Authentication is commonly understood as the act of asserting a user's or entity's identity, although in the wider sense it can refer to asserting the truthfulness of any kind of claim. Authentication, like encryption, is a major component in implementing computer security.
5
votes
0answers
1k views
FB auth.logout is being raised after being logged in using the “server-side-workflow” (OAuth 2.0)
NOTE: Our (web) application was working fine until we upgraded to the Oauth 2.0 workflow this past weekend.
When a user "connects with facebook" to our (web) application we log them in to Facebook ...
4
votes
0answers
80 views
Desktop web game policy change - what parameters are allowed?
We have a browser based game which uses Facebook Connect through an AppID that we used to run the same game in a canvas until Fb Credits were introduced and we were forced to shut it down. Now, we ...
4
votes
0answers
282 views
reauthenticate feature has changed its behavior?
In my application to be able to switch to another user, I use the "auth_type=reauthenticate" parameter for the "https://www.facebook.com/dialog/oauth" URL. This worked for a long time. I was able to ...
4
votes
0answers
114 views
Python/Heroku Facebook app infinite loop in my local environment
So I followed all the steps to create a Facebook/Heroku app, and it's working fine at
http://lokalt.herokuapp.com/
I then set-up a local environment but it doesn't work that well, it basically ...
heroku
4
votes
0answers
179 views
Call WCF Resfull methods with using OAUTH 2.0
I am looking for any article or forum thread, where I could find information how to make oauth 2.0 authentication. Especially I have MVC 3 application and WCF Restfull API. And I have to call API ...
4
votes
0answers
799 views
RavenDB: Windows user credentials not sufficient for write access
I'm trying to use the RavenDB server web/silverlight UI to create databases and test data, and am being asked for a username/password. This is fine, and the documentation on ...
4
votes
0answers
496 views
Opening Excel file in IE provokes three logons?
I have a classic ASP website that posts a form to a page that then generates and streams an Excel file out to users. Actually, its a raw HTML table which I send with:
Response.AddHeader ...
4
votes
0answers
533 views
How to Configuring Mutual Authentication on MSDTC?
How authentication in general (Mutual Authentication as a special case) works in MSDTC and how to configure Mutual Authentication on MSDTC??
I've a custom application (archival solution), a windows ...
4
votes
0answers
201 views
It it possible to integrate OWA and OpenID?
Is it possible to integrate OWA (Outlook Web Access) and OpenID with a standard, existing component? If not, is it theoretically possible with a straightforward integration plugin (most probably using ...
3
votes
0answers
58 views
Symfony2: automatically logging in users from their Windows session
In Symfony2 I have built an intranet. It currently uses the FOSUserBundle and an LDAP bundle to log users in, and I would like to add the functionality to log in user from their session in Windows.
I ...
3
votes
0answers
81 views
Accessing Glassfish container managed login page using iPhone Safari from outside LAN results in “server stopped responding” error
Question
How do I allow unauthenticated users to be served a login.xhtml JSF2.0 Facelet page over https when attempting access to security constrained resources or otherwise requiring login ...
3
votes
0answers
143 views
Using CompoundJs with Passport
I'm trying to use Passport with Compound Js. I've configured the passport in an initialization file. as below
var passport = require('passport')
, LocalStrategy = require('passport-local').Strategy;
...
3
votes
0answers
379 views
Could not fulfill request (error code 7) via openActiveSessionWithReadPermissions with Facebook test users
Background
Recently upgraded to Facebook SDK 3.2
Tested on both device and simulator (iOS 5.1 through 6.1)
Error is only present when attempting to authenticate Facebook test users.
Error
The ...
3
votes
0answers
95 views
handle social networks authentication with own API backend
How can I handle authentication via OAuth for some social networks in my own backend?
My first approach with facebook was
Authenticate the client directly with facebook and get the accessToken
...
3
votes
0answers
255 views
Chrome asks for proxy authentication every page I open, IE doesnt
Chrome used to run properly, when all of sudden it started asking for my proxy's username and password on every page I open. After I enter them, I see the page, but then I need to type them again ...
google-chrome
3
votes
0answers
580 views
Windows Authentication for WCF service with Silverlight 5, IIS 7.5
I have a Silverlight 5 Prism application with a (regular) WCF service in an ASP.net project. I'm using IIS 7.5 to host it on the localhost. I followed all the steps in
How to: Use Windows ...
