w3hello.com logo
Home PHP C# C++ Android Java Javascript Python IOS SQL HTML videos Categories
Convert site from SP-Initiated SSO Redirect POST to IdP-Initiated SSO POST
I found the answer from someone. The title of the page isn't as obvious as I thought, which would explain my lack of knowing what to search for. http://simplesamlphp.org/docs/stable/simplesamlphp-sp

Categories : PHP

Where do events in init.rc are initiated?
This is all managed in init.c The property system is a little bit complex. There is a property service resident in init process. Init process maintains several name spaces of the properties. E.g. ro.xx, system.xx, persist.xx. Property setter set the property via notifying the unix socket message. So init process knows every setting action and you can see from the code that there is a callback "property_changed" called every time when a property is set.

Categories : Android

ADFS 2.1 Changes (and LDS)
Refer: Guidelines for Migrating an Application Built Using WIF 3.5 to WIF 4.5. That's the basic difference. In ADFS 2.1, ADFS and WIF are built-in - no need for seperate downloads. For completeness, in R2, Extending device support in Active Directory. No - no change to LDS.

Categories : Misc

Best Way to Pass Data to new ViewModel when it is initiated
I will vote for making models able to notify there changes i.e implementing INotifyPropertyChanged in models. Two reasons: There may be multiple places/views you might need to use the same model and you would not like to take care in each ViewModel as which property change should raise which other property changes. Frankly thats messy and buggy. Sometimes, in the VM layer we might need to listen to changes in models, so in that case also self notifying model helps. Thanks

Categories : C#

Validate IDP initiated SAML2.0 Response
You need to validate the responce according to the SAML spec. There are some functionaliy for doing this in OpenSAML but i seems the safest bet is to write your own validation code. see. http://marc.info/?t=137354098500007&r=1&w=2 You must also validate signature. As with all signature verification you use the public key. Here is some I wrote on my blog about OpenSAML signatur verification. http://mylifewithjava.blogspot.no/2012/11/verifying-signatures-with-opensaml.html I have more on signing and encryption using OpenSAML in my book, A Guide to OpenSAML

Categories : Java

Authentication with ADFS 2.0
This rings a bell! IdpInitiatedSignon.aspx Page Will not Authenticate. Could it be the DNS problem mentioned there?

Categories : Authentication

MVC, ADFS 2.0 and WIF 4.5 issues
You are probably taking the route of maximum complexity :-). What problem do you have with "passive configuration"? It should just work. There're plenty of examples of MVC 4 / ADFS (or other STSs). A few samples/resources to look at: http://msdn.microsoft.com/en-us/library/hh291061.aspx http://msdn.microsoft.com/en-us/library/ff423674.aspx http://msdn.microsoft.com/en-us/library/ff359105.aspx http://claimsid.codeplex.com/releases/view/68061

Categories : Asp Net Mvc

Object for view not being passed if initiated in UINavigationController
Check that your currentUser property declared like this: @interface ProfileViewController : UIViewController @property (nonatomic, strong) Contact * currentUser; @end

Categories : IOS

Adding a border and shadow to a nib initiated view
Take a look at using the view's CALayer. To add a border: myView.layer.borderWidth = 1.f; myView.layer.borderColor = [UIColor blackColor].CGColor; There are similar methods for adding a shadow: myView.layer.shadowColor = [UIColor blackColor].CGColor; myView.layer.shadowOffset = CGSizeMake(4.f, 4.f); myView.layer.shadowRadius = 4.f; myView.layer.shadowOpacity = 0.5f; myView.layer.shouldRasterize = YES; You will need to add the Quartz framework to your target, and import the header in your controller's .m file: #import <QuartzCore/QuartzCore.h>

Categories : IOS

PhpStorm how I debug php file when request is initiated from JS?
After you start php debugging, try to right click in the browser window and select Inspect in PhpStorm. This should also activate the JS debugger in storm alongside php debug. Of course you've installed Chrome extension for PhpStorm: https://chrome.google.com/webstore/detail/jetbrains-ide-support/hmhgeddbohgjknpmjagkdomcpobmllji Hope this helps. [Later edit] Ah, and deactivate any JavaScript minifying you may have!

Categories : PHP

ADFS login using UIWebView
I'm guessing you've found the answer, but we're actually rendering the login in Safari (which does support ADFS) and use a callback (and scheme in the pList) to return to our App... you could try that.

