What is an Endpoint?

Come on guys 🙂 We could do it simpler, by examples: /this-is-an-endpoint /another/endpoint /some/other/endpoint /login /accounts /cart/items and when put under a domain, it would look like: https://example.com/this-is-an-endpoint https://example.com/another/endpoint https://example.com/some/other/endpoint https://example.com/login https://example.com/accounts https://example.com/cart/items Can be either http or https, we use https in the example. Also endpoint can be different for different HTTP methods, for … Read more

In Subversion can I be a user other than my login name?

Most Subversion commands take the –username option to specify the username you want to use to the repository. Subversion remembers the last repository username and password used in each working copy, which means, among other things, that if you use svn checkout –username myuser you never need to specify the username again. As Kamil Kisiel … Read more

Why does AuthorizeAttribute redirect to the login page for authentication and authorization failures?

When it was first developed, System.Web.Mvc.AuthorizeAttribute was doing the right thing – older revisions of the HTTP specification used status code 401 for both “unauthorized” and “unauthenticated”. From the original specification: If the request already included Authorization credentials, then the 401 response indicates that authorization has been refused for those credentials. In fact, you can … Read more

user authentication libraries for node.js?

If you are looking for an authentication framework for Connect or Express, Passport is worth investigating: https://github.com/jaredhanson/passport (Disclosure: I’m the developer of Passport) I developed Passport after investigating both connect-auth and everyauth. While they are both great modules, they didn’t suit my needs. I wanted something that was more light-weight and unobtrusive. Passport is broken … Read more

Where do you store your salt strings?

The point of rainbow tables is that they’re created in advance and distributed en masse to save calculation time for others – it takes just as long to generate rainbow tables on the fly as it would to just crack the password+salt combination directly (since effectively what’s being done when generating rainbow tables is pre-running … Read more