Skip to main content

Home/ Agency Oasis Developers/ Group items matching "accessibility" in title, tags, annotations or url

Group items matching
in title, tags, annotations or url

Sort By: Relevance | Date Filter: All | Bookmarks | Topics Simple Middle
mgraber

ASP.NET View State Overview - 0 views

  •  
    "Encrypting View State Although MAC encoding helps prevent tampering with view state data, it does not prevent users from viewing the data. You can prevent people from viewing this data in two ways: by transmitting the page over SSL, and by encrypting the view state data. Requiring the page to be sent over SSL can help prevent data-packet sniffing and unauthorized data access by people who are not the intended recipients of the page. However, the user who requested the page can still view the view state data because SSL decrypts the page to display it in the browser. This is fine if you are not concerned about authorized users having access to view state data. However, in some cases, controls might use view state to store information that no users should have access to. For example, the page might contain a data-bound control that stores item identifiers (data keys) in view state. If those identifiers contain sensitive data, such as customer IDs, you should encrypt the view state data in addition to or instead of sending the page over SSL. To encrypt the data, set the page's ViewStateEncryptionMode property to true. If you store information in view state, you can use regular read and write techniques; the page handles all encryption and decryption for you. Encrypting view state data can affect the performance of your application. Therefore, do not use encryption unless you need it. Control State Encryption Controls that use control state can require that view state be encrypted by calling the RegisterRequiresViewStateEncryption method. If any control in the page requires that view state be encrypted, all view state in the page will be encrypted. Per-user View State Encoding If a Web site authenticates users, you can set the ViewStateUserKey property in the Page_Init event handler to associate the page's view state with a specific user. This helps prevent one-click attacks, in which a malicious user creates a valid, pre-filled Web page with view state from a pre
mgraber

Checking for Section 508 and WCAG Compliance with Web Accessibility Checker » Web Accessibility » 4All » Tech Ease - 0 views

Mark Ursino

All about Sitecore performance counters - 0 views

  •  
    The following message appears in the log files: Could not create an instance of the counter 'XXX' (category: 'YYY') Exception: System.UnauthorizedAccessException Message: Access to the registry key 'Global' is denied. Resolution: A Sitecore application pool user has to be a member of the system "Performance Monitor Users" group to have access to the mentioned registry key. Adding the user to this group and restarting IIS should solve the problem.
Mark Ursino

Videola * Open Source IPtv - 0 views

shared by Mark Ursino on 21 Jun 11 - No Cached
  •  
    Videola is an enterprise-level video management system and video delivery platform. It allows you to create paid-access or free-access video websites which can serve video to the desktop, mobile, or television-based devices. Create your own Netflix On-Demand style (subscription), Hulu style (ad supported), or Blockbuster / Amazon style (rental) streaming video websites with your own video content.
mgraber

MaeSitus - Sitecore: Exception: System.UnauthorizedAccessException Message: Access to the registry key 'Global' is denied. Source: mscorlib - 0 views

  •  
    "Exception: System.UnauthorizedAccessException Message: Access to the registry key 'Global' is denied. Source: mscorlib"
mgraber

