|
The Wizard of Poz posted:I came across that but I can't find any documentation whatsoever to support the theory that it can be used to build an OAuth 2.0 server. This is the frustration I keep encountering, it seems like no one in the world is interested in building their own OAuth server, they're only interested in talking to existing OAuth servers like Google and Facebook etc. https://github.com/DotNetOpenAuth/DotNetOpenAuth/wiki/Security-scenarios#developing-a-user-specific-authorization-server and down
|
#
?
Aug 17, 2015 05:10
|
|
|
|
| # ? Jun 7, 2024 04:17 |
|
|
Night Shade posted:https://github.com/DotNetOpenAuth/DotNetOpenAuth/wiki/Security-scenarios#developing-a-user-specific-authorization-server and down Exactly what I needed, thank you!
|
|
#
?
Aug 17, 2015 05:16
|
|
|
The Wizard of Poz posted:Open ID is not the same as OAuth 2.0. Fair enough. Sorry.
|
|
#
?
Aug 17, 2015 05:17
|
|
|
RICHUNCLEPENNYBAGS posted:Fair enough. Sorry. Not at all, I'm struggling to wrap my head around all this and the myriad of terms that get bandied about far too often appear to be interchangeable or their definitions become muddled. As I read more about OAuth 2.0 I'm starting to think maybe OpenID is what I need after all. It's all very convoluted. putin is a cunt fucked around with this message at 05:51 on Aug 17, 2015 |
|
#
?
Aug 17, 2015 05:49
|
|
|
RICHUNCLEPENNYBAGS posted:My program exists to reflect over arbitrary assemblies... how can I deal with resolving dependencies? I think I can pretty much assume the dependencies are always in the same directory as the assembly I'm reflecting over. AppDomain.AssemblyResolve read up on the Load and LoadFrom contexts, pick one, then handle that event to supply dependencies from arbitrary files (since yours are in a known location) i've done this before & it worked fine; just make sure to unload the appdomain when done or you'll be re-using the existing dep resolutions none of this will work in core CLR, but that's a bridge to cross someday..
|
|
#
?
Aug 17, 2015 05:59
|
|
|
The Wizard of Poz posted:Not at all, I'm struggling to wrap my head around all this and the myriad of terms that get bandied about far too often appear to be interchangeable or their definitions become muddled. As I read more about OAuth 2.0 I'm starting to think maybe OpenID is what I need after all. It's all very convoluted. I'm not 100% on this but my take on them both is that: OAuth allows a user to authorise some application access to their stuff without needing to give that application their password. OpenID allows users to authenticate themselves using a third party (Google etc.) and I think it can combine with OAuth in a single call to also ask for authorisation to that third party's data To do a typical federated identity sign in, you use OpenID to ask Google to authenticate your user, and then use OAuth to get authorisation from the user to read more info about them than just their email address. Chances are someone is going to come in here and correct me on that. Anyway this is starting to sound like an XY problem, so what is it that you're trying to do?
|
|
#
?
Aug 17, 2015 06:14
|
|
|
I have some code I am moving into a portable library targeting .NET 4.6, UWP and ASP.NET 5. I would like this code to take advantage of some .NET 4.6 classes if running on .NET 4.6 but not elsewhere - sort of like my own variant of Platform Extensions. The .NET 4.6 classes are my own, and I only want them used if the library containing them is loaded. How should I best accomplish this? What is the standard approach?
|
|
#
?
Aug 17, 2015 11:38
|
|
|
In fact, it seems that I am having trouble understanding some basic concept of portable class libraries. I have made a portable library targeting .NET 4.6, UWP and ASP.NET 5. In this library, I added a class that does some basic boring stuff with the filesystem (creates a directory). Now I am trying to use this class from a .NET 4.6 console app. I reference my portable library as a project reference. All is well. I run my console app. It explodes! quote:Could not load file or assembly 'System.IO.FileSystem, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a' or one of its dependencies. The system cannot find the file specified. Okay, fine - it seems that this library comes from the Microsoft.NETCore NuGet package. Presumably it explodes because my console application does not have it installed. So I go do that. But no! quote:Could not install package 'Microsoft.NETCore.Platforms 1.0.0'. You are trying to install this package into a project that targets '.NETFramework,Version=v4.6', but the package does not contain any assembly references or content files that are compatible with that framework. For more information, contact the package author. What. Am I missing something obvious?
|
|
#
?
