https://wiki.fam-hammann.de/api.php?action=feedcontributions&feedformat=atom&user=Jochen
Wiki - Jochen Hammann - Benutzerbeiträge [de]
2026-04-06T04:27:07Z
Benutzerbeiträge
MediaWiki 1.37.1
https://wiki.fam-hammann.de/index.php?title=Yubikey&diff=583
Yubikey
2022-05-22T09:45:45Z
<p>Jochen: Die Seite wurde neu angelegt: „= High DPI monitor support = Yubikey tools use QT, which configures high DPI with the aid of environment variables. See [https://doc.qt.io/qt-5/highdpi.html#high-dpi-support-in-qt High DPI Support in Qt] for further information. Example: <syntaxhighlight lang="bash"> QT_SCALE_FACTOR=2 yubikey-personalization-gui </syntaxhighlight>“</p>
<hr />
<div>= High DPI monitor support =<br />
<br />
Yubikey tools use QT, which configures high DPI with the aid of environment variables. See [https://doc.qt.io/qt-5/highdpi.html#high-dpi-support-in-qt High DPI Support in Qt] for further information.<br />
<br />
Example:<br />
<br />
<syntaxhighlight lang="bash"><br />
QT_SCALE_FACTOR=2<br />
yubikey-personalization-gui<br />
</syntaxhighlight></div>
Jochen
https://wiki.fam-hammann.de/index.php?title=Software_-_Linux&diff=582
Software - Linux
2022-05-22T09:40:39Z
<p>Jochen: </p>
<hr />
<div>* [[AdoptOpenJDK Installation unter Ubuntu (Alternativen-System)]]<br />
* [[Grafikkarte]]<br />
* [[Graphite]]<br />
* [[LibreOffice]]<br />
* [[LinuxOS | Linux OS]]<br />
* [[Paperless]]<br />
* [[Linux Tools]]<br />
* [[Windows Anbindung]]<br />
* [[X Server and Remote Access]]<br />
* [[Yubikey]]</div>
Jochen
https://wiki.fam-hammann.de/index.php?title=Cryptography_%26_Security&diff=581
Cryptography & Security
2021-08-02T07:29:41Z
<p>Jochen: </p>
<hr />
<div>__TOC__<br />
<br />
<br />
= OAuth =<br />
<br />
== OAuth 2.0 ==<br />
<br />
* [https://oauth.net/2/ Homepage]<br />
<br />
=== Core ===<br />
<br />
* [https://tools.ietf.org/html/rfc6749 RFC 6749: The OAuth 2.0 Authorization Framework]<br />
* [https://tools.ietf.org/html/rfc6750 RFC 6750: The OAuth 2.0 Authorization Framework: Bearer Token Usage]<br />
* [https://tools.ietf.org/html/rfc6819 RFC 6819: OAuth 2.0 Threat Model and Security Considerations]<br />
* [https://tools.ietf.org/html/rfc7636 RFC 7636: Proof Key for Code Exchange by OAuth Public Clients]<br />
* [https://tools.ietf.org/html/draft-ietf-oauth-security-topics RFC Draft: OAuth 2.0 Security Best Current Practice]<br />
<br />
=== Mobile and Other Devices ===<br />
<br />
* [https://tools.ietf.org/html/rfc8252 RFC 8252: OAuth 2.0 for Native Apps]<br />
* [https://tools.ietf.org/html/rfc8628 RFC 8628: OAuth 2.0 Device Authorization Grant]<br />
* [https://tools.ietf.org/html/draft-ietf-oauth-browser-based-apps RFC Draft: OAuth 2.0 for Browser-Based Apps]<br />
<br />
=== Token and Token Management ===<br />
<br />
* [https://tools.ietf.org/html/rfc7662 RFC 7662: OAuth 2.0 Token Introspection]<br />
* [https://tools.ietf.org/html/rfc7009 RFC 7009: OAuth 2.0 Token Revocation]<br />
* [https://tools.ietf.org/html/rfc7519 RFC 7519: JSON Web Token (JWT)]<br />
<br />
=== Discovery and Registration ===<br />
<br />
* [https://tools.ietf.org/html/rfc8414 RFC 8414: OAuth 2.0 Authorization Server Metadata]<br />
* [https://tools.ietf.org/html/rfc7591 RFC 7591: OAuth 2.0 Dynamic Client Registration Protocol]<br />
* [https://tools.ietf.org/html/rfc7592 RFC 7592: OAuth 2.0 Dynamic Client Registration Management Protocol]<br />
<br />
== OAuth 2.1 ==<br />
<br />
* [https://tools.ietf.org/html/draft-parecki-oauth-v2-1 RFC Draft: The OAuth 2.1 Authorization Framework]<br />
<br />
== OAuth Development ==<br />
<br />
* [https://developers.google.com/oauthplayground/ Google OAuth 2.0 Playground]<br />
* [https://developers.google.com/identity/protocols/OAuth2 Using OAuth 2.0 to Access Google APIs]<br />
<br />
== Articles ==<br />
<br />
* [https://pragmaticwebsecurity.com/articles/oauthoidc/localstorage-xss.html Dr. Philippe De Ryck, ''Why avoiding LocalStorage for tokens is the wrong solution'']<br />
<br />
<br/><br />
<br />
= OpenID Connect =<br />
<br />
* [http://openid.net/connect/ Homepage]<br />
* [http://openid.net/specs/openid-connect-core-1_0.html OpenID Connect Core 1.0 incorporating errata set 1]<br />
* [http://openid.net/specs/openid-connect-discovery-1_0.html OpenID Connect Discovery 1.0 incorporating errata set 1]<br />
* [http://openid.net/specs/openid-connect-registration-1_0.html OpenID Connect Dynamic Client Registration 1.0 incorporating errata set 1]<br />
* [http://openid.net/specs/oauth-v2-multiple-response-types-1_0.html OAuth 2.0 Multiple Response Type Encoding Practices]<br />
* [http://openid.net/specs/oauth-v2-form-post-response-mode-1_0.html OAuth 2.0 Form Post Response Mode]<br />
* [http://openid.net/specs/openid-connect-session-1_0.html OpenID Connect Session Management 1.0 - draft 27]<br />
* [http://openid.net/specs/openid-connect-frontchannel-1_0.html OpenID Connect Front-Channel Logout 1.0 - draft 01]<br />
* [http://openid.net/specs/openid-connect-backchannel-1_0.html OpenID Connect Back-Channel Logout 1.0 - draft 03]<br />
<br />
<br/><br />
<br />
= Access / Refresh Token =<br />
<br />
* [https://auth0.com/docs/tokens/refresh-token/current Refresh Tokens]<br />
* [https://auth0.com/blog/refresh-tokens-what-are-they-and-when-to-use-them/ OAuth0 - Refresh Tokens: When to Use Them and How They Interact with JWTs]<br />
