Most voted "authentication" questions
Authentication is the process of determining whether someone or something is, in fact, who or what is declared. The tag can be used for any situation where authentication is used in software via programming or in the development of authentication methods. That’s different from authorization.
Learn more…199 questions
Sort by count of
-
31
votes5
answers3608
viewsCan the browser "remember" a password programmatically?
I am developing an application where from a password provided by the user a pair of keys (authentication and encryption) is derived. The password itself is never sent to the server, only the…
-
20
votes2
answers14582
viewsWhat is Basic Auth?
What is and how Basic Auth works? In which scenarios it should be used? It is safe to use it currently, since we already have Oauth and Oauth2, among other more modern forms of authentication?…
-
19
votes2
answers526
viewsWhat is two-factor authentication?
What is two-factor authentication? Or multiple-factor authentication? This expression usually comes from "associated" to large companies - such as Google, Facebook, etc - that have a login and…
-
17
votes1
answer4912
viewsSafely remember user
That question does not refer to password security, or data encryption itself. The question is more logical. I would like to know what’s the safest way to create that scheme "remind me". I was…
-
11
votes2
answers483
viewsASP.NET Identity and Windows Identity Foundation (WIF)?
Once again talking about ASP.NET Identity. There is another theme within this same subject that I believe is of great importance to the community (mainly to me, the main interested). This is the…
-
10
votes1
answer1708
viewsASP.NET Identity and Claims
Still on ASP.NET Identity, following another question I asked about this (Example of ASP.NET Identity using SQL Server), an interesting topic within the same subject would be regarding Claims. What…
-
10
votes0
answers987
viewsOauth 2 authentication server in ASP.NET Web API
The company I work with develops internal applications, but for policy reasons, we will have a subdomain to handle authentications such as: login.dominio.com.br where you will have an app…
-
10
votes2
answers1395
viewsHow do I allow only certain applications to access my API?
I am developing an API using Express, which should be used only by an application in the browser, built using React and an application, made using React Native. The question is: how can I restrict…
-
9
votes2
answers1058
viewsHow to configure HTTP authentication with Jboss?
I would like to protect my entire site with user and password, I saw that it is possible to do this using HTTP authentication, but I would like to know how to do this in Jboss.
-
9
votes2
answers3516
viewsWhat is the right way to authenticate to a REST API used by mobile applications?
Actually there are two questions (with the right to subquestions). Today I have an already implemented token generation engine (inherited from a web application) that I am using in my REST* API for…
-
9
votes2
answers10069
viewsWhen and why use session_start?
Certain that, in short, session_start() "starts a new session or summarizes an existing session", but some questions: The function should only be called once, after the login user’s? Why to start a…
-
9
votes1
answer1639
viewsWhat is Access Token? What is it for?
What exactly is an Access Token? What is an Access Token for in an API application? I would like an answer addressed to Node.js, but I believe that API creation exists in several languages, so I do…
-
9
votes1
answer4061
viewsWebservice Delphi Soap with authentication
I’m using Delphi to read a web service from an insurance company. It happens to come in XML format in SOAP. I import the WSDL I can get the methods. But to connect to the Web Service I have to send…
-
9
votes1
answer2436
viewsWhat is the correct order of the ICP-Brazil certificate chain so that the certificate of an e-CPF and e-CNPJ is requested via TLS Handshake?
To authenticate a user using the digital certificate, and to obtain this certificate in the backend it is necessary to enable the "SSL/TSL Handshake" option on the web server with the option to…
authentication ssl certified digital-signature brazilasked 7 years, 8 months ago LeonanCarvalho 3,527 -
8
votes2
answers457
viewsHow do I log in through my Microsoft Live app?
I would like to know how I can log in through my application, whether Web or Desktop, on Live? I’ve looked for some things, but I haven’t succeeded. UPDATING So, as the bfavaretto suggested, I…
-
7
votes4
answers1550
viewsHow to make an external login authentication?
