asp.net mvc 3 - Google OpenId: Accept only users of a particular company -

-

i trying use open id in application , have done dotnetopenid.

now, google provides service email , others under domain of companies. (like example@acompany.com). there way narrow down authentication users of company only?

i know can checking email address response. not think idea. better if user not authenticated google accounts other of acompany.com.

please note donot know inside logic of open authentication or dotnetopenid.

edit

by default google's openid request prompts https://accounts.google.com/servicelogin?...

i can manually change (in browser) https://accounts.google.com/a/iit.du.ac.bd/servicelogin?... , works (iit.du.ac.bd school's domain)

i have tried create request with

        identifier id1 = identifier.parse("https://www.google.com/a/iit.du.ac.bd");         identifier id2= identifier.parse("https://www.google.com/a/iit.du.ac.bd/accounts/o8/id");         var openid = new openidrelyingparty();         iauthenticationrequest request1 = openid.createrequest(id1);        iauthenticationrequest request2 = openid.createrequest(id2);

google's identifier https://www.google.com/accounts/o8/id"

edit2

just found google-apps-openid-url

your hesitation on using email addresses filter absolutely correct. follow instinct. :)

you should filter on op endpoint. not assure google provider, google has dedicated op endpoint each individual domain, can check that.

iauthenticationresponse response = relyingparty.getresponse(); if (response != null) {     if (response.provider.uri.absoluteuri == "http://google.com/o8/....?domain=yourcompany.com") {         // allow     } else {         // disallow     } }

something that. you'll have test see actual uri case you're expecting.


Comments

Post a Comment

Popular posts from this blog

c# - SVN Error : "svnadmin: E205000: Too many arguments" -

-
i trying reposotries using c# code process svncommand = null; var psi = new processstartinfo("svnadmin"); psi.redirectstandardoutput = true; psi.redirectstandarderror = true; psi.useshellexecute = false; psi.arguments= @"dump c:\repositories\myrepo > c:\temp\myrepodumpfile.dump"; using (svncommand = process.start(psi)) { var myoutput = svncommand.standardoutput; var myerror = svncommand.standarderror; debug.write("output :" + environment.newline + environment.newline + myoutput.readtoend() + environment.newline + "error :" + environment.newline + environment.newline + myerror.readtoend()); svncommand.close(); } when use dump command commandline svnadmin dump c:\repositories\myrepo > c:\temp\myrepodumpfile.dump it works fine when try ...
Read more

c# - Copy ObservableCollection to another ObservableCollection -

-
how copy observablecollection item observablecollection without reference of first collection? here observablecollection item value changes affecting both collections. code private observablecollection<ratemodel> _allmetalrate = new observablecollection<ratemodel>(); private observablecollection<ratemodel> _metalrateondate = new observablecollection<ratemodel>(); public observablecollection<ratemodel> allmetalrate { { return this._allmetalrate; } set { this._allmetalrate = value; notifypropertychanged("metalrate"); } } public observablecollection<ratemodel> metalrateondate { { return this._metalrateondate; } set { this._metalrateondate = value; notifypropertychanged("metalrateondate"); } } foreach (var item in metalrateondate) allmetalrate.add(item); what causing , how can solve it? you need clone object referenced item before it's a...
Read more

All overlapping substrings matching a java regex -

-
is there api method returns (possibly overlapping) substrings match regular expression? for example, have text string: string t = 04/31 412-555-1235; , , have pattern: pattern p = new pattern("\\d\\d+"); matches strings of 2 or more characters. the matches are: 04, 31, 412, 555, 1235. how overlapping matches? i want code return: 04, 31, 41, 412, 12, 55, 555, 55, 12, 123, 1235, 23, 235, 35. theoretically should possible -- there obvious o(n^2) algorithm enumerates , checks substrings against pattern. edit rather enumerating substrings, safer use region(int start, int end) method in matcher . checking pattern against separate, extracted substring might change result of match (e.g. if there non-capturing group or word boundary check @ start/end of pattern). edit 2 actually, it's unclear whether region() expect zero-width matches. specification vague, , experiments yield disappointing results. for example: string line = "xx90xx"; strin...
Read more