Aug 17, 2015 12:05
|
|
|
Night Shade posted:XY problem This is my first time hearing this term but after googling it, I think I will be using it extensively going forward. 
|
|
#
?
Aug 17, 2015 13:00
|
|
|
SirViver posted:HA, I found the bug! I have a question about this if you don't mind, although it's not really thread relevant. However it's not letting me PM you, saying that you've opted not to receive PMs. Do you have an e-mail address I can reach you at?
|
|
#
?
Aug 17, 2015 17:18
|
|
|
Kekekela posted:This is my first time hearing this term but after googling it, I think I will be using it extensively going forward. You'll see examples of it constantly if you start reading/contributing to Stack Overflow. People decide they have a solution to their problem and ask how to implement their solution, when their solution is awful.
|
|
#
?
Aug 17, 2015 17:51
|
|
|
Brady posted:I have a question about this if you don't mind, although it's not really thread relevant. However it's not letting me PM you, saying that you've opted not to receive PMs. Do you have an e-mail address I can reach you at? Anyway, PMs are now enabled.
|
|
#
?
Aug 17, 2015 18:19
|
|
|
ljw1004 posted:SirVivier, thanks for the clean and simple bug report. I took the liberty of filing it on github: https://github.com/dotnet/roslyn/issues/4575. (Edit: wow, more of the compiler devs are piling on. Looks like auto-generated assembly versions have wider implications.)  . Though, truth be told, I'll probably simply revert our assemblies to fixed version numbers (or ones written during the actual release package build - duh), as the generated ones serve no real purpose anyway. A few years back I had enabled them with the intention that it's easier to verify the assembly installed at the customer actually being the one delivered in the release package (to rule out hosed up installs or amateur-level tampering), but that issue arose exactly never.If you do end up deprecating this feature, as seems to be discussed in the linked github issues, just remember to also remove this comment from the generated AssemblyInfo.cs pre:// You can specify all the values or you can default the Build and Revision Numbers
// by using the '*' as shown below:
// [assembly: AssemblyVersion("1.0.*")]
SirViver fucked around with this message at 18:56 on Aug 17, 2015 |
|
#
?
Aug 17, 2015 18:54
|
|
|
SirViver posted:That's because PMs are a Plat... ohh, I seem to have mysteriously acquired Platinum, which also explains the report buttons suddenly showing up. Assuming someone bought it for me, thanks! - whoever you are. Consider it a "thank you" for all the helpful posts.
|
|
#
?
Aug 17, 2015 19:50
|
|
|
Ithaqua posted:You'll see examples of it constantly if you start reading/contributing to Stack Overflow. People decide they have a solution to their problem and ask how to implement their solution, when their solution is awful. I've got like 7000 points on SO, not sure how I never came across it. e: to be clear, I definitely see the scenario play out all the time, I've just never heard it called that Kekekela fucked around with this message at 00:58 on Aug 18, 2015 |
|
#
?
Aug 17, 2015 21:52
|
|
|
Kekekela posted:This is my first time hearing this term but after googling it, I think I will be using it extensively going forward. Haha me too! Night Shade posted:I'm not 100% on this but my take on them both is that: I think you're right, let me take a step back. We have a customer database that includes, among other details, a username and password for each of our customers. We would like to use this database to provide authentication for potentially many websites. To achieve this, I'd like to make some kind of authentication service that can be called remotely to authenticate a user and they will then be logged in across all the related websites without having to re-enter their credentials for each one. I assume this would some kind of token system but I'm not sure how to plug it all together.
|
|
#
?
