I want the user to send their location with skype.
Is this possible?
Skype does not yet support support sharing of location.
Related
My client has a Wordpress website and he wants to upload a specific catalogue so customer can download it only when they log in with their username and password from another managing platform called Handshake. He uses this platform to manage his clients, payments, inventory and such.
He would like to see if we can use the sign-in form from Handshake to allow downloads, using their existing accounts from Handshake instead of asking clients to create another accounts on Wordpress.
I am wondering if there is a way to integrate this Handshake log-in into Wordpress. Any other suggestions are also appreciated.
Thank you very much.
How do browsers share credentials belonging to one domain with other? As I asked in question, if I log into one service, I'm automatically logged into other service? What authentication scheme is this and how are credentials shared?
The answer is that they use OAuth or something like it. You can read about it at https://en.wikipedia.org/wiki/OAuth or just google for OAuth. Only one site receives your username and password. The others are granted permissions by that site.
By using API's.
For example: When you going to Youtube and you want to log in, then Youtube uses Googles API's to check if there is an account that equals with your details.
And in case of logging in automatically, just the same way, but then with a session or cookie I think.
They use cookies to save your (encrypted) information.
Cookies stored on your browser are readable by any website*, so in theory any website that knows how Google's authentication scheme works is able to "log you in" on a Google account.
Also, in theory, any person who "steals" your cookies and use it on their computer would be able to log in as you. However there are certainly security measures taken into consideration from Google before allowing you to authenticate using only a cookie (using IP and other request information to make sure that cookie belongs to you, etc)
As a proof of concept, if you delete all cookies on your browser created by google.com you will find out that you are logged out of Google's websites. And when you log back in, the cookies will be recreated.
Errata:
*Cookies can be read by websites under the same domain.
I want to setup a SIPML5 client who can call my server without any authentication. The scenario is that I want my website to call my office without dialing any number or anything.
I've been told I need to enable allowguest in my asterisk because if I enable authentication then different website users would race each other or kick each other out since they'll be using the same credentials.
Now my problem is that I can not find the way to use SIPML5 without giving it authentication info. Does anyone know how to use SIPML5 in an anonymous way?
Use
autocreatepeer = yes
And use random username at your client side
But note, no authentification is not something you really need to do, becuase of spammers and crackers.
I am building a website with user accounts. I want the user's name to be displayed at the top, along with the ability to check their inbox with a dropdown that will be updated and refreshed by AJAX. For a user to log in, they will enter their username and password in another dropdown box powered by AJAX. I will also have a specific page, which could use SSL, which sells items through PayPal and BitPay.
I want to secure this with SSL. However, it's not feasible to make all the pages use SSL because the CDN I plan to use doesn't support SSL at the price I am willing to pay and because I wish to allow users to embed images and YouTube videos, which would be linking to third-party HTTP resources.
So my question: is it possible to allow users to log in through AJAX securely over SSL? (The AJAX request would be secured, but not the page that shows the log in form.) It must then be able to display their account name and edit their account settings over an unsecure connection? How would cookies work with this?
You might get better answers at security.stackexchange.com, but in short: You might have a cookie shared between http and https. But then you should not associate any information to the cookie, which might be abused by an attacker, because the cookie can be sniffed when using http instead of https and then reused by the attacker to hijack the session (and those the identity). So for serious stuff you should have another and different secure (e.g. https-only) cookie. A good source of information is also OWASP, e.g. https://www.owasp.org/index.php/Session_Management_Cheat_Sheet
I need to mount WebDAV share programmatically on Windows. I do not know the user credentials, each user has its own login/password. Some servers allow anonymous access.
How do I mount WebDAV and present login dialog only if requested by server?
I need exactly the same behavior as Add Network Location Wizard. Are there any chance to call the same Windows API Add Network Location is using?