3
votes
0answers
247 views
CAS authentication of a RESTful web service
My application needs to access a RESTful web service running on a different server. This web service uses CAS authentication, and when consuming it through the browser it will redirect to CAS login if ...
3
votes
0answers
535 views
Adding HTTP Basic Authentication to some routes in routes.rb
I want to add HTTP Basic Authentication to a some of my routes in my routes.rb file.
I got the idea from http://asciicasts.com/episodes/271-resque
routes.rb
Coderbits::Application.routes.draw do
...
3
votes
0answers
254 views
How to authenticate with SharePoint Online for a PHP app?
We have our PHP application that requires authentication, and for our clients that run SharePoint we'd like to offer some kind of SSO service, so that the users can use their SharePoint credentials ...
3
votes
0answers
668 views
SoundCloud's Facebook authentication not working
I still experience exactly the bug described here: SoundCloud's connect with Facebook not working in iOS.
My app is built in Adobe AIR. The app's name is CloudDeck (clouddeck.net).
The ...
3
votes
0answers
458 views
Use Google OpenID from Android device without requiring username/password
Currently, I can authenticate against my webapp using OpenID (with Google as the provider). My Android app goes through the usual OpenID authentication flow. However, I would like to use the Google ...
3
votes
0answers
2k views
JBoss mutual certificate authentication fails on SSL Handshake
I followed all the steps in this blogpost http://virgo47.wordpress.com/2010/08/23/tomcat-web-application-with-ssl-client-certificates/ except for the fact that I'm using JBoss7.0.2 and not the 6.x ...
3
votes
0answers
501 views
Sorcery error for Facebook login on Heroku
I'm using Noam Ben Ari's awesome gem Sorcery (https://github.com/NoamB/sorcery/) and there is an issue I can't figure out.
Facebook login works fine on local server, but not on Heroku:
...
3
votes
0answers
2k views
wsimport Xauthfile error
I am trying to generate the java help classes that I need for a client (a.k.a consumer) for a SSL-protected web service (on Microsoft Biztalk) that is external to our company network. We can access it ...
3
votes
0answers
1k views
Need a “SOAP Client with WSSE authentication” … does Visual Studio fit this need?
The Web Service I need to connect to has the requirement above. I can consume this web service in VS 2008 but cannot use it because I don't know how to authenticate. I need to specify credentails, ...
3
votes
0answers
119 views
How long does a ClientLogin for Google Data API stay valid/usable?
On this google documentation page I found out that you can reuse previously retrieved tokens. Now, I'm currently having trouble (unpredictable results) with retrieving a key in the first place, so ...
3
votes
0answers
515 views
Problem with authentication from different domains using Django sessions
I am developing a bookmarklet which essentially adds a toolbar to a web page user is currently looking at. To use it, user needs to be logged in.
To login user clicks on 'Singin' which displays a ...
2
votes
0answers
30 views
how can i combine Form and digest authentication?
I have an application that use Form authentication. For security purposes I have to change the underlying method to digest authentication including nonce. But it seems there is no such custom solution ...
2
votes
0answers
35 views
Compare candidate password with bcrypt hash in Mongo
I want to make a Mongo FindAndModify request which finds a user by email and password and then updates it in one request, to be atomic. With basic MD5 hashed passwords and predefined salt I'd ...
2
votes
0answers
32 views
How to authenticate against Spring Security from Android app?
I'm building a WebApp using Spring. It is secured by Spring Security and should be accessed from a Android app too. In the web-version i'm using a basic login page.
To authenticate from Android i ...
2
votes
0answers
14 views
different 401 errors depending on where authorization happens
I have a question regarding authorization in MVC3.
I'm currently looking at dening certain user access to the application.
I can du this in 2 ways. in the web.config (for global settings) or on the ...
2
votes
0answers
49 views
Remaining logged into Google App Engine after logging out of a Google account
I have a Google App Engine Java application which is embedded (via a Gadget) in a Google Site. The app is built for a Google Apps customer and therefore is set to require Google authentication with ...
google-app-engine
2
votes
0answers
49 views
Java contactless smard card authenicate
I am new to nfc related development.i want to build java application which used to read and write secure element in mifare desfire ev1 smart card.so i found free library.but the problem is i want to ...
2
votes
0answers
50 views
Examples for Aspect-Oriented HTTP Authentication in Objective-C
I'm looking for some examples, tips, advice, some general sense of direction for implementing (or finding an implementation of) an aspect-oriented HTTP authentication library.
