Search Results

Search found 4900 results on 196 pages for 'upload'.

Page 148/196 | < Previous Page | 144 145 146 147 148 149 150 151 152 153 154 155 | Next Page >

What XSS/CSRF attacks (if any) to be aware of when allowing video embeds?

- by fireeyedboy

I've been assigned a project for a website where users will be allowed to upload video's (using a YouTube API) but more importantly (for me) they will also be allowed to submit video embed codes (from numerous video sites, YouTube, Vimeo, etc. etc.). Having no experience with allowing users to embed video: How can I best protect against cross site scripting and/or cross site request forgery attacks specifically for video embedding? What are some of the common pitfalls to watch for? At a minumum I would think to strip all tags except <object> and <embed>. But I have a feeling this will not be enough, will it? If it is of importance, the environment will be: PHP/Zend Framework MySQL Bonuspoints: Is there a common minimum golden rule/code template for video embed codes that are valid across all video sites that I could use to filter the input?

Read the article
Approaches to wrapping access to functionality in .NET MVC?

- by Kevin

What are some different solutions to wrapping access to functionality within a .NET MVC application? For example, I have six tabs that represent different areas of the application and within area 1, there is the ability to add, edit, upload, whatever. I need a central way to say: Build some dictionary of what the user can do Wrap tabs, buttons, links, etc, validate the user can access this piece of functionality and show/hide appropriately. I know I can restrict access to actions via action filters and roles, but what about from the UI? Any help would be appreciated. I am sure I am not the only one who has needed to do this, thanks!

Read the article
Using PHP, can I put variables inside of variables?

- by Rob

For example, take this code: $ch = curl_init($resultSet['url']."?get0=get0&get1=".$get1."&get2=".$get2."&get3=".$get3); This of course, looks very ugly, and kind of a pain in the ass to read. So my question is, would I be able to use something like this: $allgets ="?act=phptools&host=".$host."&time=".$duration."&port=".$port; $ch = curl_init($resultSet['url'] . $allgets); Very simple question I suppose, but my server is undergoing maintenance, so I can't upload it and test it myself. I suppose a yes or no answer will suffice, but if you have a more efficient way of doing this, that would be even better. :)

Read the article
FileContentResult and international characters

- by suzi167

Hello, I am using a fileContentResult to render a file to the browser. It works well except that it throws an exception when the fileName contains international characters. I remember reading somewhere that this feature does not support international characters but I am sure there mustbe a workaround or a best practice people follow in cases the application needs to upload files in countries other than US. Does anyone know of such a practice?Here is the ActionResult Method public ActionResult GetFile(byte[] value, string fileName) { string fileExtension = Path.GetExtension(fileName); string contentType = GetContentType(fileExtension); //gets the content Type return File(value, contentType, fileName); } THanks in advance Susan

Read the article
Solr security question

- by Camran

I have a linux server, and I am about to upload a classifieds website to it. The website is php based. That means php code adds/removes classifieds, with the help of the users offcourse. The php-code then adds/removes a classified to a database index called Solr (like MySql). Problem is that anybody can currently access the database, but I only want the website to access the database (solr). Solr is on port 8983 as standard btw. My Q is, if I add a rule in my firewall (iptables), to only allow connections coming from the servers IP to the Solr port nr, would this solve my issue? Thanks

Read the article
How do I use Mercurial?

- by Derek

I'm assuming Mercurial is for having an updated website and it archiving the old stuff? Easy to test things and such? My question is, how exactly should I get started and can somebody give me a crash course in using Mercurial and using the following techs below: Notepad++ for coding FTP PHP/MySQL Jquery & other js libraries I use windows and would like to keep things fairly simple. I'm developing 1 website currently and want some kind of CVS system in place. Or should I just stick to my current edit file in notepad++ and upload via ftp method and make a backup copy of everything every once and a while? Any thoughts? EDIT: I'm doing http://bugtracker.gttools.com/public/wiki/bluehost/Mercurial right now in order to try and 'install' it.

Read the article
Disable popup message in php

- by chupinette

When i upload a excel file, i have used COM() to open and automate converting it to xml. It works fine, But when i run it, it always shows the message from Microsoft Excel: A file named ''' already exists in this location. Do you want to replace it? I can choose between Yes No and Cancel. normally i would choose Yes. But i dont want users to click on Yes each time. Can i disable this? Please inform me if any relevant codes need to be posted. Thanks

Read the article
asp.net ajax progress counter

- by xt_20

Hi all, I have a small C# ASP.NET app, and want to include an Ajax progress counter. The architecture is currently like this: Web Application -- calls a class that does the upload For example, in default.aspx, I call : FileHelper fh = new FileHelper() fh.MoveFiles(file) I have an Ajax control that fires when the above is called. This is a control that resides on the website class/project. How do I update the progress counter from the Filehelper class? (I don't think calling the control directly would work as it would be a circular reference) Also how do I continuously update the counter? Thanks all

Read the article
Why function callback of Connection is not handled with Yahoo UI ?

