2008 January 29 « Broken Thoughts

.Net Dojo: Forgot Your Password Workflow

As an experienced web developer, I have seen all kinds of crazy login workflows. The security question workflow, however, is the absolute dumbest workflow ever. Not only are most questions geared at public domain information, but how many people are actually going to remember what they typed in for their answer? Also, depending on how good (or bad) the programmers are, if the answer is case senstive, or miss-spelled, you are hosed. I can’t stand sites who use this workflow when there are much better, and more secure ways to allow users to regain control of their account. To learn more about why this type of authentication is bad, read Wish it was Two-Factor by Alex Papadimoulis. He discusses how the secret question does not fullfill two factor authentication by any means.
Read more »

January 29, 2008 Posted by Broken Bokken | .Net | .Net, .Net 2.0, ASP.NET, C#, Forgot Password, Internet, Login Workflow, Programming, Security, Security Question, Technology, Web Development, Workflow | No Comments

.Net Dojo: Custom Configuration

A best practice in .Net development is to have as much of your code in reusable libraries as possible. This cuts down on development time and helps enforce business standards across all applications. One problem however is that sometimes reusable libraries need to have a few customizations. The easiest way is to create a Settings file and set each property through the use of the app.config or web.config.

A more complicated solution is to create your own custom configurations. In my case, I have an enormous library that consists of different parts. I have database tools, data caching, encryption, cookie management, querystring management, Infocard support, email wrappers, as well as several other useful tools. Being a perfectionist, I like to have my settings split out by the piece they belong to. Sure, there is more xml in the config file, but, if I only want to use one section of my code I don’t need to have the whole configuration. Plus, having the configurations split out means I can easily split my library up into multiple DLL’s down the road.
Read more »

January 29, 2008 Posted by Broken Bokken | .Net | ASP.NET, C#, .Net, Programming, .Net 2.0, .Net Dojo, Technology, Web.Config, App.Config, Configuration, Custom Configuration, Custom | No Comments

Search for:
Categories
- Anime (3)
- Japanese (9)
- Life (4)
- Martial Arts (4)
- Personal (14)
- Recipes (2)
- Shinkendo (2)
- Storm Chasing (1)
- Tech-Knowledge (14)
  - .Net (13)
Archived Articles
Favorites
Friends
- Estrenova
- Return Secure
Resources

Archives
- June 2008 (3)
- May 2008 (1)
- March 2008 (1)
- February 2008 (6)
- January 2008 (6)
- November 2007 (18)
Categories
- Anime
- Japanese
- Life
- Martial Arts
- Personal
- Recipes
- Shinkendo
- Storm Chasing
- Tech-Knowledge
  - .Net
RSS
Entries RSS
Comments RSS

Broken Thoughts

Techknowledge

.Net Dojo: Custom Configuration

Categories

Archived Articles

Favorites

Friends

Resources

Archives

Categories

RSS

Site info