For a little ...
2
votes
0answers
71 views
Sharing session across rails apps on different subdomains
I am trying to implement a single-sign-on solution for multiple rails (v3.2) apps hosted at different subdomains of example.com
One app serves as an identity provider, uses devise for auth, and sits ...
2
votes
0answers
83 views
how to specify the group to authenticate user in ldaploginmodule and jboss configuration
I would like to authenticate the user only if he in a specific group.
To my test I have two users:
one user is in the FIRST GROUP
other is in de SECOND GROUP
I have an active directory :
...
2
votes
0answers
123 views
AuthorizeAttribute not working if URL has query string?
In an ASP.NET MVC3 web application, an entire controller has an [Authorize] attribute attached to it. So if the user is not logged in or the session expired, they get redirected to the login page. ...
2
votes
0answers
43 views
Copying file to sharepoint library in R
I am trying to copy files from a network drive location to a sharepoint library in R. The sharepoint library location requires user authentication and I was wondering how I can copy these files and ...
2
votes
0answers
117 views
Encrypted password in Berkeley DB for vsftpd using pam_userdb.so
I am trying to install a vsftpd with some virtual users using the Berkeley DB. I have mainly followed this guide: http://www.neant.ro/2012/04/secure-ftp-with-vsftpd/ . Everything works fine, but I ...
2
votes
0answers
119 views
Permission request screen on android with App Engine backend
I am using app engine as backend for an android app. I want users of my app to authenticate with their google accounts and on the backend, I use the users service to access the user details.This ...
2
votes
0answers
44 views
How do I handle authentication for a REST service?
When I am writing a web service that needs authentication, I usually have to choose between two options:
I can have a dedicated authentication call that creates a session. All subsequent calls are ...
2
votes
0answers
87 views
Architectural Suggestions for WCF Service and App Authentication
Spent a lot of time reading up on WCF authentication but still am at a loss to what exactly I should do to meet my requirements. Was hoping someone could help me find the way.
My WCF service users ...
2
votes
0answers
71 views
How to create own authTokenType in Android?
I want to create an authentication token to my account. I create own account type, and add my account to the device
I create an app, that make accounts whit my account type. I create another app, that ...
2
votes
0answers
28 views
Communicating with Google OpenID server returns a 400
I'm trying to implement OpenId on Android and keep getting a 400 error. I'm guessing that I'm formatting my parameters incorrectly.
I'm basing the parameters on this browser line which correctly ...
2
votes
0answers
158 views
Symfony 2 custom authentication provider user id is 0 (zero)
I have written my own Symfony 2 authentication provider for HybridAuth 2 library, and the authentication process works just fine, but after the user is authenticated successfuly, the page refreshes ...
2
votes
0answers
52 views
Security Concern with Cross/Multi Domain Authentication
We have a multi-domain platform that uses a central domain for authentication and api operations.
API & Authentication + Account Management
https://example.com
Read Only + Widget Actions
...
2
votes
0answers
82 views
Using SSL from a CA for server + allowing ssl client authorization that is self-signed with Node.js
First time working with SSL client authentication. The way it works with node.js while mixing with a certificate issued by a third-party CA (in this case it is StartSSL) is confusing me.
On ...
2
votes
0answers
109 views
Is it possible to use both S3 Query String Authentication and HTTP caching?
I have the following requirements for a (Rails) web application that uses S3/Cloudfront for image storage:
A user may only see an image if they are logged in. If the user sends an image URL to a ...
2
votes
0answers
138 views
Adding Spring Security @Secured annotation with the Spring Web Service disables Web Service endpoint
Problem: When I add @Secured annotation at a web service method, the endpoint is disabled means I get No endpoint mapping found error when invoking the ws endpoint.
Background: My Spring Web Service ...
2
votes
0answers
150 views
Delphi XE3 / Multiple Connections for a single user
I am trying to figure the best / "correct" place to put the following logic in my delphi datasnap server.
A user connects to the server, and using the credentials provided I validate them using a ...
Community Bulletin
Related Tags
php × 298asp.net × 269
facebook × 260c# × 236
java × 231
ruby-on-rails × 203
security × 188
login × 172
android × 159wcf × 152
authorization × 147
oauth × 123
web-services × 119
rest × 111
.net × 102
javascript × 101
cookies × 99
django × 96
cakephp × 95
windows × 93
session × 93
devise × 93
ldap × 91
api × 89
ios × 81
