I followed this tutorial to create a aspnet core web api using Azure for a test project I'm working on:
https://github.com/Azure-Samples/active-directory-dotnet-webapp-webapi-openidconnect-aspnetcore
The instructions says "Configure Permissions for your application - in the Settings menu, choose the 'Required permissions' section, click on Add, then Select an API, and type 'TodoListService' in the textbox. Then, click on Select Permissions and select 'Access TodoListService'"
I followed every step closely and most was on target with everything, but this step didn't show my todolist service.Below is the screenshots in the order I did them.
Navigate to the apps page
Go to settings and required permissions for either app
Click add at the top left hand corner to add a new permission
To Do List Service and To Do List Web App are not listed
The tutorial worked for the most part. I am able to run the VS solution and sign in to an azure account associated with my application. However the users don't have read permissions to the to do list on the website, and I think it is because I had to skip this step.
After logging in through MS
Shows logged in
User cant view the to do list
As you can see I am clearly logged in, but am not able to see the list
Related
I am trying to integrate facebook into a Windows Store App.
I have created a new FB App and started working through the steps described in this blog post. http://blogs.windows.com/buildingapps/2013/11/14/facebook-login-for-windows-store-apps/
Here is where I ran into a problem. Step 2 describes how to obtain a Windows SID for an App that has yet to be published. However my app is already published. Does anyone know how to obtain a SID for an app that is already published in the Windows Store?
Instructions in this post should help you find how to locate SID for published app: https://msdn.microsoft.com/en-us/library/windows/apps/hh465407.aspx
It's listed under step 3 for obtaining the credentials for your app. Here are the steps:
Go to the Windows Store apps page of the Windows Dev Center and sign in with your Microsoft account.
Once you have signed in, click the Dashboard link.
On the Dashboard, select Submit an app.
On the Submit an app page, select App name.
Select the Services link.
On the Services page, select the Live Services link found under the Microsoft Azure Mobile Services section.
On the Push notifications and Live Connect services info page, select Identifying your app.
The Identifying your app page gives you an identity element to include in your app's manifest. Open your manifest in a text editor and add that element as the page instructs.
9.Click the Authenticating your service link at the bottom of that same Identifying your app page.
The Authenticating your service page provides your security identifier (SID) and client secret.
I see it's an old post, but I guess it's better to show a simpler solution, which is the one told by microsoft in this thread: https://msdn.microsoft.com/en-us/windows/uwp/publish/view-app-identity-details
You can just go to your application from the developer dashboard, then on the left you should expand the "App Management" option and choose "App Identity". There you can find many informations, including the App SID.
I am the administartor of TeamCity 9.0 which is my continuous integration server. I have added many users for different projects. They have the permission to manually trigger the build, but they cannot edit the configurations.
Now , I need to add a user so that the user can view the Web UI and get the logs etc ; but he must not be able to trigger the build. In short, the run button in the Web UI should not work for that user or should be invisible. How can I achieve that? Please help me out.
In the default installation, the All Users group only has the Project viewer role associated with it, which only has the View project and all parent projects permission. You'll see the Project developer role by default has the Run build and Stop build permissions, and many more.
What does your permission set up look like, i.e. what group is the user assigned to and what roles are associated with that group.
You can get a sort of "effective permissions" overview for a user on the "Roles" tab of a user, this shows how the user is getting permission for which projects via the groups they are in.
TeamCity provides a built-in role, Project Viewer, that grants users read-only access to projects. You can also create your own roles with permissions tailored for your team. See Administration > User Management > Roles.
Click on Administration on top right corner. Under User Management on left side of the UI, click on Users. Click on the user you want. Under Roles tab select Assign Role. In the pop up select what privilege you want to give to that user for what project.
Check this link https://confluence.jetbrains.com/display/TCD9/Role+and+Permission for knowing about different types of users in TeamCity.
I'm developing a google apps marketplace app. There's the Test install flow button on the dashboard, but I'd like to test installation on another domain of ours - to see that permissions, token etc. work as expected. Is there a way to install an (it's non published yet) on a domain which is not related to development?