- by quilovnic

I use Yahoo UI with Grails (so grailsui) and I try to upload a file with Ajax and get a JSON response from the server : The response is correctly returned by my controller but a popup is displayed to save the file but it's not a file it's a JSON result. My Yahoo Code is : callback = { success: function(o){alert('success');}, failure: function(o){alert('failure');} } YAHOO.util.Connect.asyncRequest('POST', '/my/url', callback); The http response is the JSON result. What's hell is wrong ? Why does I have dialog box to download the file ? Thanks a lot.

Read the article
Fixing permissions after FTPing ASP.NET code to a Linux system

- by dnord

First off, I'm running Mono to run ASP.NET on Linux, but that's not the question. It appears that, every time I clear out my application directory and upload, I have to go back in and fix the permissions. What I'm doing is chmod -R -c 755 /var/www/* ...and there are two questions. What's the deal with having to do this every time I FTP? Feels flaky. Is there a better permissions set than 755? Do I want different permissions for the /bin directory? Or can I fix this all with one fell swoop of chown?

Read the article
VSTO addin (2003-2007) Ms Word & Webservices

- by Daveo

Hi, I am planning on starting my 1st VSTO project. What I want to be able to do is: Download and Upload versions of a MS Word document to a web service. With authentication by overriding the save button Call a web service to list a bunch of tag that can be inserted into a document. When a user double clicks a tag the selected tag is inserted into the cursor position. I am pretty sure this is all possible just want some confirmation? Also would like to know how long would it take to make something like this. I think the biggest issue will be authentication and listing exiting files to download then allowing the user to download a .doc and restore previous versions of that file via the web service.

Read the article
How do I track images embedded in HTML?

- by ycseattle

Hi, I'd like to track the views/impressions of images on web pages, but still allow the images to be embedded in HTML, like in the "img src="http://mysite.com/upload/myimage.jpg"/" element. I know in Windows I can write a handler for ".jpg" so the URL will actually trigger a handling function instead of loading the images from disk. Is it possible to do that in python/django on Ubuntu server? Can web browser still cache the jpg files if it is not a straight file path? It looks to me that this is how google picasaweb handles the image file name. I'd like to get some ideas on how to implement that. Thanks! -Yi

Read the article
Safe image uploading with PHP

- by directedition

I want my site to have a feature for users to upload images, but I want to do it safely. Namely, I want to strip the EXIF data and any malicious code that could be in their image. I was thinking of a way to do this involving direct manipulation of the file, but it struck me, would it make more sense to just convert the image they provide to BMP and then convert that back to the original format? It would suffer a generational loss, but I believe that would meet my project's requirements. BMP doesn't contain EXIF, does it? And the reprocessing should strip any malicious content.

Read the article
will the desktop appstore icon be appear only after approval ?

- by hib

hello all , I am just going to submit my iphone application . But I just have a doubt . when I test my application with adhoc certificate the application icon come nicely in the device homescreen . but I haven't got it for desktop app store (i.e iTunes). I have read that I have to submit another 57 by 57 icon for the desktop icon . Question :So this 57 by 57 icon will come in my itunes after I will upload through iTunes Connect and my application is approved ? and will I have to include it in the binary or itunes connect uploading will make it work. thanks .

Read the article
DataGrid In Java Struts Web Application

- by Anand

Hi After scouring the web I have edited my question from the one below to what it is now. Ok I seem to understand that I don't need all the capabilities of excel right now. I think i am satisfied having a data grid to display data. Basically i am working on Struts 2 and I wat my jsp page to have an excel like feel and hence looks like even a datagrid is sufficient. I came across This Technology I am not sure whether I must go ahead and use it. Any other suggestions, alternatives are welcome The older version of the question "I have a java web application running on windows currently. I may host it in future in a Linux Server. My application allows people to upload data. I want to display the data they have uploaded in an excel file and render it in a portion of my webpage. How do I go about this ?"

Read the article
css opacity not working in IE7

- by Alsciende

I have this test page : http://jsfiddle.net/VWnm9/7/. The image is correctly faded on all my computers running IE6, 7 or 8, except for one computer that runs IE7 and doesn't fade the flower, even in noext mode. The page is : <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd"> <html lang="en"> <head> <style type="text/css"> body { background: blue; } img { filter: alpha(opacity=10); opacity: 0.1; } </style> </head> <body> <img src="http://upload.wikimedia.org/wikipedia/commons/c/c3/Extracted_pink_rose.png" /> </body> </html> Does anybody have an idea why?

Read the article
[Devise] confirmation_url points to localhost

- by Ved

I am using Devise and omniauth for authentication in my rails app. I have followed readme and put the following line in my production.rb : config.action_mailer.default_url_options = { :host => 'http://morning-autumn-487.heroku.com' } My mailer has the following code: <%= link_to 'Confirm my account',confirmation_url(@user, :confirmation_token => @user.confirmation_token) %> When I upload the app to heroku, the confirmation mail has the following link for registration in the email : http://127.0.0.1:3000/users/confirmation?confirmation_token=8TyGWQo6y... Is there a setting that governs this host name ?