Categories : IOS

loggin into an iOS app using a system with ADFS
The latest version of ADFS (3.0, included in Windows server 2012 R2) has a feature called "workplace join". This can be used to join iPads etc. to active directory and get single sign on and storing a certificate on the iPad. Here is a nice overview of ADFS 2012 R2.

Categories : IOS

How to override system commands in shells initiated by Perl?
Shell aliases only work in the interactive shell. You have other options: Change your PATH so that the newer gnuplot's bin precedes the old one. Make a symbolic link to the new gnuplot from your bin and make sure it comes first in PATH.

Categories : Perl

Dialog doesn't properly close when initiated by focus
You can just add $("#id_focus").blur(); to the focus function like so: Working Example $(document).ready(function () { $("#id_focus").focus(function () { $("#id_focus").blur(); // Important bit $("#dialog").dialog("open"); }); $("#id_click").click(function () { $("#dialog").dialog("open"); }); $("#dialog").dialog({ autoOpen: false, modal: true, buttons: [{ text: 'CANCEL', click: function () { $(this).dialog("close"); } }] }); }); From the API Documentation: Focus Upon opening a dialog, focus is automatically moved to the first item that matches the following: The first element within the dialog with the autofocus attribute The firs

Categories : Javascript

Kill or stop execution of PHP script initiated by CRON?
You can try system() or exec(), but it might not work (or return permission denied errors) as cron processes are executed by either the current user or root, and the web server user doesn't usually have access to these processes.

Categories : PHP

.NET objects not initiated from VB6 when server get converted to Windows 2008 R2 64-bit
CreateObject can't be returning an empty string. It either returns an object or raises an error. Maybe you're accidentally using an old version of the component? Put in some logging and check the TypeName of the returned object. Are you ignoring errors with On Error Resume Next? You could try explicitly targetting 32 bit when you build the .Net components, as the VB6 will only run as 32 bit.

Categories : Dotnet

Accessing and modifying the models that are initiated in template with angular.js
It is because it is a primitive value. I changed the fiddle a little bit, like this, and it works as you expect: ng-init="deneme = {value: 5}" $timeout(function(){ val.value = 23; ..... It is the same as if you set any javascript variable to a primitive, and then set another variable to that value, and then reset the original variable. var a = 10 var b = a var a = 2 // a = 2, b = 10 I ran into this same issue a couple months ago, so it is still fresh in my mind.

Categories : Javascript

How to Check existence of User using ADFS api
ADFS is a STS (Security Token Service) which essentially handles authentication and authorisation via claims. It is not an Identity Manager. Out of the box, no - there is no such functionality. You need to extend ADFS yourself using the AD API's - Howto: (Almost) Everything In Active Directory via C#.

Categories : Asp Net Mvc

Do I need to create a STS to consume a SAML 2.0 that is not ADFS?
To support a IDP that does SAML 2.0 , do I need to write a STS (May be use Identity Server V2 from thinktecture ?) that sits between IDP and my APP. You could write a protocol translator STS that sits between your app and the IdP that talks SAML protocol. But you cannot use the Identity Server V2 from thinktecture because that only supports WIF (so no SAML Protocol). There is a WIF extensons for SAMLP but that remained in CTP stage since 2011... To implement the protocol translator you could use ComponentSource SAML 2 lib. I also see people saying use ADFS that support SAML and talk to ADFS. I think you can use ADFS as protocol translator where it would talk WS-Federation to your app (WIF) and SAML to the IdP. I already started exploring ComponentSource they have

Categories : Dotnet

ADFS and Shibboleth auto sign in
Possible solution, and tried successfully in lab environment. Shibboleth is hosted on a sub domain to the application that are supposed to sets the cookie. So what we tried and what was successful was to send the _idp_session cookie over the REST service and from our application return that value to the client with HTTP header set-cookie. So now when we redirect the user into our SharePoint environment the client has the _idp_session cookie and gets authenticated thru the chain of client -> SharePoint <-> Azure AC <-> ADFS <-> Shibboleth :)

Categories : Rest

How to validate ADFS SAML token
It's much simpler! For web sites you use WIF (assuming you are using .NET) and then you federate the app with ADFS. (There's a wizard included in the WIF SDK). Everything is taken care of. Parsing, validation, etc. is done by the framework. Your app would deal with users in the regular way: this.User.Name , this.User.IsInRole("admin"), etc. The scenario is documented here.

