I m new to flask and web development, have a few questions and need suggestion on it.
As I am trying to develop a webpage for the attendance management system. when multiple user logins into the app they are able to see their respective web page but the moment any user changes an option / select any option to see their attendance like daily, weekly or monthly then all the user's webpage change to the user's page who have selected attendance option, now they all are looking on the same page with users details overlap with the user who selected the option to see attendance.
it is a very basic page but I m getting this issue. how to resolve it
please help ... need some suggestion
for the above problem, I tried to use a session in the app.
I want that every user can see their own details in the app, with multiple user logins
Related
I'm trying to password protect a page that contains confidential information.
Upon clicking a link, user will be shown a pop-up dialog to enter password.
If successful, redirect user to page. Otherwise, display "Wrong password".
The thing is, this can be easily overcome if user just copies the URL and add "/exec#ConfidentialPage" to the end of the URL.
Any suggestions?
If at all possible I would highly discourage implementing your own authentication system and instead rely on Google login to secure your data. See https://developers.google.com/appmaker/security/secure-your-app. My short recommendation is to:
Create a google group which contains the users you want to access the
data.
Create a role in App Maker which contains that group
Restrict access to both your data and your view to members of that role.
This is much more secure than a password based approach as #1 It's implemented by Google (implementing your own auth correctly is hard) and #2 You have a list of everyone who has access to your data in the form of the Google group.
I have an asp.net web application consisting of admin and customer portal and in this application there is a requirement i.e. admin is allowed to login into customer portal and perform some specific task on his/her behalf. For this admin search all the customers and a link is provided in the grid upon clicking the link the admin portal passes custId in entryped format and dectrypt in patient portal and allowed to login and set all the respective sessions.
The issue I am facing right now is when admin select multiple customer in new tab/window the session of the last selected customer is being overridden by the one selected earlier.
I am aware this is a techenical limitation when using Inproc sessionstate, wondering if there is any alternate solution to this issue.
Any suggestion/help on this would be of gr8 help.
can anybody tell me if its possible to retrieve a list of a member's pages without manage pages permissions? or if its possible to send the graph a facebook page id and have it return whether or not the current FB user admins the page.
i have a page tab application which a FB user can install to one of their pages, and in order to show the relevant info regarding the current FB user from my website on their facebook page, i need to know that the page they have given me is administered by them.
since i dont want any control over the page itself, only to know that the page id ive received is associated with the current FB user, asking for permissions to log in as any and all of their facebook pages seems like a bit of an excessive permission
I am trying to create a end User friendly webpage, which access required information from Plesk10 panel.
I have a reseller webhosting plan. I have administrator rights in my hosting plan. In my hosting i can create new user delete suspend or update etc. I can create a separate plesk panel for the user...
Now my question is :
I want to create a page which get the user information from plesk10 panel and give some rights to do few simple tasks, Like add/delete/change password/update there own email accounts, get space usage infromation, create/change ftp connection name or password. and a BILLING / INVOICE / and payment detail
How to fetch this data from Plesk10 and update data to Plesk10
Please give me advice to complete this task. or give me any web link related to this issue.
Thank you
JS
There is an API for Plesk documented on their website: http://download1.parallels.com/Plesk/PP10/10.1.1/Doc/en-US/online/plesk-api-rpc-guide/index.htm
They have c#, vb.net, and php examples.
I have a very basic understanding of ASP.NET and I am trying to do the following. I have a home page that is set-up to be a login page. If you could just picture a username and password box that is the extent of that home page. Once the user is logged in they will go to a different page let's say the account page. However, when the user clicks the logo at the top left hand it takes them to the home page again but it shows the username and password boxes again ready to be filled.
The user status at the top of my page still shows that the user is logged in. What I am trying to do is add a piece of code that will change the link of the logo to display the account page once they are logged in and not the login page.
I don't know if this can be done through the web.config file since I read a different article that has something similar to this or if this code can be put directly next to the code where my logo link (default.aspx) sits.
Many thanks in advance!
Research the Membership Provider.
It's an industry standard in ASP.NET session management. It will manage all of your pages and allow you to customize pages, menus, etc. based on roles and permissions. Don't reinvent the wheel if you have the oppertunity to use it.
Straight from MSDN:
ASP.NET membership supports facilities
for:
Creating new users and passwords.
Storing membership information (user
names, passwords, and supporting data)
in Microsoft SQL Server, Active
Directory, or an alternative data
store.
Authenticating users who visit your
site. You can authenticate users
programmatically, or you can use the
ASP.NET login controls to create a
complete authentication system that
requires little or no code.
Managing passwords, which includes
creating, changing, and resetting them
. Depending on membership options you
choose, the membership system can also
provide an automated password-reset
system that takes a user-supplied
question and response.
Exposing a unique identification for
authenticated users that you can use
in your own applications and that also
integrates with the ASP.NET
personalization and role-management
(authorization) systems.
Specifying a custom membership
provider, which allows you to
substitute your own code to manage
membership and maintain membership
data in a custom data store