Read the article
Maximum File Size and Pixels for Uploaded Business Documents

- by webdevguy

I am creating a php form that accepts an upload of business documents in a variety of formats .pdf, .doc, .tiff, .jpeg, etc. and I need to restrict the size of the files that are uploaded. It's trivial for me to restrict the file size, but I'm not sure if I should also restrict the max height/width, which are also available options. I will need to occasionally print these documents to 8.5 X 11inch paper and have them be legible, but don't really care if images come out. Should I restrict the pixels sizes or is that redundant with restricting the file size? If so, do you guys have a recommendations for max height/width for, say, a 5MB file size limit? I really have no idea what the relationship between pixel size and image size is or what the common pixel sizes are for scanned images. Also, what would be a reasonable size expectation for a legible print per page?

Read the article
google docs for asp.net mvc

- by Yaroslav Yakovlev

Where can I get code example of using google docs with asp.net mvc? I need to upload documents and make it possible for people to download them. Also would be just great to make it possible to see the documents like I see them on google docs and be able to edit (probably use iFrame) but would like to get working example or some tips to get started. Code pieces are greatly appreciated, upvoted and marked as answer ;-), but I~ll be enought with a good starting points. P.S. I~m aware of google have docs for their api :-). Just looking for other places to start from. Codeproject article or github repo of api used with asp.net mvc would be the best.

Read the article
Where to store things like user pictures using Azure? Blob Storage?

- by n26

I have just migrated a project of mine for test cases to Microsoft's azure. But for functionalities similar to an avatar upload I need write access to the files on the harddrive. But this is a cloud, so this is not possible. How can I build such functionalities instead? Should I use the Blob Storage or is there a better solution? Does it make sense to store all website images (f.e. layout images) in the Blob Storage? So I would have a Cookie-free Domain for my static content?

Read the article
Drag and drop an image from desktop to a web text editor (implementation in javascript)

- by fatmatto

I tried to write reasonably short title but i failed i guess.. Hi everybody here's what i'm trying to do: I want to implement a web text editor able to recognize when the user drag a image file over it's editing surface and it automa(gically) starts the upload and insert the image near the cursor position. In other words i don't want the user to do the usual "insert-image-browse-ok". Atm i am not very good at javascript ... i know JQuery but i have not a clear idea about how to implement this... i don't know if there's an event handler able to help me in this situation... if not then there should be i think or web apps would miss some kind of interactivity. I've heard miracles about HTML5 could it help me? I've seen such things in Google Wave but that surface doesn't seem to be a form field... google lab's black magic i guess.... Thank you in advance.

Read the article
Document Management System - Where to Store Files?

- by Diego AC

Hey, stack! I'm on charge of building an ASP.NET MVC Document Management System. It have to be able to do basic document management tasks like adding, editing and searching entries and also perform versioning. Anyways, I'm targeting PDF, Office and many image formats as the file attached to each document entry in the database. My question is: What design guidelines do pros follow when building the storage mechanism? Do they store the document files in the file system? Database? How file uploading is handled? I used to upload the files to a temporal location while the user was editing the data and move it to permanent storage when the user confirmed the entry creation. Is this good? Any suggestions on improvement?

Read the article
Programmatically Download Image to Desktop from Remote App with Ruby?

- by viatropos

I was thinking about making a little crop/resize batch processor online, and wanted to know if there was a way for me to do the following: upload image and specify dimensions click "process" and app resizes image image downloads automatically to wherever it was I uploaded it (say from my desktop), but with a new name (based on the time for example). This would make it so I could host a free image processor that never stored any data other than tempfiles. Is that possible? Something like Rails' send_file method, but I'm using Sinatra and am looking for something in pure ruby.

Read the article
Which PHP framework for a RoR developer?

- by Horace Ho

For one specific client I have to use PHP. This and this question were 2 years old. I'd like to know is there any update of opinion for year 2010? My background on web development is mainly rails. I can code in PHP (for example, write a module for Drupal) but never used any PHP framework for any project. I can see the following potential features to be needed in my project: authlogic-like user access control will_paginate-like paging for long listings paperclip-like simple file upload prawn-like PDF generation restful url and my personal favorite ruby/rails features: activerecord <% @list.each do |item| %> synstax instead of for ($i=1; $i<=$row_num; $i++) ... rake:db migrate script/console Thanks!

Read the article
File management

- by user343934

I am working on python and biopython right now. I have a file upload form and whatever file is uploaded suppose(abc.fasta) then i want to pass same name in execute (abc.fasta) function parameter and display function parameter (abc.aln). Right now i am changing file name manually, but i want to have it automatically. Workflow goes like this. ----If submit is not true then display only header and form part --- if submit is true then call execute() and get file name from form input --- Then display the save file result in the same page. File name is same as input. My raw code is here -- http://pastebin.com/FPUgZSSe Any suggestions, changes and algorithm is appreciated Thanks

Read the article

< Previous Page | 144 145 146 147 148 149 150 151 152 153 154 155 | Next Page >