* [https://auth0.com/docs/api-auth/tutorials/silent-authentication Silent Authentication]<br />
* [https://auth0.com/blog/5-steps-to-add-modern-authentication-to-legacy-apps-using-jwts/ 5 Steps to Add Modern Authentication to Legacy Apps Using JWTs]<br />
* [https://auth0.com/docs/security/store-tokens Where to Store Tokens]<br />
<br />
<br/><br />
<br />
= Fast Identity Online (FIDO) =<br />
<br />
* [https://fidoalliance.org/ FIDO Allianz]<br />
* [https://fidoalliance.org/specifications/download/ Universal Authentication Framework (UAF) / U2F (Universal Second Factor) Specifications]<br />
<br />
<br/><br />
<br />
= Security Assertion Markup Language 2.0 (SAML 2.0) =<br />
<br />
* [https://wiki.oasis-open.org/security/FrontPage Homepage]<br />
* [http://www.oasis-open.org/committees/download.php/56776/sstc-saml-core-errata-2.0-wd-07.pdf Core Specification]<br />
* [http://www.oasis-open.org/committees/download.php/56779/sstc-saml-bindings-errata-2.0-wd-06.pdf Bindings Specification]<br />
* [http://www.oasis-open.org/committees/download.php/56782/sstc-saml-profiles-errata-2.0-wd-07.pdf Profiles Specification]<br />
* [http://www.oasis-open.org/committees/download.php/56785/sstc-saml-metadata-errata-2.0-wd-05.pdf Metadata Specification]<br />
<br />
<br/><br />
<br />
= JSON Web Token (JWT) =<br />
<br />
* [https://tools.ietf.org/html/rfc7515 RFC 7515: JSON Web Signature (JWS)]<br />
* [https://tools.ietf.org/html/rfc7516 RFC 7516: JSON Web Encryption (JWE)]<br />
* [https://tools.ietf.org/html/rfc7517 RFC 7517: JSON Web Key (JWK)]<br />
* [https://tools.ietf.org/html/rfc7518 RFC 7518: JSON Web Algorithms (JWA)]<br />
* [https://tools.ietf.org/html/rfc7519 RFC 7519: JSON Web Token (JWT)]<br />
* [https://tools.ietf.org/html/rfc8725 RFC 8725: JSON Web Token Best Current Practices]<br />
<br />
<br/><br />
<br />
= One Time Passwords =<br />
* [https://tools.ietf.org/html/rfc2289 RFC 2289: A One-Time Password System]<br />
* [https://tools.ietf.org/html/rfc4226 RFC 4226: HOTP: An HMAC-Based One-Time Password Algorithm]<br />
* [https://tools.ietf.org/html/rfc4793 RFC 4793: The EAP Protected One-Time Password Protocol (EAP-POTP)]<br />
* [https://tools.ietf.org/html/rfc6238 RFC 6238: TOTP: Time-Based One-Time Password Algorithm]<br />
* [https://tools.ietf.org/html/rfc6560 RFC 6560: One-Time Password (OTP) Pre-Authentication]<br />
<br />
<br/><br />
<br />
= Einweg-Hashfunktionen =<br />
<br />
* [https://tools.ietf.org/html/rfc1321 RFC 1321: The MD5 Message-Digest Algorithm]<br />
* [https://tools.ietf.org/html/rfc2104 RFC 2104: HMAC: Keyed-Hashing for Message Authentication]<br />
* [https://tools.ietf.org/html/rfc6151 RFC 6151: Updated Security Considerations for the MD5 Message-Digest and the HMAC-MD5 Algorithms]<br />
* [https://tools.ietf.org/html/rfc6234 RFC 6234: US Secure Hash Algorithms (SHA and SHA-based HMAC and HKDF)]<br />
* [http://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.180-4.pdf FIPS PUB 180-4: Secure Hash Standard (SHS)]<br />
* [https://tools.ietf.org/html/draft-irtf-cfrg-argon2 RFC Draft: The memory-hard Argon2 password hash and proof-of-work function]<br />
<br />
<br/><br />
<br />
= Authentifizierung =<br />
<br />
* [http://davenport.sourceforge.net/ntlm.html The NTLM Authentication Protocol] [[Media:The NTLM Authentication Protocol and Security Support Provider.pdf|(PDF)]]<br />
* [https://tools.ietf.org/html/rfc4120 RFC 4120: The Kerberos Network Authentication Service (V5)]<br />
* [https://tools.ietf.org/html/rfc4121 RFC 4120: The Kerberos Version 5 Generic Security Service Application Program Interface (GSS-API) Mechanism: Version 2]<br />
<br />
<br/><br />
<br />
= Challenge Response =<br />
<br />
* [https://tools.ietf.org/html/rfc5802 RFC 5802: Salted Challenge Response Authentication Mechanism (SCRAM) SASL and GSS-API Mechanisms (Updated by RFC 7677)]<br />
* [https://tools.ietf.org/html/rfc7677 RFC 7677: SCRAM-SHA-256 and SCRAM-SHA-256-PLUS Simple Authentication and Security Layer (SASL) Mechanisms]<br />
<br />
<br/><br />
<br />
= Symmetrische Verschlüsselung =<br />
<br />
* [http://csrc.nist.gov/publications/fips/fips46-3/fips46-3.pdf FIPS PUB 46-3: Data Encryption Standard (DES), National Institute of Standards and Technology, October 25, 1999]<br />
* [http://csrc.nist.gov/publications/fips/fips197/fips-197.pdf FIPS PUB 197: Advanced Encryption Standard (AES), National Institute of Standards and Technology, November 26, 2001]<br />
<br />
<br/><br />
<br />
= Public-Key Cryptography Standards (PKCS) - RSA Laboratories =<br />
<br />
* [https://tools.ietf.org/html/rfc3447 PKCS #1: RSA Cryptography Specifications Version 2.1 (RFC 2313)]<br />
* [https://tools.ietf.org/html/draft-moriarty-pkcs1-03 PKCS #1: RSA Cryptography Specifications Version 2.2 (RFC draft-moriarty-pkcs1-03)]<br />
* [ftp://ftp.rsasecurity.com/pub/pkcs/ascii/pkcs-3.asc PKCS #3: Diffie-Hellman Key Agreement Standard, Version 1.4]<br />
* [https://tools.ietf.org/html/rfc2898 PKCS #5: Password-Based Cryptography Standard, Version 2.0 (RFC 2898)]<br />
* [https://tools.ietf.org/html/draft-moriarty-pkcs5-v2dot1-04 PKCS #5: Password-Based Cryptography Standard, Version 2.1 (RFC draft-moriarty-pkcs5-v2dot1-04)]<br />
* [ftp://ftp.rsasecurity.com/pub/pkcs/ascii/pkcs-6.asc PKCS #6: Extended-Certificate Syntax Standard, Version 1.5]<br />
