c# - Isolate users in signalR hub by domain -

-

i have web application single iis installation (this isn't changing), has dynamic collection of subdomains. each subdomain has own user accounts.

the problem running when run signalr on it, treats sub-domains same domain, users happen have same user name each others messages.

this causing me security violation issue between domain accounts.

so far best guess solutions have different levels of risks , problems.

  1. each user gets own group, build group name sub-domain name + user name.
    1. list item minimizes risk of collision doesn't remove it.
    2. using guid domain name, , reserving first n-characters guid reduces risk further, each user online have group formed.
  2. on owin start, spin new hub represents each domain.
    1. each time add subdomain, have restart application add new hub. right now, don't have add subdomains dns supporting wildcard, , host header in iis blank. works except lack of subdomain awareness in signalr.
  3. build custom hub class, makes client collection domain aware, rest of application.
    1. this seems cleanest, far, time consuming. poses highest risk of bugs, since have compose larger collection of qa tests beyond tdd unit testing.
  4. last option, don't use signalr, build own long poll api.
    1. this hardest 1 accept, since highest bandwidth , exposed process. basic survey of our target users shows using websocket supporting browsers, why purposely increase bandwidth or create new latency.

to see failure, grab simple chat demo @ asp.net/signalr, , run on local computer under 2 different browsers (ff , ie core tests), , have 1 call http:\localhost , other call http:\yourcomputername. need iis not iis express proper test.

my 2 cents: build own implementation of iuseridprovider, there should easy inspect each request , generate unique user id across multiple domains return, way signalr know whom associate each request correctly. it'd simple , not invasive solution. can check here more detail.


Comments

Post a Comment

Popular posts from this blog

java - Could not locate OpenAL library -

-
i writing game using slick2d library, uses lwjgl. lwjgl version 2.9.3. using netbeans 8. i tried adding sounds game, example music track on main menu. problem is, exception when run game, despite game still compiling , running except sound of course: sat mar 21 01:23:57 edt 2015 error:could not locate openal library. org.lwjgl.lwjglexception: not locate openal library. @ org.lwjgl.openal.al.create(al.java:156) @ org.lwjgl.openal.al.create(al.java:156) @ org.lwjgl.openal.al.create(al.java:102) @ org.lwjgl.openal.al.create(al.java:206) @ org.newdawn.slick.openal.soundstore$1.run(soundstore.java:295) @ java.security.accesscontroller.doprivileged(native method) @ org.newdawn.slick.openal.soundstore.init(soundstore.java:292) @ org.newdawn.slick.music.<init>(music.java:156) @ org.newdawn.slick.music.<init>(music.java:75) @ view.mainmenu.init(mainmenu.java:58) i didn't include rest of error states error happens in game code. the...
Read more

c++ - Delete matches in OpenCV (Keypoints and descriptors) -

-
i want check scene image against 2 train images. that, detect features , compute descriptors of both training images. before detecting, computing , matching scene image, delete matches of train1 , train2. because these matches won't facilitate matching of scene image train1 , train2. so, match train1 train2 , vector of matches trainidx , queryidx. how can delete these matches in keypoints-vector , descriptor matrix of train1 , train2? best regards, dwi i have done below: std::vector<cv::keypoint> keypoints[2]; cv::mat descriptor[2]; std::vector< cv::dmatch > matches; /* write code generate keypoints, descriptors , matches here... keypoint[0] -> train image 1 keypoints keypoint[1] -> train image 2 keypoints descriptor[0] -> train image 1 descriptors descriptor[1] -> train image 2 descriptors matches -> matched between train image 1 , 2 */ // logic keep unmatched keypoints , corresponding descriptor...
Read more

sorting - opencl Bitonic sort with 64 bits keys -

-
i used nvidia sdk bitonic sort , works great me. 32 bits (uint) need ulong keys. have typically 2^14 keys @ time , power of 2. searched on not find kernel designed ulong. i tried modified nvidia sdk bitonic sort using ulong keys not work. kernel not crash after de call clenqueuendrangekernel got error : cl_invalid_command_queue can tell me how modify bitonic sort or radixsort, or can sort ulong keys? i running nvidia quadro 4000 opencl 1.1 cuda 6.5.20 full_profile used original nvidia sdk bitonicsort.cl i used"ulong" keys , value input , ouput instead of "uint" thanks helping i made work-around suit need. used 30 bits of key , 18 high bits of value sorting. changed comparators (2 lines): '#define mask 0xffffc000 // suit need from this: if( (*keya > *keyb) == dir ) this: if(((*keya > *keyb)||((*keya == *keyb)&&((*vala & mask)> (*valb & mask)))) == dir ) it works fine. but, still, it's work-a...
Read more