I have a site I am working on, on this site users can login to get more private information. My client has another site elseware that uses nt authentication for accessing it. What they want to do is have a button on the site I am working on under the private area that will send them to the ntauthenticated site, but not require them to lo...
We have an ASP.NET application that manages it's own User, Roles and Permission database and we have recently added a field to the User table to hold the Windows domain account. I would like to make it so that the user doesn't have to physically log in to our application, but rather would be automatically logged in based on the curre...
And... which is easiest to implement? ...
I'm attempting to convert a home-grown login system to the standard asp.net login control included in .net. I want all communication on the website for a user not logged in to be in clear text, but lock everything in SSL once the user logs in - including the transmission of the username and password. I had this working before by loadin...
Does anybody know if there is a feasible way on Windows XP to programmatically create and configure a user account so that after logging in from the console (no terminal services) a specific app is launched and the user is "locked" to that app ? The user should be prevented from doing anything else with the system (e.g.: no ctrl+alt+can...
Is it possible to automount a TrueCrypt volume when logging in to Ubuntu 8.04? It's already storing the wireless network keys using the Seahorse password manager. Could TrueCrypt be made to fetch its volume password from the same keyring? Currently this would seem like the most convenient way to store my source code on the USB stick I ca...
What are the community's recommendations for an user login and management module for a custom-designed Website? The requirements: E-mail address + security-checked password Mechanism of recovering lost password Database of usernames, managed by privileged users ("administrators") Another data item is retained per user (such as...
How do I support redundancy on my OpenID login website? For instance, I have users that demand 100% uptime (yeah, right, but let's get as close as we can). Some of them use less available providers (ie, myphpid on their own website, or an ID on a startup which has frequent downtime). Now I can shuttle them to a more reliable provider...
Here's the scenario: You have a Windows server that users remotely connect to via RDP. You want your program (which runs as a service) to know who is currently connected. This may or may not include an interactive console session. Please note that this is the not the same as just retrieving the current interactive user. I'm guessing t...
Currently Tomcat's login support redirects users back to where they initially were when the application figured out they weren't logged in. For this particular application I need to force them to always go back to index.jsp. I'm pretty sure this is a simple configuration option in the WAR's web.xml, but I haven't found the answer in go...
Hi, Is it possible to secure only the Login.aspx page (and the postback) and not the whole site in IIS? We are looking to do this specifically with a SharePoint site running Forms Based Authentication against our Active Directory. Links to this will be helpful. This is what we have done so far: 1. Setup SharePoint to use FBA against ...
i know this is very much a "how long is a piece of string" type of question, however i have recently inherited a couple of applications that run as windows services, and i am having problems providing a gui (accessible from a context menu in system tray) with both of them. before you ask, the reason why we need a gui for a windows servi...
I am trying to to set up the login control to remember the login credentials of a user who has previously entered their user name and password successfully. I set the remember me property to true, but it doesnt seem to triger any events where I could read the cookie and auto login the user. Is there a straightforward mechanism to accom...
I am developing a web based intranet for my company. I just want to know is it a good thing for users to login the application using the active directory login details or shall i create a login together with the application db. If there is anything better that this please suggest. This is my first application development so need help fr...
I'm new to Spring Security. How do I add an event listener which will be called as a user logs in successfully? Also I need to get some kind of unique session ID in this listener which should be available further on. I need this ID to synchronize with another server. ...
Hello there!!! I asked here about a protocol that I was asked to implement, and how secure it was. Since it seemed clear from the very beginning that it was shit. Being so I ask: Can you guys point me to some very simple login protocol (I am null at cryptography systems)?? I am developing both server and client side of the application ...
Is there a control out in the world that allows a user to log in to a website with MS Passport (Windows Live ID, whatever), Facebook, OpenID, etc. all in one control? Thanks, everyone! ...
I am starting a a new web development project and I am tired of coding login systems. This is the kind of thing that must have been done dozens of times before. I really want to use someone else's code, because it is easier than rolling my own, and it will likely be better. I prefer open source for all the usual reasons, but mostly I wan...
I'm setting up my first site using the asp authentication provider and using the built in asp.net login control. My question, is the password encrypted or hashed as it's sent to the server using the asp.net login control? or do I need to use https/ssl to accomplish this? Thanks ...
Ok simple question. I have a JSF application, containing a login page. The problem is if the user loads the login page, leaves it for a while, then tries to login the session expires and a ViewExpiredException is thrown. I could redirect back to the login when this happens, but that isn't very smooth. How can I allow this flow to properl...