CustomizedMembershipProvider <membership defaultProvider...

How to redirect to the requested URI after authentication using Zend_Auth?

Hi everyone, I am using a simple Zend_Auth setup to authenticate users for one of my applications, using a check in the preDispatch() method in a controller plugin. When anonymous users navigate to /users/view/id/6 for example, they should be redirected to the above URI after authentication. What is the best way to do this? I'd pre...

Error 4005 Forms authentication failed - ticket supplied has expired

Aloha I'm running a website using ASP.NET 2.0. Every now and then (10+ times per day on 100+ users daily) I receive this error: Forms authentication failed - ticket supplied has expired. Here's my web.config snippet: <authentication mode="Forms"> <forms name=".CLLSAUTH" loginUrl="login.aspx" protection="All" path="/" timeout="60"...

How to password protect streaming videos with php

What is the best way to password protect quicktime streaming videos using php/.htaccess. They are being streamed using rtsp, but I can use other formats if necessary. I know how to do authentication with php, but I'm not sure how to setup authentication so that will protect the streaming files urls so that a user can't just copy the url...

In Websphere 6.x LDAP query using LdapContext is the transmission of credentials encrypted?

In Websphere when you do an LDAP query using LdapContext are the transmission of credentials encrypted? LdapContext ctx = new InitialLdapContext (env, null); Lets say I make an LdapContext for a web app to do some custom LDAP calls. How do I know if my call is secure / encrypted? ...

IIS7 and Authentication problems

Hi Folks, i've got a stock standard ASP.NET web site, deployed to our development machine (internal machine in our server room). Now, this dev site can be accessed by both INTERNAL and EXTERNAL users. Now, in IIS6 we used to have it so that Anonymous Authentication was turned off and something else was turned on .. giving the users a p...

Connecting to an asmx webservice with WCF through a proxy

Hello, Sorry answer found while typing I am trying to connect to an external webservice that requires username/password authentication through a proxy. I am using Visual Studio Express 2008 to generate a service reference I have connected to the same webservice using a web reference.We only had to set a larger timeout because it ...

C# Validate a username and password against Active Directory?

How can I validate a username and password against Active Directory? I simply want to check if a username and password are correct. ...

CakePHP and Flex - How to keep $this->Auth->user() valid ?

Hey all.... I am having a little bit of difficulty to make the integration between flex and cakephp to work with authentication... I have an MVC on Flex that comunicates with Users MVC on cakephp. It authenticates and sends me back the logged user, but when I try to access another controller, the value for $this->Auth->user() is allways...

Best practices for web login / authentication?

Writing the code for the user authentication portion of a web site (including account registration, logins, and password resets) is pretty simple, but what do you need to make a really good user authentication setup? For example, I'd consider not storing plaintext passwords to be a bare minimum requirement for a web site, but that piece...

ASP.NET authentication options

I'm creating an asp.net app with just some lite data access from xml files. However, I need to be able to authenticate administrative users (via forms) to manage that data. I don't want to stand up a sql db just for authentication purposes. I'd like to use xml, but not sure about security with that. Any suggestions? Custom role prov...

How can I make SMTP authenticated in C#

I create new ASP.NET web application that use SMTP to send message. The problem is the smtp was not authenticated from who send the message. My Question is: How can I make SMTP authenticated in my program? does C# have a class that have attribute for enter username and password? ...

restful_authentication: authorized? = NoMethodError (but logged_in? works fine...?)

I don't understand why one method would work and the other would throw a NoMethodError if they come from the same lib file. # app/views/bunnies/show.html.erb <% if logged_in? %> <%= current_user.login %> | <%= link_to 'Logout', logout_path %> | <% if authorized? %> <%= link_to 'Edit Details', edit_bunny_path(@broker) %> | <%...