I'm trying to use the garb gem to access data from the Google analytics API and find that http requests using garb work just fine from a Linode account, but are refused from home (Comcast). Is Google rejecting some kinds of http requests from certain ISPs, or am I just doing something wrong? Simple example is below: require 'garb' Ga...
I am new to liferay portal. I am afraid, the questions being raised might be simple, but I am not aware. Please clarify. We are trying to build a Portal using Liferay on Tomcat. This Portal should be authenticated by Netegrity SiteMinder and we have our internal authorization mechanism which is built on tomcat security . I have question...
I'm creating an app that's using Active Directory groups for authentication. What are the best practices for controlling authorization of UI elements (links, content, images, etc)? For example, I have some links that only certain groups can access. I understand using Authorize attribute to control which groups can access a given Actio...
Hi there, I want to restrict some MS Sql Server users. For example, one user should just be able to see 2 columns of "Customers" table and none other. And this user shouldn't be able to create any manipulation queries. But one user should be able to do everything on all tables and all columns. How do i do that? BR, Çağın ...
How would you implement a modal window saying "In order you to access this area you have to be logged in.." in combination with a login form below it every time a user tries to access authorized content. I'm using Rails 3, Devise and CanCan. My first thoughts were do put it somewhere in the application_controller.rb: # application_cont...
I'm pretty new with ADFS and and Custom Role authorization so any help (and a lot of patience) would be greatly appreciated. I'm trying to set up ADFS with custom authorization. I have the ADFS set up to return me a claim, from there I can get a username from the name token. However, I already have an existing roles table which I need t...
I'm trying to understand the use cases for which implementing oAuth as a service provider is the way to go. It seems that implementing an oAuth service is a lot of work, so I don't want to go through the trouble just to discover I was barking up the wrong tree. Any examples of such use cases to help me wrap my head around when to use or ...
I have a web application that has a configuration folder that houses multiple XML files that are configuration settings for multiple "portals" as you will. I need IIS to have access to them so the "portal" loads (sql connection strings, master page paths) but I want to deny any outside access (url browsing). Here's an example below: h...
I want to use the standard AuthorizeAttribute (i.e. not inherit it) but with a custom redirect. Is that possible? where should I check for 401 and redirect? I've tried to add <customErrors mode="On" > <error statusCode="401" redirect="/Errors/NotAuthorized/" /> </customErrors> but it didn't work. ...
i have an application which i developed on my local machine win7, iis7 which does something like this: deny all anonymous users on all root pages and redirect them to login they will be able to access the root pages after logging in. It uses forms authentication to log the user in. it is structured as an subapplication in a website ...
Hi I am developing a site based on Joomla 1.5 and using wordpress for the blog aspect for the site. I need help in user authentication part. I am looking for sharing the user session between both. Example : If a user loged into Joomla he gets logged into wordpress too are may be the reverse way. What I mean is let the user registratio...
I have a simple ASP.NET site making a call to a WCF service. The call works in Visual Studio 2010 (both sites running under Cassini using basic HTTP binding). Moving the same thing to XP , running the web site page (which makes a simple call to the WCF service) makes the web server throw a "500" error. There is nothing in the Event Log....
I implement a SSO with NTLM and passthru, and it works if our client had joined into domain. As in our code we will check if there is a "Authorization header" in the request header. And the problem is: If our client joined domain, then in our application, I can receive the Authentication header which contain NTLM ... If our client ...
I'm creating a desktop application that requires authorization from a remote server before performing certain actions locally. What's the best way to have my desktop application notified when the server approves the request for authorization? Authorization takes 20 seconds average on, 5 seconds minimum, with a 120 second timeout. I co...
Some users of our application will have read-only access to many of our pages, in our current web forms app this means they see the form, but all of the fields are disabled. We're looking at MVC 3 and searching for the cleanest, most idiomatic way of implementing this functionality. Some ideas so far: Some combination of a global acti...
I want to set the HTTP Request header "Authorization" when sending a POST request to a server. How do I do it in Java? Does HttpClient have any support for it? http://www.w3.org/Protocols/HTTP/HTRQ_Headers.html#z9 The server requires me to set some specific value for the authorization field: of the form ID:signature which they will the...
Which of the following is more appropriate to use as an identification field in a database to represent a client, when two-way SSL authentication is used? The client's X500Principal OR The thumbprint of the client's certificate ...
Hello, I'm having problems with OutputCaching over a WCF REST service on .NET4-IIS7. My service has a custom Authorization scheme (by implementing ServiceAuthorizationManager), one which should take place on every request, and any caching must be done after the request is authorized. So far, this seems to work, only the caching part I c...
I have Projects resource which is nested in Users resource. My Cancan Ability class is: class Ability include CanCan::Ability def initialize(user) #everyone can :read, Project if user.blank? # guest user ... else #every signed in user case user.role when User::ROLES[:admin] ...
Hi, I'm using CAS (Central Authentication Service) from Jasig in a client JSF app running on tomcat 6 server. I would like to limit the access to the app just for the users specified in my database rather than all the users which can be authenticated using that CAS service. When the user attempts to log in, I need to check if his userna...