I want to use the RequireHttpsAttribute to prevent unsecured HTTP requests from being sent to an action method. C# [RequireHttps] //apply to all actions in controller public class SomeController { [RequireHttps] //apply to this action only public ActionResult SomeAction() { ... } } VB <RequireHttps()> _ Publ...
I'm currently having a self signed certificate for my HTTPS webserver. In my java program there is a SSLSocketFactory that will create a socket to the webserver. The default implementation of sun blocks the self signed certificate. With an own implementation of a X509TrustManager I can only check whether the date of the certificate is v...
Besides simply redirecting from HTTP to HTTPS, the RequireHttps attribute also changes my URL's question mark ? to %3F. Unsurprisingly, that breaks things. Why? How do I fix it? scenario: I try to navigate to http://www.example.com/message/compose But let's say I don't have permission to view that page. <HandleError()> _ Public Cl...
I am looking for sample code or documentation on how to use client side certificates with SSL under MacOSX. The server I want to connect to, does speak a custom ascii protocol but allows only ssl connections with registered client certificates. I already wrote a client in Java that works. In Java I initialized a SSLContext with a Ke...
Hello, I'm doing some experimenting with HttpWebRequest, and need to get it working with SSL. It does work on some websites (PayPal, for instance), but not the ones I actually want it working on, such as this community website (URL is also in the code sample). Why is this? The certificates (I'm assuming this is where the problem might b...
I use this code which is taken from MVC futures and attach the Attribute RequireSsl to an action. It works with simple Url like http://localhost/de/Account/Login, but if I have a querystring, the questionmark gets url encoded and the request fails. http://localhost/de/Account/Login?test=omg redirects to https://localhost/de/Account/Log...
Hi All, I am trying to send an email in ASP.NET using system.net.mail the problem is that the outgoing server requires a secure connection (SSL) Does anyone know how I can implement this? Thanks! ...
I use RequireSsl attribute to redirect to a https url if an action is decorated with it. RequireSsl I now need a good way to link back to url that dont use https. This post explains my problem in clear english: link to http I am not shure what the easiest way is. In old school ASP.NET I used secureWebPages on codeproject. To be hones...
Hi, I have a web site that work with external Credit Card Processing (cybersource) when user want to buy the webpage redirect to cybersource the user fill his details and click buy, the page redirect to my web site and show this message "the current web page is trying to open a site on your intranet do you want to allow this" the u...
My Apache server works fine without -DSSL, but does not start with SSL. This happened after I re-install the certificate because of expiration. (it used to work before) I would love to have some tool to check up if my newer setup of ssl key and certificate is correct or not. That would include permission, ownership etc.. Or is there a...
I'm fairly new to HTTPS/SSL/TLS and I'm a bit confused over what exactly the clients are supposed to present when authenticating with certificates. I'm writing a Java client that needs to do a simple POST of data to a particular URL. That part works fine, the only problem is it's supposed to be done over HTTPS. The HTTPS part is fairly ...
In Linux Firefox, if in case there is any error related to SSL/TLS, which source file does it refer to in order to generate the error code and pop up window (or error page)? ...
Anyone know of SSL / https support for Picasaweb? I have a web site that uses SSL, but trying to display Picasaweb photos is a problem. IE8 keeps complaining with a pop-up "Do you want to view only the webpage content that was delivered securely?" Asking all possible web page users to change their IE8 settings sounds unfriendly (and u...
How do you secure a UniData session using UniObjects for .net? The documentation is severely lacking. The UniObjects for Java documentation has a whole chapter on SSL. EDIT The UniObjects .net documentation says this about the UniSession.EncryptionType property: public int EncryptionType {get; set} This property gets or sets ...
I work at company X and we want to engage in a B2B transaction with company Y. In doing so, Y is requiring client side authentication; they already provide server-side authentication - so this would be a mutual SSL transaction. My understanding is that I simply need to provide my CA-signed cert as part of my client side HTTPS communica...
I have an application which uses 2 web sites (so I guess that is 2 applications...). The user logs on via a https website and is then diverted to a unsecure http website application on successful logon (using forms authentication). I (and others) have started getting the message "The current web page is trying to open a site in your ...
Does an SSL request show the page being requested or just the domain? I am trying to hide files in a directory on a webserver by using random folder names. i.e. https://www.mydomain.com/DKSLW3020SLK43J9S0935KJSLK350S9/MyFile.pdf The random folder name providing the security instead of a password. The risk of this is any third party i...
Hi, Im sure ive seen a feature in apache that can rewrite urls so you can point domain2.com at domain1.com and it rewrites everything domain1.com to domain2.com on the fly. is there a similar thing for https? In apache, if i go to https://mysite.com, the page itself is over https, but all images/links are http://. Is there way to auto ...
How do I do this? It seems the SilverLight 2.0 HttpWebRequest does not allow you to set Credentials or set the Authorization header. ...
Hi, I am having troubles configuring JBoss for a secure environment. Here's our environment: We have an F5 Loadbalancer which has our domain's wildcard certificate. I have several applications running on JBoss on a server called peanut. From within our firewall, I can run the application as http://peanut.mydomain.com:8080 From the ...