* [https://tools.ietf.org/html/rfc2315 PKCS #7: Cryptographic Message Syntax Standard, Version 1.5 (2315)]<br />
* [https://tools.ietf.org/html/rfc5208 PKCS #8: Private-Key Information Syntax Standard, Version 1.2 (RFC 5208)]<br />
* [https://tools.ietf.org/html/draft-seantek-pkcs8-encrypted-01 PKCS #8: EncryptedPrivateKeyInfo Media Type (RFC draft-seantek-pkcs8-encrypted-01)]<br />
* [https://tools.ietf.org/html/rfc2985 PKCS #9: Selected Object Classes and Attribute Types Version 2.0 (RFC 2985)]<br />
* [https://tools.ietf.org/html/rfc2986 PKCS #10: Certification Request Syntax Specification Version 1.7 (RFC 2986)]<br />
* [https://tools.ietf.org/html/rfc7512 PKCS #11: URI Scheme (RFC 7512)]<br />
* [https://tools.ietf.org/html/rfc7292 PKCS #12: Personal Information Exchange Syntax Version 1.1 (RFC 7292)]<br />
<br />
<br/><br />
<br />
= Generic Security Service API (GSS-API) =<br />
<br />
* [https://tools.ietf.org/html/rfc2743 RFC 2743: Generic Security Service Application Program Interface Version 2, Update 1]<br />
* [https://tools.ietf.org/html/rfc5554 RFC 5554: Clarifications and Extensions to the Generic Security Service Application Program Interface (GSS-API) for the Use of Channel Bindings]<br />
* [https://tools.ietf.org/html/rfc2479 RFC 2479: Independent Data Unit Protection Generic Security Service Application Program Interface (IDUP-GSS-API)]<br />
* [https://tools.ietf.org/html/rfc2744 RFC 2744: Generic Security Service API Version 2 : C-bindings]<br />
* [https://tools.ietf.org/html/rfc5653 RFC 5653: Generic Security Service API Version 2: Java Bindings Update]<br />
<br />
<br/><br />
<br />
= Pretty Good Privacy (PGP) =<br />
<br />
* [https://tools.ietf.org/html/rfc4880 RFC 4880: OpenPGP Message Format]<br />
* [https://tools.ietf.org/html/rfc5581 RFC 5581: The Camellia Cipher in OpenPGP]<br />
<br />
<br/><br />
<br />
= Secure / Multipurpose Internet Mail Extensions (S/MIME) =<br />
<br />
* [https://tools.ietf.org/html/rfc1847 RFC 1847: Security Multiparts for MIME: Multipart/Signed and Multipart/Encrypted]<br />
* [https://tools.ietf.org/html/rfc5751 RFC 5751: Secure/Multipurpose Internet Mail Extensions (S/MIME) Version 3.2 - Message Specification]<br />
<br />
<br/><br />
<br />
= X.509 Public Key Infrastructure =<br />
<br />
* [https://tools.ietf.org/html/rfc4158 RFC 4158: Internet X.509 Public Key Infrastructure: Certification Path Building]<br />
* [https://tools.ietf.org/html/rfc5280 RFC 5280: Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile]<br />
* [https://tools.ietf.org/html/rfc6818 RFC 6818: Updates to the Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile]<br />
* [https://tools.ietf.org/html/rfc8398 RFC 8398: Internationalized Email Addresses in X.509 Certificates]<br />
* [https://tools.ietf.org/html/rfc8399 RFC 8399: Internationalization Updates to RFC 5280]<br />
<br />
<br/><br />
<br />
= Transport Layer Security (TLS) =<br />
<br />
* [https://tools.ietf.org/html/rfc5246 RFC 5246: The Transport Layer Security (TLS) Protocol Version 1.2]<br />
<br />
<br/><br />
<br />
= Encryption Key Management =<br />
<br />
== Key Management Interoperability Protocol (KMIP) ==<br />
<br />
* [https://www.oasis-open.org/committees/tc_home.php?wg_abbrev=kmip OASIS Key Management Interoperability Protocol (KMIP) TC]<br />
* [https://wiki.oasis-open.org/kmip/KnownKMIPImplementations KMIP Implementations known to the KMIP TC (OASIS Wiki)]<br />
* [https://de.wikipedia.org/wiki/Key_Management_Interoperability_Protocol Wikipedia (de): Key Management Interoperability Protocol]<br />
* [https://en.wikipedia.org/wiki/Key_Management_Interoperability_Protocol Wikipedia (en): Key Management Interoperability Protocol]<br />
<br />
<br/><br />
<br />
= Misc =<br />
* [https://tools.ietf.org/html/rfc4648 RFC 4648: The Base16, Base32, and Base64 Data Encodings]<br />
* [https://tools.ietf.org/html/rfc4422 RFC 4422: Simple Authentication and Security Layer (SASL)]<br />
<br />
<br/><br />
<br />
= Fun =<br />
* [https://de.wikipedia.org/wiki/Internet_Protocol_over_Avian_Carriers Internet Protocol over Avian Carriers]<br />
* [https://tools.ietf.org/html/rfc1149 RFC 1149: A Standard for the Transmission of IP Datagrams on Avian Carriers]<br />
* [https://tools.ietf.org/html/rfc2549 RFC 2549: IP over Avian Carriers with Quality of Service]<br />
* [https://tools.ietf.org/html/rfc6214 RFC 6214: Adaptation of RFC 1149 for IPv6]<br />
<br />
<br/></div>
Jochen
https://wiki.fam-hammann.de/index.php?title=Tomcat&diff=580
Tomcat
2021-07-27T09:24:32Z
<p>Jochen: /* Remote Monitoring */</p>
<hr />
<div>__TOC__<br />
<br />
<br />
== Remote Debugging ==<br />
<br />
Eine sehr gute Beschreibung zum Thema Tomcat Remote Debugging kann [https://blog.trifork.com/2014/07/14/how-to-remotely-debug-application-running-on-tomcat-from-within-intellij-idea/ hier] gefunden werden.<br />
<br />
<br />
== JMX Monitoring ==<br />
<br />
Das Monitoring und Management via JMX in Java wird [https://docs.oracle.com/en/java/javase/11/management/monitoring-and-management-using-jmx-technology.html hier] beschrieben. Die Einstellungen für den Tomcat 9 [https://tomcat.apache.org/tomcat-9.0-doc/monitoring.html hier]. Als Tools zum JMX Monitoring dienen [https://openjdk.java.net/tools/svc/jconsole/ JConsole] oder [https://visualvm.github.io/ VisualVM].<br />
<br />
Bei der Verwendung von [https://visualvm.github.io/ VisualVM] sollte das Plugin ''VisualVM-MBeans'' installiert sein.<br />
