Activities of "amasanad"
Hello
how to make the auth token cookie flag set to HttpOnly, as it came out as vulnerabilities issue on our test
Hello
how to set auth token to secure = true i've tried many options but it doest affect
using asp.net core with angular
please help
i've been tryign the following
AuthConfigurer var authenticationBuilder = services.AddAuthentication(CookieAuthenticationDefaults.AuthenticationScheme) .AddCookie(options => { options.ExpireTimeSpan = TimeSpan.FromDays(1); options.Cookie.HttpOnly = true; options.Cookie.SecurePolicy = CookieSecurePolicy.Always; options.Cookie.SameSite = SameSiteMode.None; options.Cookie.IsEssential = true; });
Startup
app.UseCookiePolicy(new CookiePolicyOptions { MinimumSameSitePolicy = SameSiteMode.None, Secure = CookieSecurePolicy.Always, HttpOnly = Microsoft.AspNetCore.CookiePolicy.HttpOnlyPolicy.Always });
Authenticate Method
Response.Cookies.Append( "Abp.AuthToken", "toke_value", new CookieOptions { Expires = DateTimeOffset.Now.AddSeconds(15), Path = "/", HttpOnly = true, Secure = true }
Hello i need to add session time out for asp.net backend i've been trying with the follwoing on startup
services.ConfigureApplicationCookie(o => { o.ExpireTimeSpan = TimeSpan.FromSeconds(15); o.SlidingExpiration = true; });
AND
services.AddSession(options => { options.IdleTimeout = TimeSpan.FromSeconds(10); });
but it's not working can you please help using asp.net core with angular
how to implemetn CSRF token on aspnet zero with angualr front end on all pages post login
Prerequisites
Please answer the following questions before submitting an issue. YOU MAY DELETE THE PREREQUISITES SECTION.
- What is your product version? v11.3.0
- What is your product type (Angular or MVC)? Angular
- What is product framework type (.net framework or .net core)? .net core
Hello Dear,
we are developing new portal with multitenancy enabled each tenant would be on a separate database as business requirement our concern now that we can't find a way to display all realted tenant’s entities data from the host dashboard
For Example If we have an Entity "Client" that is available on Host and Tenants with ImayHaveTenant interface is there a way to display all client’s information with different tenants on the host dashboard ?
I’m aware that there is impersonate feature where I can login by tenant username and see the client’s data for that tenant, but we asking if we able to manage this or display all records from host screens ?
I have 150 tenant and i need to update their roles and permissions from Host Admin. How i can do this ? It's difficult to impersonate the 150 tenant.
I have many units and i need to create admin foreach organization unit so** this admin will have access only and manage this organiztion unit .** I tried to create admin role and assign permissions but still the organization unit admin can see the other units.
Any suggestion ?
When I am genetrating Entities from Power Tool, its deleting tools files and giving Access Denied Error.
Dears,
I have multi tenants and i need to have only page for login for all( host and tenants). Is it possible ?