I have used Kohana on several projects now, as well as its included Authentication module with absolutely zero issues... until this particular client.
At first they could not log in to the site on an XP machine using IE8. I did some digging and ended up adding this config file to application/config/session.php
<?php defined('SYSPATH') OR die('No direct access allowed.');
/**
* #package Session
*
* Session driver name.
*/
//$config['driver'] = 'native';
/**
* Number of page loads before the session id is regenerated.
* A value of 0 will disable automatic session id regeneration.
*/
//$config['regenerate'] = 0;
// KLUDGE: Windows XP SP3 running IE-7 and 8
// http://bit.ly/gPcV67
//$config['validate'] = 'ip_address';
return array(
'cookie' => array(
'name' => 'session_cookie',
'encrypted' => TRUE,
'lifetime' => 43200,
),
'native' => array(
'name' => 'session_native',
'encrypted' => TRUE,
'lifetime' => 43200,
),
'database' => array(
'name' => 'session_database',
'group' => 'default',
'table' => 'sessions',
),
);
?>
This worked for IE8 on the WinXP Machine
Now they have a laptop with Win7 that can not login with IE9 or Firefox 4. I installed Chrome on the machine to make it workable till I could find the time to look into this further (Chrome worked fine while I was in front of the machine). Today however I got a whole series of really pissed off emails claiming they could not get into the system again.
I can not reproduce this problem on any of my machines or browsers. I am stumped, and I do not have a way to test changes I make.
Please Please Please HELP!
Thank you,
-David
Sounds like a server issue to me, probably at the time of their login something denied their access (session not written?). I'd try with memcached or database sessions.
Related
I am implementing a stripe demo in which payment will be divided into multiple destination(multiple service provider).In that as i see when i use the below given array for multiple payment then it throws me an syntax error when web page is loaded.
//Create a Transfer to a connected account (later):
$transfer = \Stripe\Transfer::create([
'amount' => 7000,
'currency' => 'usd',
'destination' => 'HERE WILL BE STRIPE ACCOUNT ID',
'transfer_group' => 'ORDER_95',
]);
Here below it throws an error when web page is loaded :
Here below is the code of PHP and JS which i use to do payment.I does not have to disclose the stripe account id so that's why i have wrote "STRIPE ACCOUNT ID" over there.
1) PHP File
2) JS File
Thanks in advance!
It's impossible to know for sure but I suspect that either you've got an empty body in result. You should try just console.log()ing the response instead of trying to toString it, and you should also probably check (and log) the status.
https://developer.mozilla.org/en-US/docs/Web/API/Response
I have two domains A and B, with a user Administrator in each. Both admins have different objectGuids, SIDs and passwords. There's an IIS 8.5 in B configured with Windows Authentication (Methods Negotiate/NTLM, Extended Security disabled, Kernel mode auth enabled). Domain B trusts domain A (one-way trust).
When I now open IE as A\administrator, and connect to the IIS in B, the IIS returns to me that the user logged in is B\administrator (should be A\administrator).
This is my code:
public class UserController : ApiController
{
// GET api/<controller>
public User Get()
{
var usr = ((WindowsIdentity)User.Identity).User;
return new User() {
Name = User.Identity.Name,
SID = usr==null?"":usr.ToString()
};
}
}
Also, the same is in the IIS log:
2018-05-07 09:19:10 172.17.41.31 GET /winauthtest/User - 80 B\Administrator 172.17.42.11 Mozilla/4.0+(compatible;+MSIE+7.0;+Windows+NT+10.0;+WOW64;+Trident/7.0;+.NET4.0C;+.NET4.0E) - 404 0 2 31
Is this intended behaviour or a bug, and if it's a bug, where to report the bug?
Can I fix it by changing Windows Authentication settings, or what else could I do about it?
Do you know any other possibility to get the true SID of the user that is accessing my IIS?
