Aktuelle Blogbeiträge
PrimeFaces Expression Language Remote Code Execution Fix
This post describes how to fix the PrimeFaces Expression Language Remote Code Execution bug (CVE-2017-1000486) when an update to the latest / fixed PrimeFaces version is not easily possible. This solution also needs no patching of the PrimeFaces library itself. The preferred /… mehr
Angular 5 HttpInterceptor – Add Bearer Token to HttpClient Requests
In this article I will describe how to add a Http Authentication Bearer token to each request done from Angular via HttpClient by implementing a Angular 5 HttpInterceptor. This way the bearer token has not be added to each request separately while doing… mehr
Aurelia – validation of dependent inputs
Form validation in Aurelia is actually pretty nice. You can configure the validation rules in a chainable api and add multiple rules to single fields. However there is a problem if you want to trigger the validation of an input when another… mehr
Ändern der Zeitzone in Debian 9 (Stretch)
Seit der Veröffentlichung von Debian Version 9 (Codename „Stretch“) im Juni 2017 werden die meisten Systemadministratoren, die auf Debian als Distribution setzen, früher oder später ihre Systeme auf die neuste Version aufrüsten. Als erstes ist mir ins Auge gefallen, dass die Konfiguration… mehr
ASP.NET Core 2.0 Disable Authentication in Development Environment
This article describes how to disable authentication for ASP.NET Core 2.0. ASP.NET Core JWT Authentication I have some Rest API which I want to protect via JwtBearer token in production e.g.
|
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 |
public void ConfigureServices(IServiceCollection services) { ... services.AddAuthentication(options => { options.DefaultAuthenticateScheme = JwtBearerDefaults.AuthenticationScheme; options.DefaultChallengeScheme = JwtBearerDefaults.AuthenticationScheme; }).AddJwtBearer(o => { o.Authority = authority; o.Audience = audience; o.RequireHttpsMetadata = false; }); services.AddMvc(); ... } public void Configure(IApplicationBuilder app, IHostingEnvironment env, ILoggerFactory loggerFactory) { ... app.UseAuthentication(); app.UseMvc(); ... } |
However in order to test the API, for development I… mehr
JSF ViewState Hack Attempt: java.lang.StringIndexOutOfBoundsException: String index out of range: -1 – com.sun.faces.renderkit.ServerSideStateHelper.getState (ServerSideStateHelper.java:313)
Hack Attempt on JSF ViewState This article explains why the error java.lang.StringIndexOutOfBoundsException: String index out of range: -1 in the class ServerSideStateHelper in the method getState (313) might be someone trying to hack your application server. It is getting quite technical in here… but… mehr
Angular2 Internationalization (i18n)
When you build frontend interfaces for the web, you often have to provide support for different languages, locales and timezones (generally called internationalization or short i18n in computer science). With Angular2 you can use the module „ng2-translate“ to provide browser language detection… mehr
WildFly 10 with Apache and AJP
This article demonstrates how inbound request from a webserver (Apache) can be proxied to an application server (WildFly 10) using the Apache JServ Protocol (AJP). For more information on what AJP actually is, take a look at https://en.wikipedia.org/wiki/Apache_JServ_Protocol . WildFly 10 Configuration First you have to add… mehr
illucIT Software on Maven Central
We have decided now to publish our free Software package on Maven Central under the namespace „com.illucit„. This way the packages can be used by everyone without having to declare a separate repository in Maven or SBT. This software packages also contain… mehr