my team is building a game in flash to be embeded in a asp.net application.
When the game is over the player have the chance to type his name to save his score. This is done using web services called from flash. The webservice receives the name and score.
Since the webservice is publicly available how can I make it only callable from my flash given the following conditions:
The .swf is hosted by the same asp.net application There are two domains that can access the same application (I have run previously into cross domain issues). Using SSL is not an option. The webservice has to be consumed by the .swf file.
I am a student and i want to make online gaming website as a part of my academic project.
Now the problem that i am facing is that as it is an academic project i have to use downloaded swf games into my project . now i want to fetch the highest score for an individual for a particular game and i want to store that data into my database so that i can populate the list of high scorers for any particular game on my webpage.
I'm trying to add Embeded flash in aspx page running on iis 7.5 windows server 2008. When i'm adding the Embeded code src=/mylocation/test.swf it works fine. But when I'm adding fileserver location src="file:\c: est.swf the page doesn't load.
The code works fine in normal html file on my desktop.
I have done an multiple upload with uplodify jquery, but when i check it in a system with no flash player installed a blank area is present in the region of the uplodify flash button, how can i show the user some missing plug-in like in other sites to install latest flash player plug-in... or suggest some option to make upload possible in a button click (single/multiple) even when user don't have flash installed.
When a web service is consumed from server side, the web service may be implemented in a way to check credentials of the caller. In the case of calling the web service from javascript, how to secure the service since no credentials can be passed into a javascript function becuase of the visibility in source view?
I'd like to modify the value of my Sliding Expiration time span based on how much memory is available. If the site's traffic is high at any point in time, more data will be added to the cache than during quieter periods. During those quiet periods I can increase the sliding expiration time span, thus allowing data to be stored longer. But when the site is busy I need to free up memory so I'm happier with a shorter time span.
So I guess my questions are as follows: Is it possible for me to find out how much memory is being consumed by the items I've added to HttpRuntime.Cache? If so, how? Does this sound like a realistic solution to the problem I've described?
I need to write a webservice to be consumed by an application. The application will read the WSDL and provide me with the input output fields that I can utilise. The webservice output should be an array of string values as the output. I have taken a dataset and can output that as XML but I need to provide a description in WSDL what the output format will be and I cannot seems to get my head around to that. What I need is something similar to[URL] but do not how to write the WSDL to give me a clear input and output structure in the definition.
I have web service with reference of BO library in same application. My BO contains classes with some private members and respective public properties.
All of these private members had default values in a perticular class say Contact.cs.Now when I consume this webservice into Windows Application, these already assinged values to BO does not persists in the Windows Application code.
Is there any limitation such that you can serialize the default values assosiated with private members ?
Even I have tried to assign these values directly to the properties in a constructor of Contact class.
In have created a Web Service which needs to be consumed by multiple environment (.Net,Java,Python..etc) hence ,I have used List<list> as an outparameter (with "OUT" keyword )in my Web service to return value. My question is Will all the application consuming my webserice able to get List as return value ? if not can anyone help me out in getting return values from asp.net webserive that will be consumed by multiple environment
Is it possible to do this? Or do I need to make a server control for this functionality? I have it being able to be set in the Page_Init, but I'd like to make it as similar to actual controls as possible. Also, if it is possible to access via the Events section under Properties, that would be good and 2. I am trying to register the web user control as an AsyncPostbackTrigger for another UpdatePanel. With the previous question in mind, is it also possible to set this via the GUI, or does this need to be set programmatically as well?
How to Find All the Web Services and Windows Services Running on a Server in ASP.Net. I have the server details with me and want to find all the Web services running on it.
I am using Visual Studio 2010 Release candidate1. I have to deploy my web application which consists of a website, certain window services, certain WCF services and Sql Server 2005 database.I read Vishal Joshi's blog(http://vishaljoshi.blogspot.com/2009/09/overview-post-for-web-deployment-in-vs.html) detaing Web Package in VS2010. I want to know how to deploy window services and WCF services using Web Package. Also, I want to create a web setup (.msi) for deployment instead of Web Package so that the .msi takes care of all the application and database deployment like the web package does.
In ASP.NET MVC 2, to secure controller action, i have created a class RequirePermission inherited from ActionFilterAttribute class. The controller action looks like
[Code]....
Now instead of making different attributes , I want to use RequirePermission attribute like [RequirePermission(permissions=Permissions.CanView+","+Permissions.CanEdit)] so that i can use it for different scenerious. but the compiler throw the following error. An attribute argument must be a constant expression, typeof expression or array creation expression of an attribute parameter type
I have a asp.net website and I am accessing that web service from my iPhone app to get data. The WCF web service produces data as JSON.I want to put some kind of authentication on the WCF. What you you guys recommend?
How to secure an Action filtered with Authorize method from a jQuery call? I have this Authorize filter and it work's cause users are redirected if not logged-in. But after logging-out then accessing previous open pages that needs authorization, they weren't redirected at all. This jQuery is initialize when a button is clicked,
jQuery.post( "/controllername/IsUserActive", { }, function (data) { if (data){ $('#div_user_active').html(data); { else { $('#div_user_active').html('Not Active'); } } );
then calls this Action method.
<Authorize()> _ Function IsUserActive() As Boolean Return True '<<---this keeps returning even users are already logged-out. End Function
Overall, I wanted ajax(jQuery) to update/read a portion of the page but gets redirected if not authorized.
We will be developing an ASP.NET application. It will store data in an SQL Server 2008 R2 installation. Most of the data is sensitive, so security is a primary concern.We will be hosting this in a shared environment, and it is a design goal that the data should be unreadable in the case of theft.
I am thinking of the following set up:
Encrypt the whole database using TDE. Users are created in the SQL Server users table, and we authenticate against that when users log in through the web interface.The intention is that if someone gets to the database, they will not be able to use the data. And no connection string with user credentials will need to be stored in the web.config file. Do you see any disadvantages to this approach? And how easy will it be to authenticate against the SQL Server as described?
I need to create a single sign-on structure and my question is: is SSL a must?
Details: The application will have a link to my web application. When the user clicks that link, their local username will be passed to my web app at which point a look-up in a mapping file is done. If that local username exists in the map, then the user is logged in. If not, then the user will be prompted to enter their network username and password, and when authenticated, an entry in the map will be created.
How do I ensure that user is who they say they are and not Joe Blow from off the street sending in an HTTP POST request with that username?
Do I have to use SSL (and if so, what does that entail)? Would adding a salt and encrypting the username be sufficient? Maybe locking it down so the source IP has to be within a controlled range?
My web app runs on IIS 6/7 and uses the ASP.NET MVC framework, if that is important.
I am trying to deploy a project for customers and i 'd like to be sure that code will be secured and cannot be hacked or seen , i know we can do that through the precompiled features but i don't konw how secure it is , and is there any other ways for this?also about the database can i protect it so as no one can open it see the tables or edit .... etc ?
My client has s website hosted under IIS 6. This website has a subsite as a virtual directory that we need to ensure is only accessed via HTTPS.
We have enabled HTTPS access to the sub-site, but because the root site is configured to use HTTP, this is being inherited by the sub-site and you can access it unsecured. How can we prevent this?
The only potential option I've found so far is this implementation of IHttpModule. Is there nothing in the web.config I can set, as you can the security on a WCF binding?