I need to develop a system to be used by the user. The user will be registered in another system, where we will have the registration, contracted plans and financial control of the same... The idea…
-
7
votes1
answer3851
viewsHow to generate secure tokens dynamically
Various applications use token authentication to maintain secure network communication. However, using dynamically generated tokens, the probability of breakage decreases greatly. So there is the…
-
7
votes1
answer803
viewsHow can a WEB application that uses Oauth for authentication manage the user session?
Usually sessions are used to keep data of a particular user after they have logged into the WEB application, and it is the WEB application that is responsible for controlling and managing that data…
-
6
votes2
answers3464
viewsSecure authentication via REST
I searched and could not find solution to the following problem: How do I control requests on a particular REST service? For example, if I have a blog where I access my services (insert post, remove…
-
6
votes1
answer5794
viewsHow to use MVC 4 session with C#?
My scenario is as follows. I have an MVC 4 application. In my controller I check the logged in user and password. (I think) I put the user data in a session after the data is checked and correct. My…
-
5
votes3
answers1012
viewsUser Authentication with Laravel 4
I’m starting to authenticate users with Laravel 4, as a basis for this link. My doubt and the following, all route, I will have to use this way? Route::get('/', array('before' => 'auth'),…
-
5
votes1
answer376
viewsIn Django why does the is_authenticated method always return True?
I saw that the documentation indicates the method is_authenticated as being responsible for telling templates if there is a logged-in user. I also saw in the method code that it contains only the…
-
5
votes3
answers6557
viewsGet logged in user
In my project I have an authentication module and logout. But I wanted when the user logged in I’d get the id of it so that I would show the information concerning the login of it. Like a view…
-
5
votes1
answer1303
viewsAuthentication Laravel 5.2
I am trying to log in to Laravel 5.2 but it is not authenticating the user in the table. in the archive auth.php I changed the validation table to login: 'guards' => [ 'web' => [ 'driver'…
-
5
votes1
answer821
viewsHow does Django create and verify tokens to reset password?
Considering a model to reset password already implemented by Django, in the following views: Django.contrib.auth.password_reset Django.contrib.auth.password_reset_done…
-
5
votes1
answer584
viewsWhat types of authentications are supported by HTTP?
I intend to delve deeper into authentications that are in the context of HTTP protocol, however, I don’t know their types. Therefore, I would like a brief explanation regarding the authentications…
-
5
votes1
answer311
viewsIndividual User Account between MVC and Webapi projects
I have a MVC project with Individual User Accounts, I use Roles for access management and everything works well. Recently I had the need to create a file manager on another server, I created a WEB…
-
4
votes1
answer5307
viewsHow to work a secure session in PHP using cookies so that the session does not expire when you close your browser?
In PHP, I usually work on user authentication in a restricted area using the variable $_SESSION, but I want to change this method to cookies so that the session does not end when closing the…
-
4
votes1
answer1173
viewsLogin with different profiles
I’m developing an app for a school, where you take control of the students she has. The application makes the registration of students and registration of occurrences (suspension or warning) that…
asp.net-mvc database asp.net-mvc-5 visual-studio-2013 authenticationasked 10 years, 7 months ago Érik Thiago 2,338 -
4
votes2
answers1819
viewsLogin using Entity with password encrypted as varbinary
I did the user password encryption and in the Password field of my table I went from Varchar to Varbinary, in the web part of my system it is all right only that in the windows part I am using the…
-
4
votes1
answer357
viewsHow to force login after running the application?
My scenario is this:: After authentication with Active Directory, the user who logged in is saved to a Session [HttpPost] public ActionResult Login(LoginModel model, string returnUrl) { if…
-
4
votes3
answers249
viewsHow do you make sure the person who used the system is really her?
At the university where we are studying, we are developing a system in Java EE to reduce bureaucracy in some enrollment processes, extinguishing forms and generating PDF forms that, instead of going…
-
4
votes1
answer859
viewsIs this a good way to keep my API safe?
My application consists of an API nodejs on backend but I’m also creating the reference implementation of a Javascript client, which is a SPAen made with Backbone. First: the API accepts only HTTPS…
-
4
votes2
answers1415
viewsHow to authenticate a user via HTTP request?