<br />
=== Lokales Monitoring ===<br />
<br />
Werden die Monitoring Tools lokal, unter demselben Benutzer ausgeführt, unter dem auch der Tomcat läuft, müssen meist keine weiteren Einstellungen vorgenommen werden.<br />
<br />
=== Remote Monitoring ===<br />
<br />
Werden die Monitoring Tools Remote oder lokal und unter einem anderen Benutzer ausgeführt, so müssen folgende Einstellungen am Tomcat vorgenommen werden.<br />
<br />
==== Command Line Interface (CLI) ====<br />
<br />
Wird der Tomcat via CLI gestartet, so muss folgendes Setting spezifiziert werden. Als JMX Port wurde beispielhaft Port 8090 gewählt.<br />
<br />
Unter Linux und MacOS muss folgendes in die Datei <code>bin/setenv.sh</code> aufgenommen werden. <br />
<br />
<syntaxhighlight lang="text"><br />
CATALINA_OPTS=-Dcom.sun.management.jmxremote.port=8090 -Dcom.sun.management.jmxremote.ssl=false -Dcom.sun.management.jmxremote.authenticate=false<br />
</syntaxhighlight><br />
<br />
Unter Microsoft Windows muss folgendes in die Datei <code>setenv.bat</code> aufgenommen werden.<br />
<br />
<syntaxhighlight lang="text"><br />
set CATALINA_OPTS=-Dcom.sun.management.jmxremote.port=8090 -Dcom.sun.management.jmxremote.ssl=false -Dcom.sun.management.jmxremote.authenticate=false<br />
</syntaxhighlight><br />
<br />
==== Windows Service ====<br />
<br />
Läuft der Tomcat als Windows Service, so müssen im Tomcat Config Tool folgende Zeilen im Tab "Java" zu den "Java Options" hinzugefügt werden. Als JMX Port wurde beispielhaft Port 8090 gewählt.<br />
<br />
<syntaxhighlight lang="text"><br />
-Dcom.sun.management.jmxremote.port=8090<br />
-Dcom.sun.management.jmxremote.ssl=false<br />
-Dcom.sun.management.jmxremote.authenticate=false<br />
</syntaxhighlight><br />
<br />
== Namensgebung der WAR Datei ==<br />
<br />
Bei der Namensgebung einer WAR Datei ist zu beachten, dass der Dateiname einen direkten Zusammenhang mit dem Context Name, dem Context Path und der Context Version besitzt. Hierzu kann auch die Tomcat Hilfe zum Thema Context eingesehen werden: siehe [http://tomcat.apache.org/tomcat-7.0-doc/config/context.html#Naming hier].<br />
<br />
Im folgenden ist ein Auszug dieser Hilfe.<br />
<br />
'''Naming'''<br />
<br />
When autoDeploy or deployOnStartup is used then there is a close relationship between the context name, context path, context version and the base file name used for the WAR and/or directory that contains the web application when the WAR or directory is located in the Host's appBase. When no version is specified, the rules are:<br />
<br />
* contextName = contextPath<br />
* If the contextPath is a zero length string, the base name is ROOT<br />
* If the contextPath is not a zero length string, the base name is the contextPath with the leading '/' removed and any remaining '/' characters in the path replaced with '#'.<br />
<br />
When a version is specified, ##version is added to the contextName and base name. To help clarify these rules, some examples are given in the following table.<br />
<br />
{| class="wikitable"<br />
! Context Path !! Context Version !! Context Name !! Base filename<br />
|-<br />
| /foo || None || /foo || foo<br />
|-<br />
| /foo/bar || None || /foo/bar || foo#bar<br />
|-<br />
| Empty String || None || Empty String || ROOT<br />
|-<br />
| /foo || 42 || /foo##42 || foo##42<br />
|-<br />
| /foo/bar || 42 || /foo/bar##42 || foo#bar##42<br />
|-<br />
| Empty String || 42 || ##42 || ROOT##42<br />
|}<br />
<br />
The version component is treated as a String both for performance reasons and to allow flexibility in versioning schemes. String comparisons are used to determine version order. If version is not specified, it is treated as the empty string. Therefore, foo.war will be treated as an earlier version than foo##11.war and foo##11.war will be treated as an earlier version than foo##2.war. If using a purely numerical versioning scheme it is recommended that zero padding is used so that foo##002.war is treated as an earlier version than foo##011.war.<br />
If you want to deploy a WAR file or a directory using a context path that is not related to the base file name then one of the following options must be used to prevent double-deployment:<br />
<br />
* Disable autoDeploy and deployOnStartup and define all Contexts in server.xml<br />
* Locate the WAR and/or directory outside of the Host's appBase and use a context.xml file with a docBase attribute to define it.<br />
<br />
<br />
== Automatic Deployment via Maven==<br />
<br />
Das automatische Deployment via Maven erfordert die Spezifikation eines Admin-Users im Tomcat. Im Folgenden ist die Datei tomcat-users.xml abgebildet, welche exemplarisch die notwendigen Einstellungen zeigt.<br />
<br />
<syntaxhighlight lang="xml"><br />
<?xml version="1.0" encoding="UTF-8"?><br />
<!--<br />
Licensed to the Apache Software Foundation (ASF) under one or more<br />
contributor license agreements. See the NOTICE file distributed with<br />
this work for additional information regarding copyright ownership.<br />
The ASF licenses this file to You under the Apache License, Version 2.0<br />
(the "License"); you may not use this file except in compliance with<br />
the License. You may obtain a copy of the License at<br />
http://www.apache.org/licenses/LICENSE-2.0<br />
