Questions tagged [authorization]
Authorization is the process of determining whether a user, program or device is allowed to access a protected resource in a particular way. Authorization is a key theme in computer security practices.
10,541
questions
0
votes
1
answer
21
views
<AuthorizeView> not recognizing role claim
I have a Blazor Server app that uses Windows Auth. Based on the group memberships of the user, I am adding role claims using IClaimsTransformation. The group-to-role mapping is fetched from a DB.
This ...
0
votes
2
answers
32
views
Laravel 11 Simplest Gate possible but returning always unauthorized
I'm trying to make a gate so that only some users are authorized to make certain API calls, but before that, I have to at least set up a gate properly which I can't seem to do.
Here I set up the gate:
...
-3
votes
0
answers
13
views
Autentication JWT, backend in Django Rest Framework and Frontend in Next.js [closed]
I have a backend built with Django Rest Framework, where I've implemented authentication using simpleJWT, and everything is working when I test with Postman.
My question pertains to the frontend I'm ...
0
votes
0
answers
12
views
What COTS apps can act as a PEP in the ABAC model?
To define my terms...in the ABAC model a Policy Enforcement Point (PEP) is invoked by an application (which is or controls resources, such as files) before a particular kind of access request is ...
1
vote
1
answer
26
views
Blazor Server .NET 8 HttpContext to get token for id_token
I am trying to upgrade from Blazor Server App from .Net 6 to 8.
This is the code in .Net 6:
_Host.cshtml
var context = HttpContext.Request.HttpContext;
var token = await ...
1
vote
1
answer
16
views
Unable to get Lambda@Edge logs in CloudWatch
The infrastructure looks like this:
Route 53 domain to CloudFront distribution
Behind CloudFront is S3 bucket with content
There is Lambda@Edge for authorization purposes
Lambda@Edge function is ...
0
votes
0
answers
10
views
Why redirect_uri is needed when client_id is supplied in OAuth?
we know that we need to pass both client_id and redirect_uri in the request. But isn’t that client app already registered its redirect url in authorization server? so that only client_id is needed for ...
-1
votes
0
answers
27
views
python django library project [closed]
i have been making libraries with many tutorials and tips but couldnt find one that really suited my project can anybody give me suggestions on it i would really apreciate where to find some proper ...
1
vote
1
answer
41
views
Troubleshooting Power BI Report Embedding - User is not authorized
I have posted recently about issues with generating embed tokens for Power BI Embedded reports (see Power BI Embed Token Generation - User Not Authorized).
My customer has Power BI Embedded A1 ...
0
votes
0
answers
25
views
How to pass a JWT through an Authorization header to +page.server.ts in SvelteKit
Recently I started developing my first big webapp project and I've decided I want to build it with SvelteKit. After some research I have discovered about authorization and authentication and I have ...
0
votes
2
answers
34
views
Authorize actions in command handler
I have a problem with controllers authorization in C#. I use JWT authentication with token and role-based authorization in controllers.
Let's examine this endpoint.
[HttpDelete("{userId}/post/...
0
votes
1
answer
37
views
Listing the Tables in the Storage Account using ADF Web Activity is failed with an authorization error
i have added the parameter source storage account sas token as shown below:
Then I added web activity to list the tables of the storage account where this account has only 500 tables but i'm getting ...
0
votes
0
answers
37
views
Handling User Registration Without Email and Multiple Authentication Methods
I'm working on a web application where users can register using different authentication methods like Google and Facebook, but some users may have registered without providing an email address. Here's ...
0
votes
0
answers
23
views
Authorization not working even after successfully logging in to ASP .NET Core MVC app
Implemented JWT authentication in my application, with this code in the Program.cs:
builder.Services.AddAuthentication(AuthConstants.AUTH_TOKEN)
.AddCookie(AuthConstants.AUTH_TOKEN, options =>
...
0
votes
1
answer
15
views
Strange behavior of Blazor Authorization template
I can't get a component to be disabled using policy
Create an empty BlazorServer project with the WindowsAuthenticate authorization template.
Add a default policy that denies everything.
builder....