I have a basic website written in Python Django, hosted on IIS 8.5. The website is used in the company intranet with Windows Authentication.
Accessing the website through a browser gives no problems for authentication. However, making use of a simple web API to retrieve data for reporting purposes is giving problems.
I'm trying to load a URL into Excel which supplies data in CSV format (Data -> From Web). Disabling IIS Windows Authentication and using Anonymous works perfectly. However, enabling Windows Authentication does not work as Excel says 'credentials are incorrect'.
The URL response is a simple HttpResponse object with CSV data. Nothing weird or complicated happening.
Any idea where to troubleshoot this? My IIS knowledge is limited in this regard.
So I changed the API part of the website to anonymous authentication as per this answer. it did the trick for me:
IIS 8.5: Change authentification mode for url sub path
I trying to make a back office using laravel 5.2 for my mobile application. Where authentication user could be access of my webservice to fetch information.
I had research on that , I also use JWT plugins but its not fit for me. This plugins can't accept post request.
If you have any idea please share with me.
I am developing one application which will display URL from all currently running web browsers.
I stuck on the firefox and chrome web browser.
I have a handle of currently running web browser but not able to get the URL from it.
So, Can any one tell me how can I get URL from Firefox and Chrome Web Browser.
Thank You In Advance.
I have a Chrome Packaged Application that I am currently integrating with the Facebook API. The Facebook Javascript SDK requires that I provide the URL of where my application is hosted and for security reasons they only redirect to this url.
The problem is that a Chrome Packaged Application doesn't have a url. I am aware of the chrome.extension.getURL but this url is not static, it changes per installation. Is there any way to set a URL for a Chrome Application that works for all installations?
Once you publish your app the id from chrome.extension.getURL will not change. The id matches the key used to sign the extension and once you publish an extension to the Web Store that key doesn't change. Developing locally will be more annoying since each time you "load an unpacked extension" it will get a new id.
I want to upload a file to a website via a desktop app and then take the user to the website. The website has a web service, but requires authentication as does the web site. Is there a way to do this without forcing the user to authenticate twice (once in the desktop app and once in the web browser)?
Unfortunately, you can't prefill an input of type file for security reasons, which makes sense since the user won't want you uploading arbitrary files from his/her computer. But if they have a desktop app, is there some way around this?
Or maybe make the user log into the web app first and then the authentication cookie can be reused?
Any other ideas?
Thanks,
Ben
I would use the dekstop app as a client to the website app via an api.
So, login via the desktop app. The api returns a authentication token (as Carlos suggested) which might be a md5 hash stored in your database for a certain period of time, possibly matched to the clients ip address.
The desktop app can then make calls on the api (like uploading a file) as a authenticated user (by using the auth token).
When loading the website, perhaps the url is http://website/login/{auth_token} where the auth token is added to the url. The api can check to see if its a valid auth token and consider the user logged in.
You could generate an authentication token that could later be used on the website.
It all depends on the type of authentication of the service and the site. Is it integrated Kerberos, WS-Auth, is it Basic/Digest HTTP, is it forms/cookie ?
This answer will most likely not work in the very general users-on-the-wide-open-web scenario, but in intranet contexts, using Windows Authentication (on an ASP .Net solution), would provide this.