Unless required by applicable law or agreed to in writing, software<br />
distributed under the License is distributed on an "AS IS" BASIS,<br />
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.<br />
See the License for the specific language governing permissions and<br />
limitations under the License.<br />
--><tomcat-users><br />
<!--<br />
NOTE: By default, no user is included in the "manager-gui" role required<br />
to operate the "/manager/html" web application. If you wish to use this app,<br />
you must define such a user - the username and password are arbitrary.<br />
--><br />
<!--<br />
NOTE: The sample user and role entries below are wrapped in a comment<br />
and thus are ignored when reading this file. Do not forget to remove<br />
<!.. ..> that surrounds them.<br />
--><br />
<role rolename="manager-gui"/><br />
<role rolename="manager-script"/><br />
<role rolename="admin"/><br />
<user password="21admin" roles="admin,manager-gui,manager-script" username="admin"/><br />
<br />
</tomcat-users><br />
</syntaxhighlight><br />
<br />
<br />
== PermGen - Command Line Parameter ==<br />
<br />
Der folgende JVM Command Line Parameter spezifiziert die zu verwendende maximale Größe der Java Permanent Generation:<br />
<br />
<syntaxhighlight lang="text"><br />
-XX:MaxPermSize=512m<br />
</syntaxhighlight><br />
<br />
<br />
== Proxy - Command Line Parameter ==<br />
<br />
Die folgenden JVM Command Line Parameter spezifizieren die zu verwendende HTTP Proxy:<br />
<br />
<syntaxhighlight lang="text"><br />
-Dhttp.proxyHost=<host><br />
-Dhttp.proxyPort=<port><br />
-Dhttp.proxyUser=<user name><br />
-Dhttp.proxyPassword=<password><br />
<br />
-Dhttp.nonProxyHosts=<br />
</syntaxhighlight><br />
<br />
<br />
Die folgenden JVM Command Line Parameter spezifizieren die zu verwendende HTTPS Proxy. Die ''nonProxyHosts'' werden durch die HTTP Konfiguration spezifiziert.<br />
<br />
<syntaxhighlight lang="text"><br />
-Dhttps.proxyHost=<host><br />
-Dhttps.proxyPort=<port><br />
-Dhttps.proxyUser=<user name><br />
-Dhttps.proxyPassword=<password><br />
<br />
-Dhttp.nonProxyHosts=<br />
</syntaxhighlight><br />
<br />
<br />
== Apache Tomcat 8 in Eclipse (Ubuntu) ==<br />
<br />
Die Installation des Apache Tomcat unter Ubuntu erstellt mehrere Verzeichniss unterhalb des Root.<br />
<br />
<syntaxhighlight lang="text"><br />
/usr/share/tomcat8<br />
/usr/share/tomcat8-admin<br />
/usr/share/tomcat8-docs<br />
/usr/share/tomcat8-examples<br />
/etc/tomcat8<br />
/var/lib/tomcat8<br />
</syntaxhighlight><br />
<br />
Soll nun dieser Tomcat als Server in Eclipse unter Ubuntu verwendet werden, so müssen folgende Einstellungen vorgenommen werden. Man hat zwei verschiedene Möglichkeiten:<br />
<br />
<br />
'''1'''<br />
<br />
* Close Eclipse<br />
* Go to your Eclipse workspace directory<br />
* Then go to directory <code>.metadata/.plugins/org.eclipse.core.runtime/.settings</code><br />
* In Ubuntu, I do it by: <code>cd ~/workspace/.metadata/.plugins/org.eclipse.core.runtime/.settings</code><br />
* Delete the following two files:<br />
** <code>org.eclipse.wst.server.core.prefs</code><br />
** <code>org.eclipse.jst.server.tomcat.core.prefs</code><br/>You can do it by the following command:<br />
** <code>rm org.eclipse.wst.server.core.prefs</code><br />
** <code>rm org.eclipse.jst.server.tomcat.core.prefs</code><br />
* Start Eclipse<br />
<br />
<br />
'''2'''<br />
<br />
If the above solution did not solve the problem then you can try the following solution which contains creating some softlinks along with deleting the above mentioned files.<br />
<br />
Run the following commands in terminal:<br />
<br />
<syntaxhighlight lang="text"><br />
cd ~/workspace/.metadata/.plugins/org.eclipse.core.runtime/.settings/<br />
rm org.eclipse.jst.server.tomcat.core.prefs<br />
rm org.eclipse.wst.server.core.prefs<br />
cd /usr/share/tomcat7<br />
sudo service tomcat7 stop<br />
sudo update-rc.d tomcat7 disable<br />
sudo ln -s /var/lib/tomcat7/conf conf<br />
sudo ln -s /etc/tomcat7/policy.d/03catalina.policy conf/catalina.policy<br />
sudo ln -s /var/log/tomcat7 log<br />
sudo chmod -R 777 /usr/share/tomcat7/conf<br />
sudo ln -s /var/lib/tomcat7/common common<br />
sudo ln -s /var/lib/tomcat7/server server<br />
sudo ln -s /var/lib/tomcat7/shared shared<br />
</syntaxhighlight><br />
<br />
* Restart eclipse<br />
* In Project Explorer of Eclipse, you can see ‘Servers’. Right click and delete it.<br />
* Re-add the Server (File -> New -> Other -> Server)<br />
* Now your project on Eclipse should run fine.<br />
<br />
<br />
== Verwendung von UTF-8 in allen Seiten ==<br />
<br />
Die folgende Beschreibung ist [https://wiki.apache.org/tomcat/FAQ/CharacterEncoding#Q8 hier] entnommen.<br />
<br />
Using UTF-8 as your character encoding for everything is a safe bet. This should work for pretty much every situation.<br />
<br />
In order to completely switch to using UTF-8, you need to make the following changes:<br />
<br />
