Questions tagged [authentication]

0 votes
1 replies
Why would authorization logic on OpenCart Admin Panel design like this (weired)?
We have lots of authentication and authorization methods to use (OAuth, 2FA, etc.) to ensure the security of our account on e-commerce platform....
0 votes
0 replies
What is the limit on the number of times you can sign-in, in a given time frame, using Google authentication?
Our product allows customers several different sign-in mechanisms, including Google. I've been writing test automation using Google authenticati...
0 votes
0 replies
Framework7 - How can I call cordova.plugin.http in routes.js file?
I have installed cordova-plugin-advanced-http in my framework7 project. Just want to make a request in async routes. But I don't know how can I g...
0 votes
1 replies
How to create a secure API using Firebase Auth without installing Firebase SDK on the client
I'm trying to create an API for our app using Express.js endpoints that connect to our Firebase Cloud Firestore database. A main component of res...
0 votes
0 replies
Ruby on Rails ActionCable: Should I manually close a connection in case of an authentication token expiration?
We use token-based authentication for our application. Token lifetime is limited. The flow is clear for a plain HTTP API -- the token gets verif...
0 votes
1 replies
Using a string instead of URL as an entityID with SAML
We are implementing a SSO with SAML and Moodle 3.3's plugin https://moodle.org/plugins/auth_saml2 Usually moodle provides an entityID as an URL...
0 votes
2 replies
How to avoid duplicating routes for user edit page?
I'm making a simple application which have only two kind of users: Admin and SimpleUser. I want my Gemfile to containt as little gems as possible...
asked 4 months ago
1 votes
0 replies
How are you supposed to store access tokens?
We are building an application with a React/Redux frontend and a NodeJS/Express Backend. I, not being a security expert, opted to go with Auth0 t...
0 votes
0 replies
Nginx, Traefik and forward authentication
I'm trying to use nginx as reverse proxy for traditional services and traefik to route traffic to containers. Some services are authenticated thr...
asked 4 months ago
0 votes
1 replies
Add custom claim in authentication filter. Get user id in filter. Spring boot
I want to add user's id as custom claim into my token. But i cant get users id in filter because dependency injection isnt working in filters. I...
0 votes
0 replies
Behavior of Asp Net Core CookieAuthentication on expiration
I have seen many questions and answers about setting the ExpirationTimeSpan of CookieAuthentication in Asp Net Core. What I have been unable to...
asked 4 months ago
1 votes
1 replies
FLUTTER How to implement Digest Authentification
to implement a normal HTTP Request is very easy. But to implement a Digest Authentification I do not really know how to implement. In the best...
0 votes
0 replies
Python libary not requesting access token
So i'm trying to get the access token using the library rauth,and urllib and json. So i'm trying to produce a access token with the token type of...
0 votes
0 replies
Do JWT really resolve having a central Auth Service in my backend?
I read on multiple pages that JWT should resolve the problem that I need a central Auth service for reference tokens or alike (e.g. http://alexan...
asked 4 months ago
0 votes
1 replies
AcquireToken method with User Credential throwing error while trying to fetch token
I am trying to fetch token from ADFS server with user credentials at then it is throwing this error MSIS9605: The client is not allowed to access...
asked 4 months ago
0 votes
0 replies
how to get exchange calendar data using rest api?
How to get authenticate using client secret in the AAD app? How to generate the access token and how to get the data from office 365? 0 0 An...
2 votes
1 replies
ServiceStack - Email Confirmation
I'm trying to implement email confirmation in ServiceStack. I've spent 5 days trying to make sense of all the authentication mechanism, and I mus...
0 votes
0 replies
How to preserve auth header on 302 redirect with Request module
I'm using NodeJS and the Request module to make API calls within my app. A new third-party service I am trying to integrate with has a base URL t...
asked 4 months ago
0 votes
0 replies
ASP.NET Core 2.2 Identity - UserManager.ResetPasswordAsync always Fails with Invalid Token
As per the title I have attempted to setup a simple ASP.NET Core 2.2 Web API project (so nothing to do with MVC Razor Pages or an UI). I have be...
0 votes
1 replies
How to redirect user based on the user's role to different activities in android
I'm new to android development. I would like to create an app with at least 2 user roles. I want the users to be redirected to different activiti...
0 votes
0 replies
Geting user id from Trello's API (client.js)
I'm using Trello's client.js library to interact with their API. I'm calling Trello.authorize(); to successfully authenticate the user. I can ret...
asked 4 months ago
0 votes
0 replies
Getting HttpResponse statusCode 302 when uses different HttpClient object for Auth and other API calls
I am calling CREATE_USER endpoint of one of the client and it needs CSRFTOKEN so am calling AUTH endpoint of the same client and using that CSRF...
0 votes
0 replies
Does someone know any source for industry standards in how to handle locked accounts.. e.g. can the user request to unlock their account?
I am trying to improve support desk performance, educating users to use the system and reduce tickets. Does someone know the industry standards...
asked 4 months ago
0 votes
1 replies
POST request from Node to another server with windows credentials
I am trying to send a post request to a service from my node server. Node is running on http://localhost:3000. The method I am trying to reach is...
0 votes
0 replies
Unable to sucessfully auth using X.509 authentication
I have an application that uses a public API from a company called MicroFocus. I am not trying to really do to much with the API at this time, mo...
asked 4 months ago