I've noticed that on some sites, when you request a password reminder or sign in, they'll tell you if the user doesn't exist (I think Meetup does this). Other sites will simply say "the user/password combination is invalid" (Google, I believe, does this). Is there a security reason for not revealing the existence of a user id? ...
Can anyone please help me on how to create a login form in java swing by using a database connection. ...
I use a dbml for my Data Access Layer to provide the data that i need in my app. When i connect from the server explorer everything seems fine. I choose to use my windows authentication and the connection test shows everything works just fine. When i Build my solution and run it on my IIS it says that i'm using a login that is not workin...
What is the pros and cons in using FormsAuthentication to persist a login cookie? I see that StackOverflow ignore FormsAuthentication and instead implemented a different strategy to persist a login cookie. Pros Out of the box implementation for persistent login feature. Cons The login feature depends on the machine key which mean...
I'm implementing this kink of login: http://jaspan.com/improved_persistent_login_cookie_best_practice In this design a new token issued to the user each new login. So it tells me that I need to Now I need to implement a session, for this login. I'd like to implement session like stackoverflow, so people can have session as soon as they...
I'm working on an application to run base camps website only. I need it to work when you login and press "Remember me on this computer" I'm not sure how to set it up to actually remember your login and keep you logged in when you come back to the app. Is there a way to 'save' the state of the application when you quite it and come bac...
How can i use .net webservice to make login app in android phone app? i have the Main.xml in layout like this <?xml version="1.0" encoding="utf-8"?> <LinearLayout xmlns:android="http://schemas.android.com/apk/res/android" android:orientation="vertical" android:layout_width="fill_parent" android:layout_height="fill_parent"> <E...
I am in the process of moving from a "username/password" system to one that uses email for login. I don't think that there's any horrible problem with allowing either email or username for login, and I remember seeing sites that I consider somewhat respectable doing it as well, but I'd like to be aware of any major security flaws that I...
I'm using the Facebook JS SDK for single-sign with my rails app. I translated the php code from the Facebook example (at the bottom of the page under "Single Sign-on with the JavaScript SDK") into ruby. This appeared to be working great but I've noticed one user that gets continual redirects when trying to login. The logs look like: Pr...
How to: Make an Asp.Net application to recognize a plone authenticated user (his/her id, roles and any other available data) and vice-versa? Show plone contents inside my asp.net application or show some application-specific data inside plone? Insert plone contents from inside an asp.net application? ...
I'm new to both java and the android so I apologize if I'm missing something obvious. I'm trying to allow a user to stay logged in to an application. What is the best way to do this? Can anybody point me to a tutorial? I've searched the web and can't seem to find anything. Thanks! ...
Hi there! We have 2 applications - 1 windows and 1 web (asp.net). Winforms runs on the customer's machine where as the website is hosted within our company. The winforms has a link which opens the web app in a browser window. The web app is secured so the login page is shown. The username and password is the same as the windows app logi...
i want to enable openid user login my site. which is best framework to do it ? thanks ...
Lately there has been a problem running some of our reports in access. Last week(the beginning of the week) we tried to run a reports lets call it A and it kept giving us the log in prompt. Even when the correct user-name and password were entered the log in box would just keep reappearing until cancel was pressed. I clicked the debug an...
Hi everyone, I need your help I've a MVC project that uses Jquery, where I've implemented a mechanism of "Remember Me" using cookies to save, clear and retrieve the login and password. I also have two screens where the user does the login. I want that both logins manipulate the same cookie. I've got to implement it, but I've realized ...
So my site basically has 2 kinds of ways to login, one of them is for the common users, who get the regular screen that asks them for username and password, the other way its for staff. The staff login should redirect them to the admin site after logging in, but for some reason the redirect doesnt happen, it stays on the same login page...
Hello, I have a joomla page which updates regularly using AJAX. Depending on other (external) events, the user may get logged out of the site. I would like to be able to tell from Javascript whether the user is (still) logged in. I am looking for some sort of Javascript function which will make a call to the server and will return tr...
$(document).ready(function() { $("form#login_form").submit(function() { var login_username = $('#login_username').attr('value'); var login_password = $('#login_password').attr('value'); type: "POST", $.ajax({ url: "login.php", data: "username="+ login_username...
Hey all, I'm very new to RoR, and am trying to implement a user login system. I've got most of it working, but I'm trying to work out how I refer to the logged in user across many different views/controllers etc. Can I store the user in the session? Or is there a better way to do it? Thanks for reading ...
Hi there , i just started with PHP and i wanted to implement a Login. Rather than inventing the Wheel : is there any Online Specification for a Login System ? Things a should care about : detect Brute Force attacks implement password recovery maybe openID and/or with facebook account prevent SQL injection ..... So i think this has ...