# Set <code>URIEncoding="UTF-8"</code> on your <code><Connector></code> in ''server.xml''. References: [http://tomcat.apache.org/tomcat-7.0-doc/config/http.html HTTP Connector], [http://tomcat.apache.org/tomcat-7.0-doc/config/ajp.html AJP Connector].<br />
# Use a [https://wiki.apache.org/tomcat/FAQ/CharacterEncoding#Q3 character encoding filter] with the default encoding set to UTF-8.<br />
# Change all your JSPs to include charset name in their contentType.<br/>For example, use <code><%@page contentType="text/html; charset=UTF-8" %></code> for the usual JSP pages and <code><jsp:directive.page contentType="text/html; charset=UTF-8" /></code> for the pages in XML syntax (aka JSP Documents).<br />
# Change all your servlets to set the content type for responses and to include charset name in the content type to be UTF-8.<br/>Use <code>response.setContentType("text/html; charset=UTF-8")</code> or <code>response.setCharacterEncoding("UTF-8")</code>.<br />
# Change any content-generation libraries you use (Velocity, Freemarker, etc.) to use UTF-8 and to specify UTF-8 in the content type of the responses that they generate.<br />
# Disable any valves or filters that may read request parameters before your character encoding filter or jsp page has a chance to set the encoding to UTF-8. For more information see [http://www.mail-archive.com/users@tomcat.apache.org/msg21117.html http://www.mail-archive.com/users@tomcat.apache.org/msg21117.html].<br />
<br />
<br />
== org.apache.catalina.filters.SetCharacterEncodingFilter in web.xml spezifizieren ==<br />
<br />
Das folgende Code-Fragment zeigt die Spezifikation bzw. Konfiguration des <code>org.apache.catalina.filters.SetCharacterEncodingFilter</code> zum Festlegen von UTF-8 für alle Requests.<br />
<br />
<syntaxhighlight lang="xml"><br />
<filter><br />
<filter-name>EncodingFilter</filter-name><br />
<filter-class>org.apache.catalina.filters.SetCharacterEncodingFilter</filter-class><br />
<br />
<init-param><br />
<param-name>encoding</param-name><br />
<param-value>UTF-8</param-value><br />
</init-param><br />
</filter><br />
<br />
<filter-mapping><br />
<filter-name>EncodingFilter</filter-name><br />
<url-pattern>/*</url-pattern><br />
</filter-mapping><br />
</syntaxhighlight></div>
Jochen
https://wiki.fam-hammann.de/index.php?title=Linux_Tools&diff=579
Linux Tools
2021-04-30T13:26:15Z
<p>Jochen: </p>
<hr />
<div>= System Tools =<br />
<br />
== pkexec ==<br />
<br />
Mit Hilfe von <code>pkexec</code> kann eine UI Applikation als ''root'' gestartet werden. Ab Ubuntu 18.04 ersetzt dies den Befehl <code>gksu</code>.<br />
<br />
Beispiel:<br />
<br />
pkexec gedit<br />
<br />
<br/><br />
<br />
= Tracing Tools =<br />
<br />
== strace (Linux syscall tracer) ==<br />
<br />
Aus der [https://strace.io/ strace.io] Dokumentation: "strace is a diagnostic, debugging and instructional userspace utility for Linux. It is used to monitor and tamper with interactions between processes and the Linux kernel, which include system calls, signal deliveries, and changes of process state."<br />
<br />
<br/><br />
<br />
=== Siehe auch ===<br />
<br />
* [https://strace.io/ strace.io]<br />
* [https://wiki.ubuntu.com/Strace strace - Ubuntu Wiki]<br />
* [https://openbook.rheinwerk-verlag.de/linux_unix_programmierung/Kap17-006.htm Linux-UNIX-Programmierung (Jürgen Wolf) - strace]<br />
<br />
<br/><br />
<br />
=== Beispiele ===<br />
<br />
==== Netzwerkverkehr eines laufenden Prozesses anzeigen ====<br />
<br />
sudo strace -f -e trace=network -s 10000 -p <PID><br />
<br />
{| class="wikitable"<br />
|-<br />
! Option !! Beschreibung<br />
|-<br />
| -f || Kindprozesse werden ebenfalls beobachtet.<br />
|-<br />
| -e trace=network || Trace Filter auf Netzwerkverkehr.<br />
|-<br />
| -s 10000 || Maximale Anzahl an Zeichen in der Ausgabe.<br />
|}<br />
<br />
<br/><br />
<br />
==== Netzwerkverkehr eines laufenden Prozesses anzeigen und in einem Logfile speichern ====<br />
<br />
Da <code>strace</code> ''stderr'' als Ausgabe verwendet, muss vor dem Piping ''stderr'' nach ''stdout'' via <code>2>&1</code> umgeleitet werden.<br />
<br />
sudo strace -f -e trace=network -s 10000 -p <PID> 2>&1 | tee strace.log<br />
<br />
{| class="wikitable"<br />
|-<br />
! Option !! Beschreibung<br />
|-<br />
| -f || Kindprozesse werden ebenfalls beobachtet.<br />
|-<br />
| -e trace=network || Trace Filter auf Netzwerkverkehr.<br />
|-<br />
| -s 10000 || Maximale Anzahl an Zeichen in der Ausgabe.<br />
|}<br />
<br />
<br/><br />
<br />
==== Dateizugriff eines laufenden Prozesses anzeigen und in einem Logfile speichern ====<br />
<br />
Da <code>strace</code> ''stderr'' als Ausgabe verwendet, muss vor dem Piping ''stderr'' nach ''stdout'' via <code>2>&1</code> umgeleitet werden.<br />
<br />
sudo strace -f -e trace=file -s 10000 -p <PID> 2>&1 | tee strace.log<br />
<br />
{| class="wikitable"<br />
|-<br />
! Option !! Beschreibung<br />
|-<br />
| -f || Kindprozesse werden ebenfalls beobachtet.<br />
|-<br />
| -e trace=file || Trace Filter auf Dateizugriff.<br />
|-<br />
| -s 10000 || Maximale Anzahl an Zeichen in der Ausgabe.<br />
|}<br />
<br />
<br/></div>
Jochen
https://wiki.fam-hammann.de/index.php?title=Linux_Tools&diff=578
Linux Tools
2021-04-29T07:54:19Z
<p>Jochen: /* Beispiele */</p>
<hr />
<div>= Tracing Tools =<br />
<br />
== strace (Linux syscall tracer) ==<br />
<br />
Aus der [https://strace.io/ strace.io] Dokumentation: "strace is a diagnostic, debugging and instructional userspace utility for Linux. It is used to monitor and tamper with interactions between processes and the Linux kernel, which include system calls, signal deliveries, and changes of process state."<br />
<br />
<br/><br />