Categories : C#

Pass ADFS Token to a Service
You can use WS-Trust (ActAs) to get a delegation token: http://weblogs.asp.net/cibrax/archive/2010/01/04/actas-in-ws-trust-1-4.aspx Or you can do poor man's delegation: http://www.cloudidentity.com/blog/2013/01/09/using-the-jwt-handler-for-implementing-poor-man-s-delegation-actas/ Or you could use the Thinktecture IdentityServer Adfs Bridge: http://brockallen.com/2013/04/14/getting-json-web-tokens-jwts-from-adfs-via-thinktecture-identityservers-adfs-integration/

Categories : Asp Net

wfresh not working with WS-Federation via ADFS
I suspect the default for wfresh is zero. Have you tried it without wfresh? Also, you could logout - AD FS: How to Invoke a WS-Federation Sign-Out.

Categories : Asp Net

ADFS 2.0 Single Sign Out Not Signing Out
I am only guessing but I suspect that your adfs is configurd for windows authentication while your application has the Login button (it is not clear from your description). If this is the case then you can't really log out from already authenticated adfs and it happily reissues the token upon the next request from the application. You can't do anything about it since the authentication is performed with ntlm/kerberos and this is the browser that keeps your credentials until you close it. The solution would be to change adfs to Forms mode (switch the order of providers in adfs web.config) so that not only the adfs has its own cookies but also these cookies are truly removed when you issue the sign out message.

Categories : C#

tableView:didDeselectRowAtIndexPath: not called until first user-initiated selection and deselection
This is too long for comment so I'm posting this as an answer. Just created test project with tableView. I call [UITableView selectRowAtIndexPath:animated:] on viewDidLoad and I have one cell selected. Then I'm selecting another cell (without deselecting first one). I have this output: [SDTVTViewController tableView:willSelectRowAtIndexPath:] [SDTVTViewController tableView:willDeselectRowAtIndexPath:] [SDTVTViewController tableView:didDeselectRowAtIndexPath:] [SDTVTViewController tableView:didSelectRowAtIndexPath:] And I have first cell deselected and second one selected. I have no idea, why it's not working in your code. When you're calling [UITableView selectRowAtIndexPath:animated:] and can you post code of UITableViewDelegate methods that you've implemented?

Categories : IOS

Role membership creation with ADFS login
The easiest way is to configure ADFS to map AD groups to roles. ADFS : Sending groups as claims. e.g. map "Token-Groups - Unqualified Names" to Roles. Then IsInRole works OOTB.

Categories : Asp Net Mvc

Pass ADFS Token in WebClient Call
Yes, you could have WebAppA call the STS and request an ActAs token for WebAppB, using the original token (the one intended for WebAppA) as the input, but this is normally used for web services (and it might be overkill). Looks like you are just GET'ing a page from WebAppB. Why not just use basic auth, SSL and pass a parameter of the user making the request? (in essence using a trusted subsystem approach).

Categories : Asp Net

How can I setup a web Application to use ADFS /SAML/WS-* in JAVA?
WIF uses WS-Federation and there's no Java equivalent that I'm aware of. However, you can use SAML. Refer: SAML : A SAML stack.

Categories : Java

ADFS and two Servers on two domains - iframe - prompted twice?
1) I'd recommend checking into Windows Identify Foundation (WIF). Although your app will need to run under TLS/SSL, you probably will just need to run the FedUtil.exe application to generate your application's metadata for ADFS to consume when creating an RP. 2) In theory this might work, but the Iframe'd page will still redirect to ADFS momentarily to get an authentication token. It is just that the login page won't be displayed.

Categories : Sharepoint

ADFS - Issuance Authorization Ruleset error
The claims configured in the first tab ( Issuance transform rules ) are not passed to the second tab (Issuance Authorization rules). So we need to repeat the process again in the second tab (map emailaddresses -> emailaddress) as shown below. Now the custom rule works perfectly. If you need to add few more email domains to the acceptance criteria just use the "|" symbol: c:[Type == "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress", Value =~ "yahoo.com$|gmail.com$"] => issue(Type = "http://schemas.microsoft.com/authorization/claims/permit", Value = "true");

Categories : Misc

JavaScript: Calling variable functions of an initiated class (packet-handler)
You can bind the methods to your instance: var PacketMethods = { 4352 : this.ServerList.bind(this), 4351 : this.LoginResponse.bind(this) }

Categories : Javascript

ADFS 2.0 - using claim rules to find out when password expires
You can only access AD attributes that pertain to the logged-in user. For this kind of thing, I would suggest writing a custom attribute store which returns the info. you require.

