shenanigan / fbi-demo Goto Github PK
View Code? Open in Web Editor NEWA demo for authentication and authorisation purposes for my blog.
fbi-demo's People
Contributors
Stargazers
Watchers
Forkers
sumesh ahsenbaig-forks harisankar palikhe arvindmits pgadea indraone01 ucho777 jeanrandria gtechsltn lukaszmn-forks ajayvasava davidtnguyenfbi-demo's Issues
Admin token vs Agent token
Hello again, I'm still working through your new article and very much appreciate the experience of applying tokens and using SwaggerUI to test the APIs. I do have a follow up concern. I'm confused on the difference between the Admin token and Agent token. In your blog, you mentioned:
"If you try to access these API’s with the Admin token you will get 403 Forbidden error. So go ahead and click on the Authorize button again and click on logout. Then, get the token from the above step and paste in the field with Bearer as a prefix i.e. Bearer .
When you access /Agent/AccessPublicFiles api you will see response 200 with message Public Files Accessed. But when you try the classified api you get 403 Forbidden error.
I received the 403 Forbidden error as mentioned. But this is where it gets confusing... When you say, "get the token from the above step and paste it with the Bearer + key", I am effectively regenerating the token as Admin, not as Agent. There is no Agent/Login API. Am I supposed to have a separate Login() method for Agent? Otherwise I will keep using Admin, correct? I will always receive 403 when trying to run Agent APIs as Admin.
I continue to get the 403 error, even when I get the token again. I may not be following instructions very well. Thank you for clarifying what I should do in order to get the "Public Files Accessed" message.
Unable to correctly test access to ClearanceLevels due to code mismatch?
Hello,
Thank you for publishing https://www.freecodecamp.org/news/authenticate-and-authorize-apis-in-dotnet5/
I tried to follow along in the example in that page, however, I was not able to see the "Public Files Accessed" or "Classified Files Accessed". As a result, I'm unable to complete my understanding of this security model.
When I compared your repo to mine, it was different in the AdminController. This controller is also different when compared to the page, so I'm uncertain which is correct. Is this repo matching the page article contents? For example, I have "GenerateBadge()", not "EnrolAgent()".
Will an update to the article or repo be coming soon? Thanks!
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.