<br />
=== Siehe auch ===<br />
<br />
* [https://strace.io/ strace.io]<br />
* [https://wiki.ubuntu.com/Strace strace - Ubuntu Wiki]<br />
* [https://openbook.rheinwerk-verlag.de/linux_unix_programmierung/Kap17-006.htm Linux-UNIX-Programmierung (Jürgen Wolf) - strace]<br />
<br />
<br/><br />
<br />
=== Beispiele ===<br />
<br />
==== Netzwerkverkehr eines laufenden Prozesses anzeigen ====<br />
<br />
sudo strace -f -e trace=network -s 10000 -p <PID><br />
<br />
{| class="wikitable"<br />
|-<br />
! Option !! Beschreibung<br />
|-<br />
| -f || Kindprozesse werden ebenfalls beobachtet.<br />
|-<br />
| -e trace=network || Trace Filter auf Netzwerkverkehr.<br />
|-<br />
| -s 10000 || Maximale Anzahl an Zeichen in der Ausgabe.<br />
|}<br />
<br />
<br/><br />
<br />
==== Netzwerkverkehr eines laufenden Prozesses anzeigen und in einem Logfile speichern ====<br />
<br />
Da <code>strace</code> ''stderr'' als Ausgabe verwendet, muss vor dem Piping ''stderr'' nach ''stdout'' via <code>2>&1</code> umgeleitet werden.<br />
<br />
sudo strace -f -e trace=network -s 10000 -p <PID> 2>&1 | tee strace.log<br />
<br />
{| class="wikitable"<br />
|-<br />
! Option !! Beschreibung<br />
|-<br />
| -f || Kindprozesse werden ebenfalls beobachtet.<br />
|-<br />
| -e trace=network || Trace Filter auf Netzwerkverkehr.<br />
|-<br />
| -s 10000 || Maximale Anzahl an Zeichen in der Ausgabe.<br />
|}<br />
<br />
<br/><br />
<br />
==== Dateizugriff eines laufenden Prozesses anzeigen und in einem Logfile speichern ====<br />
<br />
Da <code>strace</code> ''stderr'' als Ausgabe verwendet, muss vor dem Piping ''stderr'' nach ''stdout'' via <code>2>&1</code> umgeleitet werden.<br />
<br />
sudo strace -f -e trace=file -s 10000 -p <PID> 2>&1 | tee strace.log<br />
<br />
{| class="wikitable"<br />
|-<br />
! Option !! Beschreibung<br />
|-<br />
| -f || Kindprozesse werden ebenfalls beobachtet.<br />
|-<br />
| -e trace=file || Trace Filter auf Dateizugriff.<br />
|-<br />
| -s 10000 || Maximale Anzahl an Zeichen in der Ausgabe.<br />
|}<br />
<br />
<br/></div>
Jochen
https://wiki.fam-hammann.de/index.php?title=Linux_Tools&diff=577
Linux Tools
2021-04-29T06:32:15Z
<p>Jochen: /* Beispiele */</p>
<hr />
<div>= Tracing Tools =<br />
<br />
== strace (Linux syscall tracer) ==<br />
<br />
Aus der [https://strace.io/ strace.io] Dokumentation: "strace is a diagnostic, debugging and instructional userspace utility for Linux. It is used to monitor and tamper with interactions between processes and the Linux kernel, which include system calls, signal deliveries, and changes of process state."<br />
<br />
<br/><br />
<br />
=== Siehe auch ===<br />
<br />
* [https://strace.io/ strace.io]<br />
* [https://wiki.ubuntu.com/Strace strace - Ubuntu Wiki]<br />
* [https://openbook.rheinwerk-verlag.de/linux_unix_programmierung/Kap17-006.htm Linux-UNIX-Programmierung (Jürgen Wolf) - strace]<br />
<br />
<br/><br />
<br />
=== Beispiele ===<br />
<br />
==== Netzwerkverkehr eines laufenden Prozesses anzeigen ====<br />
<br />
sudo strace -f -e trace=network -s 10000 -p <PID><br />
<br />
{| class="wikitable"<br />
|-<br />
! Option !! Beschreibung<br />
|-<br />
| -f || Kindprozesse werden ebenfalls beobachtet.<br />
|-<br />
| -e trace=network || Trace Filter auf Netzwerkverkehr.<br />
|-<br />
| -s 10000 || Maximale Anzahl an Zeichen in der Ausgabe.<br />
|}<br />
<br />
<br/><br />
<br />
==== Netzwerkverkehr eines laufenden Prozesses anzeigen und in einem Logfile speichern ====<br />
<br />
sudo strace -f -e trace=network -s 10000 -p <PID> 2>&1 | tee strace.log<br />
<br />
{| class="wikitable"<br />
|-<br />
! Option !! Beschreibung<br />
|-<br />
| -f || Kindprozesse werden ebenfalls beobachtet.<br />
|-<br />
| -e trace=network || Trace Filter auf Netzwerkverkehr.<br />
|-<br />
| -s 10000 || Maximale Anzahl an Zeichen in der Ausgabe.<br />
|}</div>
Jochen
https://wiki.fam-hammann.de/index.php?title=Linux_Tools&diff=576
Linux Tools
2021-04-28T12:51:54Z
<p>Jochen: Die Seite wurde neu angelegt: „= Tracing Tools = == strace (Linux syscall tracer) == Aus der [https://strace.io/ strace.io] Dokumentation: "strace is a diagnostic, debugging and instructio…“</p>
<hr />
<div>= Tracing Tools =<br />
<br />
== strace (Linux syscall tracer) ==<br />
<br />
Aus der [https://strace.io/ strace.io] Dokumentation: "strace is a diagnostic, debugging and instructional userspace utility for Linux. It is used to monitor and tamper with interactions between processes and the Linux kernel, which include system calls, signal deliveries, and changes of process state."<br />
<br />
<br/><br />
<br />
=== Siehe auch ===<br />
<br />
* [https://strace.io/ strace.io]<br />
* [https://wiki.ubuntu.com/Strace strace - Ubuntu Wiki]<br />
* [https://openbook.rheinwerk-verlag.de/linux_unix_programmierung/Kap17-006.htm Linux-UNIX-Programmierung (Jürgen Wolf) - strace]<br />
<br />
<br/><br />
<br />
=== Beispiele ===<br />
<br />
==== Netzwerkverkehr eines laufenden Prozesses anzeigen ====<br />
<br />
strace -f -e trace=network -s 10000 -p <PID>;<br />
<br />
{| class="wikitable"<br />
|-<br />
! Option !! Beschreibung<br />
|-<br />
| -f || Kindprozesse werden ebenfalls beobachtet.<br />
|-<br />
| -e trace=network || Trace Filter auf Netzwerkverkehr.<br />
|-<br />
| -s 10000 || Maximale Anzahl an Zeichen in der Ausgabe.<br />
|}<br />