OMG, I had the same problem and your problem gave me a hint as to why this is happening. So, running my project in Chrome gives me the wrong domain, while opening in Edge gives me the correct domain. I have my project set up using Windows Authentication and it seems Chrome is in some way blocking Windows Authentication.
This link gives more info.
https://specopssoft.com/blog/configuring-chrome-and-firefox-for-windows-integrated-authentication/
In the end, another of my coworker had the same issue and we couldn't fix it properly. It would misbehave randomly. The only solution that seemed to work was restarting the PC.
(Reposted here due to no response on Google group)
Probably missing something obvious but I cannot get GitLab CE 8.0.5 to use Crowd server 2.8.3 as an omniauth provider. GitLab doc and Google searches are not helping.
Can anyone either provide me with troubleshooting steps, their config (obfuscating passwords etc) or check my config below.
GitLab config:
gitlab_rails['omniauth_enabled'] = true
gitlab_rails['omniauth_allow_single_sign_on'] = true
# gitlab_rails['omniauth_auto_sign_in_with_provider'] = 'saml'
gitlab_rails['omniauth_block_auto_created_users'] = false
# gitlab_rails['omniauth_auto_link_ldap_user'] = false
gitlab_rails['omniauth_providers'] = [
{
"name" => "crowd",
"args" => {
"crowd_server_url" => "http://localhost:8095/crowd",
"application_name" => "crowd_gitlab",
"application_password" => "Password"
}
}
]
The Crowd application I have setup looks like:
Name: crowd_gitlab
Application type: Generic Application
Active: x
Password: Password
The crowd tab appears on the GitLab login page but the error I get is:
500
We're sorry, but something went wrong.
Note that the URL displayed during this error is http://localhost/users/auth/crowd/callback
Tried increaing generic tracing levels and looking through the logs on both Crowd and GitLab but cannot see anything obvious.
We're using Gitlab CE 7.7.2 and Crowd 2.8.2 successfully. I'm not sure if this changes with 8.0.5.
Our config is below
## OmniAuth settings
omniauth:
enabled: true
allow_single_sign_on: true
block_auto_created_users: true
providers:
- { name: 'crowd'
, strategy_class: 'OmniAuth::Strategies::Crowd'
, args: {
crowd_server_url: "http://crowd-server:8095/crowd",
application_name: "gitlab",
application_password: "PASSWORD"
}
}
We also force the Crowd login page as the default page for Gitlab, which was less confusing for people rather than displaying the default page and forcing them to click on the Crowd button.
Just looked at the features matrix and noticed that Crowd is only supported on EE. Doh!
how can I find out via foursquare explorer who the owner (or manager?) of a venue is?
I actually had my app working but now it doesn't, I'm not sure what changed but I doubt it was my php code. I was able to save access tokens, venueids etc and send shouts to a page via curl calls to 'https://api.foursquare.com/v2/pageupdates/add'. Maybe I am using a different user account than before, maybe the old one was a manager or owner of the venue. Now when I send a shout I get :
Array ( [meta] => Array ( [code] => 403 [errorType] => not_authorized [errorDetail] => Invalid page ) [response] => Array ( ) )
You cannot, in general, get the manager of a venue from the API. You can see the list of venues that you manage with the /venues/managed endpoint.
I'm upgrading a CakePHP 1.3 app to 2.0.3.
Previously, I was able to use the Auth component to log users in, and use the Security component to emulate Basic HTTP authentication. (as if I had setup an .htaccess file to password protect a page)
I used to do this:
$this->Security->loginOptions = array('type'=>'basic','realm'=>'training');
$this->Security->loginUsers = array("student"=>"student2010");
$this->Security->requireLogin();
Now it appears that even if I use:
public $components = array(
'Auth' => array(
'authenticate' => array('Basic')
)
);
It still wants to use my User model and database. Am I missing something?
Looking at the BaseAuthenticate and BasicAuthenticate classes would suggest that Cake no longer supports defining users and passwords that way.
You would probably have to extend the BasicAuthenticate class and override it's getUser() method.
Perhaps someone else could shed some light on this?