hey all, so i've scrapped all the crappy tutorials that have never worked for one reason or another, and decided to roll out my own registration/login feature on my own, and to my surprise it actually works! But what i don't get is how the logic behind keeping somebody logged in works! Like, once they've logged in, do i just $_POST the...
I noticed that most sites send the passwords as plain text over HTTPS to the server. Is there any advantage if instead of that I sent the hash of the password to the server? Would it be more secure? ...
We are using Open Directory on a Mac OS X Server 10.6. Our goal is to enforce password changes for users which can easily be done through Open Directory. However, we must first bind the clients to the Open Directory server. The issue we are running into is that most the the user accounts on the clients match the account on Open Directo...
In my login page I'm using FormsAuthentication.RedirectFromLoginPage() to redirect to Home page after the user is validated. But it doesn't seem to obey CreatePersistenceCookie parameter. I have searched in Google and modified my Web.Config but still Remember Me functionality does not work. this is my sample code structure (using asp.ne...
I'm trying to find a way when a user logs in the system to automatically log off and perform a background script. Specifically I will need to remove the local user account but keep the home folder in place. This will only need to be done once but I'm not sure of the best approach. The purpose of logging in once is to capture the accoun...
Hi,I'm a bit new to Java and more to connections stuff with it. I'm trying to create a program to connect to a website ("www.buybackprofesional.com") where I would like to download pictures and get some text from cars (after the login you have to enter a plate number to access a car's file). This is what I have right now, but it always ...
I've a problem that annoy me very much. It's because I'm trying to make a PHP login script. But when I log in correctly, it'll not let me in. If I comment out some lines (I'll mark them), the script works, but that's the code I was planning to use to check in on every page, so people don't can come in if they don't should have access. ...
Hi, I have to access controls in LayoutTemplate in LoginControl. So in PageLoad() I do something like this: foreach(Control control in loginControl.Controls){ (control As Label).Text =... blah nlah ; //do something with control, } In LayoutTemplate I have some labels, etc, but I can "see" them after PostBack and I don't have a...
1) I am using a middleware to log users ipaddress,but this should happen only once,and also only after user is authenticated.How can I do this? 2)In my application,I have login for users which is different from admin login.Now,when admin clicks logout,he is directed to users login page.But,I want to direct to admin login page.How can I ...
I'm not an iPhone developer but I'm starting on a project that is based on a PHP back-end server supplying data to iPhone useragents and I'm wondering where to start with sessions/security. With browsers, I can simply pass a cookie (containing a session id) on login. However, I'm wondering if the iPhone is different. Do iPhone apps hav...
Hello, I am trying to use an alert dialog to prompt for a username and a password in android. I have found this code here: if (token.equals("Not Found")) { LayoutInflater factory = LayoutInflater.from(this); final View textEntryView = factory.inflate(R.layout.userpasslayout, null); AlertDialog....
I have a login problem. First i am using SSL while logging. When i log in, i am creating a cookie like this. when i check if it is secure the answer is yes. FormsAuthenticationTicket authTicket = new FormsAuthenticationTicket(1, // version UserName.Text, ...
Hi, I've been through different tutorials and this website, but couldn't find a proper solution. On the other hand, I've seen apps logging into websites and requesting further information, so I'm sure there's a way to get this working, but maybe my approach is all wrong. Here's what I'm trying to do: I want to log into a website that n...
Hi All, I am using the JAX-RS REST service on a GlassFIsh server (JDK6 application). I secured my REST application with @RolesAllowed() annotations. I have a Dojo web client that need access to the REST resources. I am using FORM authentication on the REST server but happy to change it if there is a better way. When I access my resource...
I have a web app that is secured in the application.cfc . In OnRequestStart I check for <cfif not isDefined("session.auth.isLoggedIn")> and if not logged in present the login form. All is fine and dandy as far as real people are concerned, but I want to facilitate a computer to make an http call and only be allowed if authenticated ...
Hi, I am using Forms Authentication in my VS-2005 website. In case of wrong credentials or while explicitly requesting protected pages the website is able to redirect user to login page. However, when correct login credentials are provided the application is not able to redirect the user to the desired page. While debugging I found tha...
Is it possible to retrieve the current user login used on sharepoint from an embedded Silverlight 4 application? ...
Many desktop applications use SQL tables to manage their users permissions and roles. In fact they restrict access to some parts of application in their application code. It means they need a constant connection string to SQL server with maximum permissions. My target is C# 2010, Sql Server 2005 or 2008. What if with any reason someone...
Is it possible to get JBoss 5.x to secure webpages, forcing a login validated against users and passwords in a database without writing your own implementation, just configuring what already exists? It is? At the moment I flat out don't believe you, prove it! ...
I have a GUI when i log in i create a cookie and it encrypt it. I am usin SSL. I check in the Login.aspx page if the cookie is secure, which it is. but then before going to the default page it goes to the Global.ascx page. Here in the Application_AuthenticateRequest it gets the cookie and decrypts it for the default page.. Now i kno...