Categories : Misc

How to configure ADFS to manage all aplications authentication requirements?
For the first two, refer ADFS : using the WAUTH parameter. Essentially, you add the correct wauth to the application's web.config. There are some links at the bottom for further reading. For the last, you need an ADFS and an ADFS proxy. Then use split DNS. Extranet --> Proxy --> Forms Intranet --> ADFS --> IWA

Categories : Windows

Authenticating Hybrid Mobile Application with ADFS behind firewall
I assume your API (WebApi based) is hosted on Azure, right? Obtaining a token from an STS in a mobile client, usually involves delegating the authentication to a web browser (using passive profile) and then extracting the token with then it becomes available. This is often the case with STSs that don't support "Active Profile" (an endpoint where you can send client credentials and receive a security token in exchange). ADFS supports this (through WS-Trust), but you don't want ADFS exposed to the internet (you could though, and ADFS has a specific role for this without the need for a VPN). This technique is illustrated in this sample. PhoneGap will likely have an equivalent. A (simpler?) way in your case might be to get a Windows Azure AD (WAAD) account, and use DirSync to synch your AD

Categories : Authentication

ADFS 2.1 Trace Settings Windows Server 2012
I managed to find the solution(using this blog post)- The Log file names were changed in ADFS 2.1 from AD FS 2.0 Tracing/Debug to AD FS Tracing/Debug Old Path: %SystemRoot%System32WinevtLogsAD FS 2.0 Tracing%4Debug.etl New Path: %SystemRoot%System32WinevtLogsAD FS Tracing%4Debug.etl

Categories : Misc

Current version of data in database has changed since user initiated update process
I have experienced similar problem where my detail records set has timestamp fields. By default master detail wizard creates the timestamp fields as date picker type fields. If you set the date format on these, it would resolve the issue.

Categories : Oracle

Transferring $_POST values to jQuery initiated popup window through ajax not working
Of course it doesn't pick any data because you don't pass any(you do in the ajax call, which is a separate request that doesn't know nothing about your next window.open call). You should pass the variables in the $_GET in your case: var url = "preview.php?title=" + $title + '&author=' + $author; var windowName = "popUp"; var windowSize = "width=495,height=680"; window.open(url, windowName, windowSize); Then in preview.php you will pick them up like: $title = isset($_GET['title']) ? $_GET['title'] : null; $author = isset($_GET['author']) ? $_GET['author'] : null; Next, the alternative. You could, however do something like: $.ajax({ type: "POST", url: "preview.php", data: { documentTitle: $title, authorsNameOne: $author } }).done(function( msg ) { $('#someHiddenDiv').html(

Categories : PHP

By what mechanism does Internet Explorer send client authetcation information to ADFS in a SSO scenario
ADFS is configured with Windows Integrated Authentication. If the user is on the domain, he/she will authenticates with ADFS just like if it was another app on the intranet configured with Windows Integrated Auth (through Kerberos/NTLM). If the user is not on the domain, instead ADFS will show a form where you enter user/password. For this you have to deploy the ADFS Proxy.

Categories : Internet Explorer

java.lang.LinkageError: loader constraint violation previously initiated loading for a different type with name "javax/xml/soap/SOAPMessage"
LinkageError is JBoss is generally caused by your app packaging its own copies of certain libraries that JBoss considers restricted. These are usually things in the java.* and javax.* packages. Try adding cxf-rt-frontend-jaxws and cxf-bundle-rs as dependencies and mark some exclusions -> jetty-server, gernomino-servlet. Also check the beans.xml is expected to be under the classpath, instead of WEB-INF.

Categories : Java

How to validate token, in ASP.NET Web API 2, which is provided by new OAuth 2 end point of ADFS that is part of Windows Server 2012?
What is the token format you plan to use? Will it be the SAML as-is or you plan to transform it to may be JWT? Azure ACS can give you JWT or you can use thinktecture identity server. Check this out. SAML can get bulky at times and you can have problem transporting them in an HTTP header depending on the token size. If you plan to use SAML, you can use WIF classes SecurityTokenHandlerCollection, etc. For JWT, there is a library available with a long name of "JSON Web Token Handler For the Microsoft .Net Framework 4.5". Check this out as well.

Categories : Asp Net Web Api



© Copyright 2017 w3hello.com Publishing Limited. All rights reserved.