
Image from Pexels
Tagged articles - Security
Found 14 articles tagged with Security
05
Jun
2022
Using dotnet nuget package vulnerability scan in Azure DevOps build
.NET229 titlesListing nuget vulnerabilities and controlling build in Azure DevOps
0
Since December 2021 when Log4Shell vulnerabilty caused by popular package for logging in Log4j for Java was discovered here is raised certain level of awareness of using OpenSource packages in application. Because of these cases it is critical that you have indicator whether you are using a dependency with reported vulnerability before you make your application available for wide audience, practically before you do the production release...read more
20
Dec
2021
Supporting multiple authentication schemes in asp.net core webapi
.NET229 titlesUsing more than one authentication schemes in webapi projects
0
Is is not so often than you have to use more than one authentication schemes in your project, but there are some corner cases when you have to do so. One of it is a scenario where you are supporting some weaker authentication schema like basic http authentication where credentials are supplied pretty much on every request.
This kind of loosen security schema is to some limited extend suitable for internal APIs meaning that no other than users or most likely application within your organization network will access...read more
01
Mar
2020
Custom SignalR hub authorization in ASP.NET Core
.NET229 titlesASP.NET Core SignalR hub authorization
0
SignalR is number one choice for real-time communication between server and client. It implements several transports for communication between server and client...read more
07
Apr
2018
Simple implementation of ASP.NET Web API Basic authentication security
.NET229 titlesSecuring Web API with simple basic authentication and consuming it from the client code
0
Authentication in web services is a bit more different than with web pages because of one simple reason. There is no UI for entering credentials to authenticate to consume service...read more
04
Feb
2018
Exporting SSL certificate to PFX format for using on IIS or Azure
.NET229 titlesGetting SSL certificate PFX format for IIS or Azure WebApp using OpenSSL
0
Hether your website requires SSL secured connection through HTTPS or not, it is even recommended by Google to use SSL for your website. Starting from 2005 Google page ranking takes into consideration whether your page has SSL certificate installed and serer content thorough HTTPS.
If you are hosting your website on IIS, you have some built in tols in Internet Information Service (IIS) manager, for SSL certificate operations but they are pretty limited and most of the time confusing to use. ...read more
17
Dec
2016
Simple Office365 authentication
.NET229 titlesUse Office365 account login for your application
0
With so many online and cloud based services, adding one more additional account for your application adds additional complexity level for your users since they will have to manage one more account and remember one more password.
Microsft ASP.NET comes with pretty nice built in provides for social networks, but for office usage social networks are not so convenient to be used.
...read more
30
Oct
2015
IP address filtering from C# code in ASP.NET MVC and Web Api
.NET229 titlesRestrict or allow specific IP addresses to access your WebApi or MVC
0
Last year I wrote an article about IP address filtering on MVC and WebApi Restrict Access to an MVC Action or Controller based on IP address. Over time the requirements for IP filtering in several web based application increased, so I had t work on this class to make it more extendible and reusable in different scenarios...read more
03
Jul
2015
Hide IIS server info in a resposne
.NET229 titlesHide server info in ASP.NET with simple web.config setting
0
Last year I wrote an article about ASP.NET web application security check list. Apparently there are always more things to add to improve your web application security...read more
21
Dec
2014
ASP.NET web application security check list
.NET229 titlesThings to do before your web application goes live
0
There are several things to be taken care of during development and before deployment to keep you online web app tip top regarding performance and security.
1. Logging informations
...read more
16
Dec
2014
Restrict image and CSS hotlinking of your ASP.NET website
.NET229 titlesBlocking hotlinking with IIS Url Rewrite
0
I did not rely how important to restrict hot-linking until one day my friend came to me and told me that he has to pay additional money for the bandwidth on his website.
He was surprised that he reached bandwidth quota limit. It was weird, but after some logging of requests coming to a website we realized that most of the requests were initiated from some other website...read more
04
Dec
2014
The X-Frame-Options response header
.NET229 titlesRestricting your page being used in IFrames (click jacking)
0
I found this header option repeating in many guidelines for securing the web application.
