EDIT in 2015: This answer is outdated. WebDriver nowadays supports authentication! See How to handle authentication popup with Selenium WebDriver using Java Original answer: This is not handled very well by Selenium. You can try using http://username:[email protected]/yourpage instead of just http://example.com/yourpage However, as far as I know, Firefox will still pop up a browser dialog … Read more
There are a couple of strategies to append additional metadata to the UserAuth and UserAuthDetails tables, If you want to extend the schema of UserAuth with your own custom POCO’s you need to subclass OrmLiteAuthRepository<T,T> class including your custom POCO’s, e.g see the source for OrmLiteAuthRepository: public class OrmLiteAuthRepository : OrmLiteAuthRepository<UserAuth, UserAuthDetails>, IUserAuthRepository { public … Read more
Forget about the Hadoop UGI: a JDBC driver just needs the raw JAAS configuration to create a Kerberos ticket on-the-fly (with useKeyTab raised and useTicketCache lowered). System properties java.security.krb5.conf => (optional) non-defaut Kerberos conf java.security.auth.login.config => JAAS config file javax.security.auth.useSubjectCredsOnly => must be forced to “false” (the default has changed in some Java release, duh) … Read more
The SSO solution that I’ve implemented here works as follows: There is a master domain, login.mydomain.com with the script master_login.php that manages the logins. Each client domain has the script client_login.php All the domains have a shared user session database. When the client domain requires the user to be logged in, it redirects to the … Read more
You need to start mongod with the –auth option after setting up the user. From the MongoDB Site: Run the database (mongod process) with the –auth option to enable security. You must either have added a user to the admin db before starting the server with –auth, or add the first user from the localhost … Read more
Preface: I gather you’re using homegrown login instead of container managed login. For all ways, see How to handle authentication/authorization with users in a database? The filter (the interceptor) shouldn’t check the validity of the username/password combo. That’s the responsibility of the servlet (the controller). The filter should merely check if the user is logged-in … Read more
OpenID is about authentication (ie. proving who you are), OAuth is about authorisation (ie. to grant access to functionality/data/etc.. without having to deal with the original authentication). OAuth could be used in external partner sites to allow access to protected data without them having to re-authenticate a user. The blog post “OpenID versus OAuth from … Read more
Cross site approach To allow receiving & sending cookies by a CORS request successfully, do the following. Back-end (server): Set the HTTP header Access-Control-Allow-Credentials value to true. Also, make sure the HTTP headers Access-Control-Allow-Origin and Access-Control-Allow-Headers are set and not with a wildcard *. For more info on setting CORS in express js read the … Read more
Google OAuth 2 authorization – Error: redirect_uri_mismatch