OK I have so much questions regarding my file sharing application that I don't know where to start. My Java knowledge is very limited and I will be satisfied with any help you provide me. That being said, here come the questions. Firstly, I'm working on a user login method that needs to look sort of like this: import java.io.File; imp...
I'm a learner working on a login script. This is the form token statement that I have so far: $_SESSION [ "form_token" ] = md5 ( rand ( time (), true ) ) ; The statement is issued just after the user indicates that he/she wants to login. My limited understanding is that its purpose is to identify a unique user at a unique point in t...
ok i have my GUI installed on the server which has users as administrator as the role of an administrators and user1 which has the role of the guest... I have one project and there are different pages for administrators and guests... when the login screen comes up and the administrator logs in he should be redirected to the admin.aspx p...
I'm fairly new to PHP and am looking for some best practices on how to implement authentication in PHP. I'm an evangelist for Adobe and one of the things that annoys me is when people use Flex/Flash for the login screen. So I want to do a blog post/example on using an HTML/PHP login page and then passing the session information to Flex...
I've seen this question asked already - but none of the answers really gelled for me, so I'm asking again: I want to embed a persistent login form (which will change into a nav bar if logged in) in the header bar for a site. Effectively, I want to be able to inject some controller logic into the layout. After much research, I can see se...
I'm reading about Federated Login for Google Account Users to figure out how I can have a user log in to a web application using their Google Account. So towards the end of the process, Google returns a Google supplied identifier which is appended as 'openid.claimed_id'. This means the web application uses this identifier to recognize ...
Architectural question for a classic ecommerce problem: I researched and didn't see a good solution. We're looking to create a subscription model where a person is given access to content. We're looking for ways to constrict people from sharing login/passwords. The hash combination of password + machine name wont work because our solu...
Hello, I have a website which uses Spring Security. I have realized that when I am logged in the application and I tried to access the website again without closing this session I get a 404 error. I mean if my application has a context name "myApp" I can acess to localhost:8080/myApp when I am not logged in, but when I am logged in and...
I implemented an advanced login dialog for a webstart application. I call it "advanced" because it consists of three screens: one for the actual login (user, password), one for password retrieval, and one for new user registration. The problem I am having is that the webstart support for login dialogs is somewhat poor. The server simply ...
Hi, I have designed login page for one of our website where i have used following resources Login Name and Passowrd lable and textboxes Combo box for multilingual support Submit button. Now to make this page more secure i am planning to use following extra points. CAPTCHA/ RE-CAPTCHA Number of Retry: block after 3 unsuccessfull log...
Hi, I've been trying to automatically log in to specific web page but no success till now. I would really appreciate any help to get me moving.... This is the URL for the login page: https://www.cellcom.co.il/login/pages/default.aspx The first field is for the username and the second is for the password. I've been using the Live HT...
I am about to start on a project that will be running as a windows service listening for incoming connections and doing some things locally then sending a reply message. I understand the basic concepts with sockets and communicating over the network, however the things the service are doing could very easily abused. I would like to authe...
In my web application when i try to login in from Mozilla or chrome, it takes me to the correct url that im redirecting to after authentication, im using form-authentication. But when i try to do that in IE, it just puts my intended URL in the query string as return and gives me the login prompt again. Does any one have any ideas as t...
Hi, In my asp.net website, i would like to implement account lock at login page. I am not using provider for that. Also i would like to Auto-Unlock account after configurable time. As i know microsoft also provide account lock feature with provider, but i have different requirements 1. I am using Oracle database 2. I would not like to...
My project has a Guest folder and an admin folder. Guest has a guest1.aspx page and admin has admin1.aspx page. Now I am trying to figure out a login control which will check the role of the user and send them to the respective pages accordingly. The names are not in the database or the active directory... These names are on the wind...
I have a membership web application. A user is either an administrator or a guest user (only 2 roles) I have an admin folder and a guest folder in this application. I want administrators to access both folders and guest not to access Admin folder. I am not using the .net member/role/profile framework. What's the easiest way to secure ...
i was thinking of using request.urlreferrer, but apparently norton and other antivirus block it. So i need a workaround to that. simple case - i have a login page and after logging in it should open up a popup and the login page should move to page 2. But this can only happen is i came from a certain page. how can i do this. If previous ...
EDIT: I added a bounty, if someone could help me figure out what I am doing wrong, its all yours. Also, I don't really care how this gets done. If there is a library that can help out, or something of that sort that would be great. Since there is no Captcha involved, I should theoretically be able to log into Flickr and add a contac...
I'm using spring-security and struts 2. Most of our pages have content that is unprotected mixed with some protected content (user controls) so it is not like the examples where you go to a certain page and spring-security intercepts everything. Rather I'd like to be able to work with a login form that you access by pressing a login butt...
I am using the following in my webconfig, so that only admin an access the admin folder. <location path="Admin" allowOverride="true"> <system.web> <authorization> <allow roles="Administrators" /> <deny users="*" /> </authorization> </system.web> Now when the guest user tries to access this he is redirected to the Login p...