I’m trying to authenticate users in a forum Vbulletin by means of an application desktop using components of the package swing, the code is working but I believe that this is not the best way to do.…
-
4
votes1
answer2976
viewsHow to get request header by passing Authorization Bearer using Datasnap
I’m using Delphi XE7, have a WebService REST made from the DataSnap REST, I need to get the bearer-token past Header by the customer, only that the DataSnap REST by default it executes as Basic.…
-
4
votes1
answer632
viewsOauth API authentication with external provider
When we use Oauth we have the "authorization server" and the "resource server". The resource server is the server on which the API is, that is, this is where the interface to the resources we want…
-
4
votes1
answer991
viewsHow to use login in different areas on Asp.net mvc
I’m creating an app, where it has more than one Area, which is restricted. (as shown in the image below). My question is how to login in different areas? Details: As users of the Admin area and the…
-
4
votes1
answer3193
viewsJava SOAP webservice authentication engine
I am building a Java webservice (wsdl) that will be consumed via SOAP. I need to implement a form of authentication in each method of the webservice so that each request is tested if the source is…
-
4
votes0
answers38
viewsIs there a more correct way to handle redirects in authentication streams? (e.g., HTTP Status 302, or Javascript, or auto-Ubmit form)
I work on a project where we have a Frontend application and a second Backend application (Nodejs) that takes care of authentication and contains a REST API. In the authentication part, Backend…
-
3
votes1
answer118
viewsASP.net MVC with WIF
When searching the web, I saw that it is not possible to register Assembly’s on the Razor view engine on Asp.net mvc as was done on webforms. <%@ Register TagPrefix="wif"…
-
3
votes1
answer406
viewsAuthentication in Java EE
I am developing an app whose client will be Html5 + javascript (single-page-app) and the backend will be basically Jax-rs + cdi + nosql (glassfish & orientdb). In this scenario, I need help to…
-
3
votes0
answers53
viewsUse vraptor-brutauth in jsps
Expensive, I have a problem that when I put a rule with @GlobalRule, I can’t use it in jsps.. When I just put ${rules} to list the rule map, which has the @GlobalRule does not appear. When shot it…
-
3
votes1
answer181
viewsAuthentication / Permissions with MEAN Stack
I’m studying the MEAN stack, I’m really enjoying it, and I’m developing simple applications, but I couldn’t find something that would really help me understand better about authentication and…
-
3
votes1
answer811
viewsAuthentication with Spring Security
Hello, I am doing a project using the Spring Framework, and I need to do a very simple authentication, using users created in the user table even (without any integration with social networks). But…
-
3
votes1
answer916
viewsUnderstanding the Django 1.7 permissions system
I have an app called forms_and_models which I use for study. In documentation of Django 1.7 says that: Assuming you have an application whose app_label is foo and a model called Bar, to test basic…
-
3
votes1
answer326
viewsAuthentication and external redirection to wordpress sites
I’m creating a simple login system that redirects a customer to their area. There will contain links to your projects, IE, when clicking, it will be redirected to your site. EXAMPLE: I have a folder…
-
3
votes1
answer3030
viewsImplement digital certificate (ICP) authentication in Apache
I’m trying to implement Apache authentication through PKI with digital certificates stored in token/smart card. I am using XAMPP 5.6.8.0-VC11 on a Windows 7 computer. Following what I found by…
-
3
votes1
answer345
viewsHow to check credentials before authenticating to Laravel 5.3?
My application uses Laravel’s ready authentication, but I need users to log in from a web service. So what I’m trying to do is that if the guy exists in the application database, he does Laravel’s…
-
3
votes1
answer997
viewsAdd Authentication to Asp.net Core project
I created an Asp.Net Core MVC project without authentication. With the project already underway, I need to add the authentication part and I wanted to be able to automatically generate all the files…
-
3
votes1
answer573
viewsDifferences between authentication types
I was doing some research on authentication, because I want to improve this part of my system, I found some cases like Basic, oAuth1 and Oauth2. What is the difference between them? What are they…