Found a solution, this was surprisingly straightforward, but it worked for me:
Open two browser windows, one for your dev account (dev.com) and one for the domain you wish to test on (test.com)
In you dev account, go to the dashboard and click the Test installation flow button
In the popup that you get, go to the address bar and copy the link
Now go to the browser with your test.com domain, and enter this address
You'll be asked to login, and then you'll get the consent screen
You should now see the app in your test.com`s marketplace apps list
You can do this by creating a new application in the chrome web store.
Make sure that you create this application in the web store with an account that belongs to the given domain. Next, restrict access to your domain.
Finally, you can install the application on the domain.
I've created a test listing for Google Apps Marketplace (GAMv2) and have specified a setup url. When testing using the "TEST INSTALL FLOW" button, the authorization screen pops up and clicking the "Accept" button takes me to a popup that confirms the application has been added. There's a "Launch app" button and a "Manage app" link on this 2nd popup. The "Launch app" button goes to the setup url that I entered in the listing definition.
Isn't the install flow supposed to redirect there automatically? I've seen other questions where this behaviour seems to be working on and off:
Google Marketplace App Install Flow
Google Apps Marketplace SDK install does not forward user to Setup URL
Google app marketplace sdk setup url stopped working
There's also this page in the marketplace documentation which says it is supposed to redirect:
https://developers.google.com/google-apps/marketplace/eap/oauthwalkthrough
Are other people having this problem?
In v1 of the marketplace, yes, set up links were automatically included in the linear install flow. In the new install flow set up links are presented separately. They're presented to users, but there is no guarantee that that a user will click it. Even in V1 there were some cases where a user could end up bypassing the setup link.
There are some improvements that can be made to encourage admins to revisit the setup if they skipped it. In either case, apps should be tolerant of these cases and adapt.
My recommendation is to check on login and enter the setup flow if it hasn't yet been performed. You can use the licensing API to check if the domain has installed from the marketplace or not. If you need to enforce things like requiring admin permissions, you can add further checks to see if the current user is an admin for the domain and give non-admin users a polite message indicating the app isn't ready for them to use yet.
I have created a developer account on Google in order to publish an android app on Google Play. After some time I needed GCM, but I cant be able to get a API key. I am able to enter developer console, but when I try to create a new project I get an error as following:
ERROR
Developers Console has not been activated for your account. Your account may be suspended or disabled. If you are a Google Apps user, ask your domain administrator to enable Apphosting Admin on your account.
I have been sent no email about if my account was banned or not. I have posted an email to google support but they did not respond yet(not sure if they care). What should I do? How to find why I am banned from creating a project on Developer Console.
When I try to access some pages I have been redirected to this error page. This is where I have sent email.
From [here][1]:
Go into your domain administration # https://admin.google.com/AdminHome
Click the "More controls" link at the bottom the page
Within the panel that reveals, click "More Google Apps"
Select checkbox for "Google Developers Console" (hexagon nut logo)
In the top-left you will see an icon to "Turn ON services"
Confirm your choice
Apparently Google has changed the flow since this was answered.
I had to:
1) Go to this page via App Settings > Additional Google Services
https://admin.google.com/AdminHome#AppsList:serviceType=ADDITIONAL
2) Look for the "Develop applications using Google APIs and the Google Cloud Platform" setting
3) Click the vertical ... in the right hand corner of the row and select "ON for everyone"
Make sure you are logged in with the Admin account for your domain. If you are redirected to "https://apps.google.com/user/hub" then you are not an admin.
Enable Google Developer Console for G Suite (Google Apps)
admin.google.com
Select: Apps (Manage apps and their settings)
Select: Additional Google services (Blogging, photos, ...)
(bottom right corner you'll find Page 1 of 6, switch pages to locate Google Developers Console)
Check: Google Developers Console and select ON in top right corner
Confirm with TURN ON
You should ask your domain administrator to enable Apphosting Admin on your account.