Aug 18, 2015 00:22
|
|
|
I'm working on an MVC 6 Web API project and I'd like to profile it to find out where my performance bottlenecks are. However, when I go to the Debug menu -> Start Diagnostic Tools without Debugging and go through all the steps there, I hit a wall. When it asks me which project I want to profile, the listing says "No launchable projects are available for profiling." What should I do? Would something like MiniProfiler work if I dropped it in?
|
|
#
?
Aug 18, 2015 05:12
|
|
|
The Wizard of Poz posted:Haha me too! Your own or also third party websites?
|
|
#
?
Aug 18, 2015 05:31
|
|
|
EssOEss posted:What. Am I missing something obvious? Manually sticking a project.json file into the .NET 4.6 project resulted in the runtime error resolving but now, I am getting errors like "cannot resolve IConfigurationSectionHandler" and "The referenced component System could not be found". This is ridiculous. EssOEss fucked around with this message at 06:56 on Aug 18, 2015 |
|
#
?
Aug 18, 2015 06:46
|
|
|
The Wizard of Poz posted:I think you're right, let me take a step back. We have a customer database that includes, among other details, a username and password for each of our customers. We would like to use this database to provide authentication for potentially many websites. To achieve this, I'd like to make some kind of authentication service that can be called remotely to authenticate a user and they will then be logged in across all the related websites without having to re-enter their credentials for each one. I assume this would some kind of token system but I'm not sure how to plug it all together. The Wizard of Poz posted:As I read more about OAuth 2.0 I'm starting to think maybe OpenID is what I need after all. It's all very convoluted. I'm pretty sure you're right, and that what you want to be doing is building an OpenID provider over your customer database and making the related websites relying parties. I couldn't easily find any documentation on doing that with DotNetOpenAuth but I did find a sample implementation at https://github.com/DotNetOpenAuth/DotNetOpenAuth.Samples/tree/master/src/OpenID/OpenIdProviderMvc - good luck! Kekekela posted:This is my first time hearing this term but after googling it, I think I will be using it extensively going forward. 
|
|
#
?
Aug 18, 2015 07:23
|
|
|
Kekekela posted:
|
|
#
?
Aug 18, 2015 11:48
|
|
|
This reminds me of a horrible Menendez brothers joke. e:  are those....nested quotes?
Kekekela fucked around with this message at 11:55 on Aug 18, 2015 |
|
#
?
Aug 18, 2015 11:53
|
|
|
SirViver posted:
This is what I thought also.
|
|
#
?
Aug 18, 2015 14:58
|
|
|
Mr Shiny Pants posted:This is what I thought also. Must be an accent thing, because "ex" and "ask" sound nothing alike.
|
|
#
?
Aug 18, 2015 15:01
|
|
|
Ithaqua posted:Must be an accent thing, because "ex" and "ask" sound nothing alike. Listen to some rap music  You are right, but with some imagination you can.
|
|
#
?
Aug 18, 2015 15:22
|
|
|
Ithaqua posted:Must be an accent thing, because "ex" and "ask" sound nothing alike.
|
|
#
?
Aug 18, 2015 15:37
|
|
|
I just upgraded from Visual Studio 2013 to 2015, and I'm missing a feature. In a small line above each class and function definition, it mentioned how many references to the function, who created it, and a little more. I also have ReSharper installed, and I don't remember installing anything else in 2013. Anyone know what I'm talking about?
|
|
#
?
Aug 18, 2015 19:33
|
|
|
Boz0r posted:I just upgraded from Visual Studio 2013 to 2015, and I'm missing a feature. In a small line above each class and function definition, it mentioned how many references to the function, who created it, and a little more. I also have ReSharper installed, and I don't remember installing anything else in 2013. Anyone know what I'm talking about? it's called codelens if that helps, it was built-in to visual studio but I immediately turned it off
|
|
#
?
Aug 18, 2015 19:34
|
|
|
Boz0r posted:I just upgraded from Visual Studio 2013 to 2015, and I'm missing a feature. In a small line above each class and function definition, it mentioned how many references to the function, who created it, and a little more. I also have ReSharper installed, and I don't remember installing anything else in 2013. Anyone know what I'm talking about? Did you switch to VS 2015 community or something? Code Lens is in VS2015 Professional and Enterprise now.
|
|
#
?
