Closed. This question needs details or clarity. It is not currently accepting answers.
Want to improve this question? Add details and clarify the problem by editing this post.
Closed 8 years ago.
Improve this question
I have a problem that i could not solve, How I can get a session variable from an external website?
something like: myvariable=session["othersite"];
You have to make web request on server side, that will access external site, and external site has to have endpoint (web service) that will provide it. Also if the session variable value is sensitive, you may want to use symmetric encryption along the way.
Related
Closed. This question is opinion-based. It is not currently accepting answers.
Want to improve this question? Update the question so it can be answered with facts and citations by editing this post.
Closed 1 year ago.
Improve this question
I was in the process of programming a backend API for a blog-like website. Users may create posts, but they may not like their own posts. What would the HTTP code be for users should not be able to like their own posts?
Would it be code 400 bad request? Or would it be duplicated resource?
I would go with 403 Forbidden
"The request contained valid data and was understood by the server, but the server is refusing action."
Closed. This question needs to be more focused. It is not currently accepting answers.
Want to improve this question? Update the question so it focuses on one problem only by editing this post.
Closed 3 years ago.
Improve this question
At the moment I am working with a payment system. After successful payment, the system sends a POST request to my domain with all data about its payment. I should to process this request and add the user's amount to his balance.
My DB is firebase. How I can do this on the server-side.
Use a Firebase Admin SDK with the language of your choice.
Closed. This question needs to be more focused. It is not currently accepting answers.
Want to improve this question? Update the question so it focuses on one problem only by editing this post.
Closed 3 years ago.
Improve this question
https://www.genecards.org is protected by cloudflare. But this is not clear from the HTML webpages on genecards.org. Is there a systematically to figure out this kind of information for a number of websites? Thanks.
Short of triggering a Cloudflare bot challenge, you can try to tell the public-facing CDN/WAF/some of the anti-bot services as follows:
Do an NS lookup and look for either what nameserver/DNS hosting provider they use (often for Cloudflare customers it's *.ns.cloudflare.com), or what IP's that name resolves to. Both methods are not 100% reliable because that could be only an outer, public-facing layer and inside there could be a non-public facing WAF. IPs can also change. But it's a start.
In this case, for genecards.org it's actually showing not Cloudflare but Imperva Incapsula CDN as the outer layer, based on the IP addresses genecards.org resolves to. A quick check on builtwith in the "CDN" section confirms that.
Closed. This question is opinion-based. It is not currently accepting answers.
Want to improve this question? Update the question so it can be answered with facts and citations by editing this post.
Closed 5 years ago.
Improve this question
We should log post data or not, if not then why?
I did not get proper answer anywhere.
It is best not to log any events containing personally identifying information (PII) or security credentials, as that makes your log storage system a greater privacy and security liability than is strictly necessary.
For this reason, people frequently avoid logging the body of POST requests, as they might contain user's email addresses, passwords, user or internal API keys, etc.
However, you may safely collect such logs if you write application-specific rules to sanitize these log messages of sensitive information.
Closed. This question needs details or clarity. It is not currently accepting answers.
Want to improve this question? Add details and clarify the problem by editing this post.
Closed 8 years ago.
Improve this question
How can I send an SMS text message from my cellphone and have it received and processed on my asp.net website? I have no idea where to start.
It really depends on what you want to achieve with your application.
For a more robust solution you would need to use an SMS Gateway provider. I would recommend someone like Clickatell http://www.clickatell.com/products/two_way.php. They have a simple API you can integrate with to send and receive messages via your application.
The drawback here is that you'll need to pay for setup as well as rent a virtual mobile number which will be used for receiving messages.