Closed. This question needs to be more focused. It is not currently accepting answers.
Want to improve this question? Update the question so it focuses on one problem only by editing this post.
Closed 8 years ago.
Improve this question
I have a REST service based on mvc 4 and web api. I need to monitor all the users who are using my service (eg: user name , organization that user belongs to, how many hours he is accessing service and so). can you please provide best architecture for this. what is the best way to doing this?
You can use a custom HttpMessageHandler for doing authentication and track all the information you need about the user in a database. You will need some background processing of that data and doing some statistics about the usage of the API. About the message handler, a good start is the one provided in Thinktecture.IdentityModel library (You can customize it),
http://leastprivilege.com/2013/04/22/asp-net-web-api-security-the-thinktecture-identitymodel-authenticationhandler/
Related
Closed. This question needs details or clarity. It is not currently accepting answers.
Want to improve this question? Add details and clarify the problem by editing this post.
Closed 2 years ago.
Improve this question
trying to develop an application that takes data from a user's respective Blackboard account and display that information in a different way. I have been reading the blackboard API documentation and I guess I have to go to an administrator with an App ID in order for me to obtain this kind of access. What type of information should I provide the admin being as I don't even know what an App ID is, let alone provide it. I'm just a student trying to make my life easier by consolidating information that's already available to me on blackboard. I appreciate any guidance on the development process.
The documentation you'll likely want to start with is at https://docs.blackboard.com/ - of particular note is the REST / Getting Started section. See also the swagger docs for the API, which detail the needed entitlements for each API call.
Closed. This question needs details or clarity. It is not currently accepting answers.
Want to improve this question? Add details and clarify the problem by editing this post.
Closed 3 years ago.
Improve this question
Is there a way to use Firebase Authentication in Blazor platform?
I found ways to use facebook and google authentication natively, but I save the firebase user id in my database and I would like to use firebase authentication for this particular reason.
Firebase use OAuth2 you need a Service account and the its private key file.
You can use Google.Apis.Auth. Not sure it work on client-side.
You can take a look at https://github.com/aguacongas/Identity.Firebase/tree/master/src/Aguacongas.Firebase.Authentication to have a sample in .Net.
Closed. This question needs to be more focused. It is not currently accepting answers.
Want to improve this question? Update the question so it focuses on one problem only by editing this post.
Closed 5 years ago.
Improve this question
The image describes itself the objetive:
If someone doesn't understand, I want to create a register box which registers the g+ email into a database with the respective user's data.
It's called OAuth. Usually we use an external provider (such as Google, Facebook, Github, etc.) to identify the user, so you don't have to. The user don't have to give you his password, because you use access tokens to request the user's data from the provider's server:
You can read more and find implementations here.
On the image, you probably see the Google's OAuth2 service.
Closed. This question needs details or clarity. It is not currently accepting answers.
Want to improve this question? Add details and clarify the problem by editing this post.
Closed 9 years ago.
Improve this question
I need to use some API by my own mobile app. But I want lock access from 3d party mobile apps. How can I do this?
I talking not about authorization. I just don't want, that somebody write application which use API on my website.
You can't reliably block 3rd party clients without machine to machine authentication.
I suggest using an API key as a general approach. This question explains how it might be implemented at a high level
However:
What's best for you depends entirely on the framework that you're using, it's always best to use an existing framework for security.
Closed. This question needs to be more focused. It is not currently accepting answers.
Want to improve this question? Update the question so it focuses on one problem only by editing this post.
Closed 4 years ago.
Improve this question
I am trying to document web service operations using WSO2 governance registry specifically api manager. What I am suppose to provide for the following fields - provider, name, context. I am not able to find any description of these fields any where on the help document.
Is there a more appropriate option to document web service operations? i.e rest services schema, operation name, description etc?
-ap
http://docs.wso2.org/wiki/display/AM100/Adding+an+API
provides information for you query. The link provides comprehensive documentation on WSO2 APIM.
Regards,
/Nuwan