75,746 questions
Advice
0
votes
1
replies
41
views
Django: Separate session expiry times for "normal" website and admin area
It would be nice if there were an easy way to define separate session expiry time for the admin area of a django website. So, admin users could log themselves into the "normal" website (seen ...
- 2,997
0
votes
2
answers
45
views
"ERROR: gcloud crashed (Warning): Scope has changed" when trying to run `gcloud auth application-default login --no-launch-browser`
I want to run some Python code that uses the Google Cloud Platform.
To log in the gcloud CLI, I used to use.
gcloud auth application-default login --no-launch-browser
But since recently it gives this ...
- 84.7k
0
votes
1
answer
61
views
Why doesn't cookie authentication work in my Blazor .NET 8 app?
I've been having trouble trying to set up simple authentication/authorization for my web app. Currently I have auth page
@page "/auth"
@rendermode InteractiveServer
@using System.Text....
- 33
Advice
0
votes
1
replies
61
views
Fall 2025 Does Apple Require you to offer Sign in with Apple if you offer sign in with Google and your own login system?
Apple's developer guidelines (Section 4.8) currently state:
Apps that use a third-party or social login service (such as Facebook Login, Google Sign-In, Sign in with Twitter, Sign In with LinkedIn, ...
- 2,050
0
votes
2
answers
63
views
My Ajax web method call in C# keeps showing an error: "401 Unauthorized"
I'm trying to call a simple static WebMethod in my ASP.NET Webforms page using jQuery Ajax, but it doesn't seem to be working. I've tried enabling anonymous authentication and other fixes suggested ...
- 1
0
votes
0
answers
33
views
Access to XMLHttpRequest at 'http://localhost:5167/api/Auth/register' from origin 'http://localhost:5173' has been blocked by CORS policy [duplicate]
Can you help me with this error, I cant seem to find right solution:
Access to XMLHttpRequest at 'http://localhost:5167/api/Auth/register' from origin 'http://localhost:5173' has been blocked by CORS ...
- 3
-2
votes
0
answers
96
views
Laravel: Authenticated user can’t access protected routes after login (auth middleware always redirects to login or shows 404)
I’m building a Laravel job board website where only logged-in users can create, edit, or delete jobs.
I’ve implemented middleware authorization, but even after logging in successfully, I can’t access ...
Best practices
0
votes
0
replies
28
views
How do I develop on localhost when using cookie authentication?
I have a trivial situation. The app is written in React with custom SSR. I need to integrate cookie authentication. But how can I test this if the cookies are only set on the real domain?
- 125
0
votes
1
answer
70
views
Override default XML namespace for Authenticate/AuthenticateResponse DTOs in ServiceStack?
After upgrading ServiceStack, I've noticed that ServiceStack's authentication provider, particularly the Authenticate and AuthenticateResponse DTO's use the default namespace:
http://schemas....
- 983
5
votes
1
answer
174
views
How do I create a passkey on windows based browser without needing Windows Hello enabled
I'm trying to call navigator.credentials.create on my windows-based web page and Windows Hello is not enabled. The ceremony I'd like to see is the black box asking me if I'd like to use my mobile, ...
- 1,483
1
vote
2
answers
95
views
Why does my FastAPI websocket connection close immediately after authentication?
I’m building a secure messaging app using FastAPI with JWT authentication and websockets.
My issue is that after the client connects with a valid token, the websocket closes right away with code 1006.
...
-4
votes
0
answers
47
views
How to do a flexible login to support custom DBs and AD - Tried with signInManager?
The goal was to process logins with ASP.NET Core's SignInManager, but users can come from different sources:
Standard identity tables
Existing customer databases with user-defined structures and ...
- 1
0
votes
1
answer
71
views
How can I send my refresh tokens via httponly cookie to standalone blazor WebAssembly?
I've been trying for a couple days to implement refresh tokens into my ASP.NET Core Web API, but to no avail.
I've currently got an ASP.NET Core Web API that allows someone to log in with a username ...
0
votes
1
answer
107
views
"NuGet Pack ..." error: The user name or password is incorrect. Where is "NuGet Pack" getting its information from?
While building my C++ application, the postbuild event contains the following command:
NuGet pack "$(ProjectPath)"
-OutputDirectory "$(TargetDir)NuGet"
-...
- 17.6k
0
votes
0
answers
84
views
Is it possible to implement Basic Authentication in YARP (ASP.NET Reverse Proxy)?
I’m trying to find out whether it’s possible to implement Basic Authentication directly in YARP (Yet Another Reverse Proxy).
If YARP doesn’t natively support Basic Auth, that’s fine — I’m mainly ...
- 19
0
votes
0
answers
95
views
Gmail API OAuth token expires after a few days, and re-authentication fails for some accounts
I’ve built an app similar to gmass.co/inbox
I'm using gmail.readonly
to help check where our emails land (Inbox, Promotions, Spam, etc.) in specific Gmail accounts before launching email campaigns.
...
- 1
0
votes
0
answers
95
views
Failed to sign in to GitHub Copilot in VS Code (Pro account)
I’m having trouble signing in to GitHub Copilot Pro inside VS Code.
I previously used the free trial version and it worked fine, but now after subscribing to Copilot Pro, I keep getting this error:
“...
- 1
0
votes
0
answers
93
views
How to recognize a user even after clearing cache and data?
I'd like to implement a system that allows recognizing a user even after the app's cache and data have been cleared from the system settings, as X (Twitter) appears to do.
However, I can't figure out ...
- 4,618
0
votes
0
answers
44
views
How do I get my SPA application authentication to return the correct audience?
We have a React SPA web application and a .Net Core API back end. I have a registrations set up for the SPA and the API. I've read and followed a number of different articles about this problem and I'...
- 353
1
vote
0
answers
63
views
Next.js 15.5:"Cookies can only be modified in a Server Action or Route Handler” when trying to set cookies inside a TypeScript Axios library
I’m developing a TypeScript library that handles authentication using Axios.
The library automatically refreshes tokens (access_token and refresh_token) and needs to save them in cookies so the user ...
0
votes
1
answer
42
views
VS Code Port Forwarding not setting cookies
I have a React application running on port 5173 and an Express server on port 3000. I'm trying to test Google OAuth sign-in from my React app using my actual mobile phone.
When I access the app from ...
- 1,195
0
votes
0
answers
37
views
Trying to get authenticated user ID in Spring; Property or field 'id' cannot be found on object of type User
I am trying to get the authenticated user ID. I want to access the user ID in the global layout.
templates/layout.html:
<li sec:authorize="isAuthenticated()" class="nav-item btn btn-...
- 62
0
votes
0
answers
62
views
Refreshing access token from Snapchat
I'm using com.snap.loginkit:loginkit:3.0.0 and I'm confused. I managed to get login to work and I get access token successfully but after some time it expires and I need a new one. My question is how ...
- 1,153
2
votes
0
answers
617
views
az login SSL Error: [SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed: Missing Authority Key Identifier (_ssl.c:1032)
Using Azure CLI from windows 11:
az login:
Blockquote
Select the account you want to log in with. For more information on login with Azure CLI, see https://go.microsoft.com/fwlink/?linkid=2271136
...
- 21
1
vote
1
answer
81
views
Disable Revocation in Client Certificate Authentication
I am trying to write the authentication with client certificate between an API server and some client applications in .NET 9. I want to disable revocation.
I added the settings for it, then the ...
- 74