TLDR: Use environment variables! I think @Bryce’s comment offers an answer, which I’ll just flush out. It seems one approach Heroku recommends is to use environment variables to store sensitive information (API key strings, database passwords). So survey your code and see in which you have sensitive data. Then create environment variables (in your .bashrc … Read more
What I’ve used successfully to access files on a computer is the following code: #region imports [DllImport(“advapi32.dll”, SetLastError = true)] private static extern bool LogonUser(string lpszUsername, string lpszDomain, string lpszPassword, int dwLogonType, int dwLogonProvider, ref IntPtr phToken); [DllImport(“kernel32.dll”, CharSet = CharSet.Auto, SetLastError = true)] private static extern bool CloseHandle(IntPtr handle ); [DllImport(“advapi32.dll”, CharSet = CharSet.Auto, … Read more
Try this: CredentialCache cc = new CredentialCache(); cc.Add( new Uri(“http://intranet/”), “NTLM”, new NetworkCredential(“username”, “pass”, “domain”)); client.Credentials = cc;
I suspect that the web page that you are trying to access uses Forms Authentication. This means that you will have to provide a valid authentication cookie if you want to be able to access protected resources. And in order to obtain a valid authentication cookie you will have to first authenticate yourself by sending … Read more
You can use the Windows Credential Management API. This way you will ask the user for the password only once and then store the password in Windows Credentials Manager. Next time your application starts and it needs to use the password it will read it from Windows Credentials Manager. One can use the Windows Credential … Read more
Answer: There was a discussion about this on a bug reported on Google’s Issue Tracker – this has become disallowed due to security concerns. There is, therefore, no current way to use an Apps Script Web App as a JavaScript origin at all. More Information: The bug report in question: Fail to Add *.googleusercontent.com into … Read more
Git for Windows has its own trust store of trusted certificates which is normally located in the file Git for Windows <=1.9: [Git installdir]\bin\curl-ca-bundle.crt (e.g., C:\Program Files (x86)\Git\bin\curl-ca-bundle.crt; configured by the key http.sslCAinfo in [Git installdir]\etc\gitconfig). Git for Windows >= 2.0: [Git installdir]\mingwXX\ssl\certs\ca-bundle.crt where XX stands for 32 or 64 (e.g., C:\Program Files\Git\mingw64\ssl\certs\ca-bundle.crt; configured by … Read more
The Windows API will not expose the information you need, which is why Powershell can’t get to them. Its an intentional feature of the security subsystem. The only way for this to work is for the Linux machines to trust the calling machine, such as joining them to an Active Directory (or any kerberos setup … Read more
Here’s a summary of my blog post: How to store a password on Windows? You can use the Data Protection API and its .NET implementation (ProtectedData) to encrypt the password. Here’s an example: public static string Protect(string str) { byte[] entropy = Encoding.ASCII.GetBytes(Assembly.GetExecutingAssembly().FullName); byte[] data = Encoding.ASCII.GetBytes(str); string protectedData = Convert.ToBase64String(ProtectedData.Protect(data, entropy, DataProtectionScope.CurrentUser)); return protectedData; … Read more
Normally the invalid credentials should be purged automatically (after one unsuccessful authentication attempt). Go to the Windows Credential Manager (press Windows and type “Credential Manager”, or go to Control Panel\User Accounts and Family Safety\Credential Manager or use Start->Run rundll32.exe keymgr.dll,KRShowKeyMgr), there all saved credentials should be listed (prefixed with git:). For ways to also remove … Read more