Aug 18, 2015 19:38
|
|
|
Boz0r posted:I just upgraded from Visual Studio 2013 to 2015, and I'm missing a feature. In a small line above each class and function definition, it mentioned how many references to the function, who created it, and a little more. I also have ReSharper installed, and I don't remember installing anything else in 2013. Anyone know what I'm talking about? I gained this feature when I upgraded from VS2013 to 2015, and it is a magical wonderful thing and I will maybe be able to convince my coworkers to write decent commit messages now, but yeah it was in 2013 ultimate and unless you went all the way down to community you should still have it in 2015.
|
|
#
?
Aug 18, 2015 21:03
|
|
|
Yeah, it's the Community Edition. It was top of the list in Dreamspark, and it said it was pretty much the same as Enterprise so I just picked that, while Enterprise was just underneath it. Trust no one.
|
|
#
?
Aug 18, 2015 23:30
|
|
|
Yay Microsoft and version segmentation. You still have Source Control -> Annotate for what it's worth.
|
|
#
?
Aug 18, 2015 23:37
|
|
|
Boz0r posted:Yeah, it's the Community Edition. It was top of the list in Dreamspark, and it said it was pretty much the same as Enterprise so I just picked that, while Enterprise was just underneath it. Trust no one. On the bright side given you have access to the Enterprise edition you should be able to just install that over the top of your current install and upgrade it. At least I did that to my copy of 2013 when I got bumped from Pro to Premium and it worked OK, didn't even break addins.
|
|
#
?
Aug 18, 2015 23:46
|
|
|
Hey Poz one of the other guys at work just pointed me at Thinktecture IdentityServer as an alternative to DotNetOpenAuth, might be worth looking into as well.
|
|
#
?
Aug 19, 2015 00:14
|
|
|
Mr Shiny Pants posted:Your own or also third party websites? All will be under the control of the company I work for, so no third party sites. Night Shade posted:I'm pretty sure you're right, and that what you want to be doing is building an OpenID provider over your customer database and making the related websites relying parties. I couldn't easily find any documentation on doing that with DotNetOpenAuth but I did find a sample implementation at https://github.com/DotNetOpenAuth/DotNetOpenAuth.Samples/tree/master/src/OpenID/OpenIdProviderMvc - good luck! Night Shade posted:Hey Poz one of the other guys at work just pointed me at Thinktecture IdentityServer as an alternative to DotNetOpenAuth, might be worth looking into as well. Thanks mate, both of those look positive, especially IdentityServer. Very much appreciate your advice, cheers!
|
|
#
?
Aug 19, 2015 01:26
|
|
|
The Wizard of Poz posted:All will be under the control of the company I work for, so no third party sites. I would seriously take a look at ADFS, it works pretty easily with MVC and the tooling is pretty nice. It should support a custom SQL backend for storing your users.
|
|
#
?
Aug 19, 2015 06:55
|
|
|
nuget continues to everything. https://api.nuget.org/v3/index.json is 404 right now, and the 404 response contains XML not JSON!
|
|
#
?
Aug 19, 2015 12:58
|
|
|
further: having one source un-contactable prevents any nuget upgrade or install operation in v3 even when no packages from that source are involved.
|
|
#
?
Aug 19, 2015 13:01
|
|
|
Kekekela posted:The two ways I see are with a generic method: I'm using this one, it seems the most elegant. The GameTiles array is of type IGameTile. Can I enforce type safety on the function in some way, instead of casting TTile to IGameTile all the time?
|
|
#
?
Aug 19, 2015 13:12
|
|
|
|
| # ? Jun 7, 2024 04:17 |
|
|
In C++ you could include a static_cast in the template function and it would refuse to compile if it weren't a derived type - not sure if something similar is possible in .NET.
|
|
#
?
Aug 19, 2015 13:21
|
|