By adding these headers to response, it restricts browser to load your page into an iFrame tag.
...read more
11
Aug
2014
Restrict Access to an MVC Action or Controller based on IP address
.NET229 titlesIP Address Filtering in MVC Controller
0
When you are developing a back-end web application, you might want to restrict access only to people who are working in the company which is maintaining the content or any other operations in the back-end and allowing public access only for the public, usually read-only content.
This means you still have to leave some parts of your application public and for some you need to restrict access for the people outside of a network (certain IP range).
...read more
10
Apr
2014
I lost my Umbraco admin password, now what?
Umbraco CMS25 titlesA tool to re-set your umbraco user password
0
So you got a new requirement for the website you worked on ages ago. You try to login to Umbraco but your password is not correct...read more
31
Mar
2014
Google had changed their policy for fetching profile image
JavaScript31 titlesNew way to fetch google+ profile image
0
Google have recently decided to change the way you can fetch profile image. Good old building of image URL is not supported anymore after Google has applied security policy.
In good old, but unfortunately deprecated approach you only needed profile id to build a URL for fetching Google+ profile image like the following:
...read more
.NET
5
Jun
2022
Using dotnet nuget package vulnerability scan in Azure DevOps build
Listing nuget vulnerabilities and controlling build in Azure DevOps
5
May
2022
Protecting static files in ASP.NET Core using custom middleware
Restricting access to specific static content with middleware in ASP.NET Core
20
Dec
2021
Supporting multiple authentication schemes in asp.net core webapi
Using more than one authentication schemes in webapi projects
12
Dec
2021
Controlling the flow of migrations in EF Core
Altering EF Core migrations execution order
28
Nov
2021
Unit of work pattern with Dapper
Implementing unit of work pattern with Dapper in .NET 5
21
Sep
2021
Adding display name to Enum values
Implementing additional values for Enum items in C#
JavaScript
28
Oct
2018
HTML5 localStorage with expiry with vanilla JavaScript
Using HTML5 localStorage with expiry
8
May
2018
Monitoring DOM changes with JavaScript
Handling DOM changes with plain JavaScript
9
May
2017
Non blocking CSS load on the page
Load external CSS files in an async manner
16
Mar
2017
Serialize html form to JSON without using JQuery
Transform user input from HTML form fields to JSON
17
Jan
2016
Copy text value to clipboard using jQuery
Simple sample of using jQuery to copy value to clipboard
11
Jan
2016
Resize image on the client side with JQuery
Reducing the upload sie by resizing image on the client side
SQL/T-SQL
22
Feb
2022
Select column names with values from SQL Server database
Fetching column names with its value in T-SQL using built in JSON methods
23
May
2020
Identifying opened connections for the specific application in SQL Server
Connection listing queries in SQL Server
3
May
2018
Reading JSON data in T-SQL on SQL Server
Extracting values from JSON string on SQL Server using T-SQL
28
Apr
2016
Create XML/HTML with T-SQL
Generating XML/HTML output in SQL Server
24
Nov
2015
IP address to octets split in TSQL
Split IP addresse into octets in SQL Server
20
Jul
2015
Getting first and last second of the current year, month and day
Using minimum and maximum date time in SQL query
Umbraco CMS
2
Mar
2018
Minify HTML output of your pages
Minification of HTML output using ASP.NET IHttpModule
18
Apr
2015
Generate sitemap.xml on the fly in Umbraco CMS
Simple sitemap.xml Umbraco handler
2
Mar
2015
Accessing UmbracoHelper in HttpHandler request
Working with UmbracoHelper and IPublishedContent in HttpHandler
14
Sep
2014
Same page language switching in Umbraco
Land on the same page in different language in Umbraco using Relations
4
Sep
2014
Getting cropped image the smart way
The way to get cropped image URL with option to load original image too
27
Aug
2014
Fastest way to return JSON result from a controller
Resturn JSON in MVC controller action