ASP.NET QuickStart Tutorials - 0 views

  • Securing Non-ASP.NET Files
  • ASP.NET handles requests for file extensions that are normally associated with ASP.NET, while IIS handles requests for all other file extensions. By default this means common file extensions such as .aspx and .asmx are processed by ASP.NET. This processing includes authentication and authorization to ASP.NET files. Sometimes though, a developer wants non-ASP.NET resources to be processed by ASP.NET. One reason for processing non-ASP.NET files through ASP.NET is to allow ASP.NET authentication and authorization to control access to these types of files. The combination of IIS6 on Windows Server 2003 and ASP.NET 2.0 provides the most flexibility for running the ASP.NET pipeline as part of processing a request for a non-ASP.NET resource. IIS6 includes support that allows ASP.NET 2.0 to perform authentication and authorization steps, and to then hand off the remainder of the processing of a non-ASP.NET resource back to IIS6. For example, it is possible to authenticate access to an ASP page using ASP.NET forms authentication, authorize access with ASP.NET's Url authorization and still allow the ASP ISAPI extension (asp.dll) to execute the ASP page. This support is possible because IIS6 introduced a new server support function for ISAPI extensions: HSE_REQ_EXEC_URL. Assume that a directory structure contains a mix of both ASP and ASP.NET files. The ASP.NET pages are used to log a user in with forms authentication, while the ASP pages represent the rest of the application. Using the IIS6 MMC, right-click on directory and create an application (this is the same step that is necessary when setting up a standard ASP.NET application). After an application has been created, click on the Configuration button that is located on the Directory property page. This will cause the Application Configuration dialog to be displayed. New to IIS6 is a feature called wildcard application mapping. The bottom of the Application Configuration dialog allows you to configure this feature. First determine the path for the ASP.NET ISAPI extension that processes ASP.NET files such as .aspx files. You can find this path by looking at the extensions that are listed in the Application Extensions list shown in the top half of the Application Configuration dialog. Click on the row in the list that maps the .aspx extension, and select the Edit button. In the dialog that pops up, highlight the text in the Executable textbox and copy it to the clipboard. Then cancel out of the dialog. Next, click the Insert button that is in the bottom half of the Application Configuration dialog. A dialog box titled Add/Edit Application Extension Mapping will be displayed. In the Executable text box, enter the path to the ASP.NET ISAPI extension that you copied to the clipboard earlier. The end result should look something like the screenshot below.
  • Click OK to close out all of the dialogs. Now whenever a request is made for any file, the request will first be processed by ASP.NET. If the web.config for your ASP.NET application has enabled forms authentication, an unauthenticated request for a .asp file will first trigger a redirect to the login page configured for forms authentication. After a user has successfully logged in, they will be redirected back to the original .asp page. When the now-authenticated user requests the .asp page, ASP.NET will first run through the FormsAuthenticationModule to verify that the forms authentication cookie exists and is still valid. If this check passes, ASP.NET will hand processing of the .asp page back to IIS6, at which point IIS6 will pass the request on to the ISAPI extension that normally process .asp pages. In this case the extension is asp.dll and the ASP page will then run to completion. The reason ASP.NET will pass the request back to IIS6 is that non-ASP.NET resources will fall through the list of configured <httpHandlers> to the following entry: <add path="*" verb="GET,HEAD,POST" type="System.Web.DefaultHttpHandler" validate="True" /> The DefaultHttpHandler is responsible for handing requests back to IIS6 for further processing.
  •  
    "Securing Non-ASP.NET Files"
mgraber

Controlling access to scripts in a host web page - 0 views

  •  
    "Controlling access to scripts in a host web page"
Mark Ursino

WAVE - 0 views

  •  
    Web Accessibility Evaluation Tool
Mark Ursino

Untie LINQ to SQL Connection String from Application Settings | {Programming} & Life - 1 views

  •  
    Did you know that by default LINQ to SQL defines your connection string in more than one place if you define your LINQ to SQL classes out from a web app, such as a data access layer class library?
Mark Ursino

CustomItemGenerator - 0 views

  •  
    The custom item generator is a tool that is used to create classes which will wrap access to a template's fields.
Mark Ursino

miniXML - 0 views

  •  
    MiniXML is a set of PHP classes and Perl modules that allow you to access XML data and create valid XML output with a tree-based hierarchy of elements.
Mark Ursino

Yedda Twitter C# Library - 0 views

  •  
    The Yedda Twitter C# Library provides easy access to the Twitter API. Every method in the Twitter API has a method in the C# class with the same name. Every method that can return one of the various formats such as RSS, XML and Atom follow the following convention "MethodNameAsFormat".
Mark Ursino

HTML-Ipsum - 0 views

shared by Mark Ursino on 31 Jan 11 - Cached
  •  
    One-click copy to clipboard access to Lorem Ipsum text that comes wrapped in a variety of HTML.
Mike Tomasulo

Sitecore CMS Blog: Attach WCF services to Sitecore context - 1 views

  •  
    How to allow access to the sitecore context in a WCF service.
Mark Ursino

Visual Subst - Virtual Drives In Effect - 0 views

  •  
    Visual Subst is a small tool that allows you to associate the most accessed directories with virtual drives. It uses the same API similar to the console 'subst' utility, but makes it easier to create and remove virtual drives in a GUI way.
Mark Ursino

After installing 5.3 not allowed to access the DBBrowser? - 0 views

  •  
    Some secret URLs in here too
Mark Ursino

Uni-Form - 0 views

  •  
    Uni-Form is an attempt to standardize form markup (xhtml) and css, "modularize" it, so even people with only basic knowledge of these technologies can get nice looking, well structured, highly customizable, semantic, accessible and usable forms.
Mark Ursino

RocketDock - 0 views

shared by Mark Ursino on 02 Nov 09 - Cached
  •  
    RocketDock is a smoothly animated, alpha blended application launcher. It provides a nice clean interface to drop shortcuts on for easy access and organization. With each item completely customizable there is no end to what you can add and launch from the dock.
1 - 20 of 27 Next ›
Showing 20 items per page