<br />
<br/><br />
<br />
==== Netzwerkverkehr eines laufenden Prozesses anzeigen und in einem Logfile speichern ====<br />
<br />
strace -f -e trace=network -s 10000 -p <PID>; 2>&1 | tee strace.log<br />
<br />
{| class="wikitable"<br />
|-<br />
! Option !! Beschreibung<br />
|-<br />
| -f || Kindprozesse werden ebenfalls beobachtet.<br />
|-<br />
| -e trace=network || Trace Filter auf Netzwerkverkehr.<br />
|-<br />
| -s 10000 || Maximale Anzahl an Zeichen in der Ausgabe.<br />
|}</div>
Jochen
https://wiki.fam-hammann.de/index.php?title=Software_-_Linux&diff=575
Software - Linux
2021-04-28T12:37:09Z
<p>Jochen: </p>
<hr />
<div>* [[AdoptOpenJDK Installation unter Ubuntu (Alternativen-System)]]<br />
* [[Grafikkarte]]<br />
* [[Graphite]]<br />
* [[LibreOffice]]<br />
* [[LinuxOS | Linux OS]]<br />
* [[Paperless]]<br />
* [[Linux Tools]]<br />
* [[Windows Anbindung]]<br />
* [[X Server and Remote Access]]</div>
Jochen
https://wiki.fam-hammann.de/index.php?title=Software_-_Linux&diff=574
Software - Linux
2021-04-28T12:36:50Z
<p>Jochen: </p>
<hr />
<div>* [[AdoptOpenJDK Installation unter Ubuntu (Alternativen-System)]]<br />
* [[Grafikkarte]]<br />
* [[Graphite]]<br />
* [[LibreOffice]]<br />
* [[LinuxOS | Linux OS]]<br />
* [[Paperless]]<br />
* [[Tools]]<br />
* [[Windows Anbindung]]<br />
* [[X Server and Remote Access]]</div>
Jochen
https://wiki.fam-hammann.de/index.php?title=Software_-_Linux&diff=573
Software - Linux
2021-04-28T12:36:36Z
<p>Jochen: </p>
<hr />
<div>* [[AdoptOpenJDK Installation unter Ubuntu (Alternativen-System)]]<br />
* [[Grafikkarte]]<br />
* [[Graphite]]<br />
* [[LibreOffice]]<br />
* [[LinuxOS | Linux OS]]<br />
* [[Paperless]]<br />
* [[Tracing Tools]]<br />
* [[Windows Anbindung]]<br />
* [[X Server and Remote Access]]</div>
Jochen
https://wiki.fam-hammann.de/index.php?title=Cryptography_%26_Security&diff=572
Cryptography & Security
2021-04-22T09:53:38Z
<p>Jochen: /* X.509 Public Key Infrastructure */</p>
<hr />
<div>__TOC__<br />
<br />
<br />
= OAuth =<br />
<br />
== OAuth 2.0 ==<br />
<br />
* [https://oauth.net/2/ Homepage]<br />
<br />
=== Core ===<br />
<br />
* [https://tools.ietf.org/html/rfc6749 RFC 6749: The OAuth 2.0 Authorization Framework]<br />
* [https://tools.ietf.org/html/rfc6750 RFC 6750: The OAuth 2.0 Authorization Framework: Bearer Token Usage]<br />
* [https://tools.ietf.org/html/rfc6819 RFC 6819: OAuth 2.0 Threat Model and Security Considerations]<br />
* [https://tools.ietf.org/html/rfc7636 RFC 7636: Proof Key for Code Exchange by OAuth Public Clients]<br />
* [https://tools.ietf.org/html/draft-ietf-oauth-security-topics RFC Draft: OAuth 2.0 Security Best Current Practice]<br />
<br />
=== Mobile and Other Devices ===<br />
<br />
* [https://tools.ietf.org/html/rfc8252 RFC 8252: OAuth 2.0 for Native Apps]<br />
* [https://tools.ietf.org/html/rfc8628 RFC 8628: OAuth 2.0 Device Authorization Grant]<br />
* [https://tools.ietf.org/html/draft-ietf-oauth-browser-based-apps RFC Draft: OAuth 2.0 for Browser-Based Apps]<br />
<br />
=== Token and Token Management ===<br />
<br />
* [https://tools.ietf.org/html/rfc7662 RFC 7662: OAuth 2.0 Token Introspection]<br />
* [https://tools.ietf.org/html/rfc7009 RFC 7009: OAuth 2.0 Token Revocation]<br />
* [https://tools.ietf.org/html/rfc7519 RFC 7519: JSON Web Token (JWT)]<br />
<br />
=== Discovery and Registration ===<br />
<br />
* [https://tools.ietf.org/html/rfc8414 RFC 8414: OAuth 2.0 Authorization Server Metadata]<br />
* [https://tools.ietf.org/html/rfc7591 RFC 7591: OAuth 2.0 Dynamic Client Registration Protocol]<br />
* [https://tools.ietf.org/html/rfc7592 RFC 7592: OAuth 2.0 Dynamic Client Registration Management Protocol]<br />
<br />
== OAuth 2.1 ==<br />
<br />
* [https://tools.ietf.org/html/draft-parecki-oauth-v2-1 RFC Draft: The OAuth 2.1 Authorization Framework]<br />
<br />
== OAuth Development ==<br />
<br />
* [https://developers.google.com/oauthplayground/ Google OAuth 2.0 Playground]<br />
* [https://developers.google.com/identity/protocols/OAuth2 Using OAuth 2.0 to Access Google APIs]<br />
<br />
== Articles ==<br />
<br />
* [https://pragmaticwebsecurity.com/articles/oauthoidc/localstorage-xss.html Dr. Philippe De Ryck, ''Why avoiding LocalStorage for tokens is the wrong solution'']<br />
<br />
<br/><br />
<br />
= OpenID Connect =<br />
<br />
* [http://openid.net/connect/ Homepage]<br />
* [http://openid.net/specs/openid-connect-core-1_0.html OpenID Connect Core 1.0 incorporating errata set 1]<br />
* [http://openid.net/specs/openid-connect-discovery-1_0.html OpenID Connect Discovery 1.0 incorporating errata set 1]<br />
* [http://openid.net/specs/openid-connect-registration-1_0.html OpenID Connect Dynamic Client Registration 1.0 incorporating errata set 1]<br />
* [http://openid.net/specs/oauth-v2-multiple-response-types-1_0.html OAuth 2.0 Multiple Response Type Encoding Practices]<br />
* [http://openid.net/specs/oauth-v2-form-post-response-mode-1_0.html OAuth 2.0 Form Post Response Mode]<br />
* [http://openid.net/specs/openid-connect-session-1_0.html OpenID Connect Session Management 1.0 - draft 27]<br />
* [http://openid.net/specs/openid-connect-frontchannel-1_0.html OpenID Connect Front-Channel Logout 1.0 - draft 01]<br />
* [http://openid.net/specs/openid-connect-backchannel-1_0.html OpenID Connect Back-Channel Logout 1.0 - draft 03]<br />
<br />
<br/><br />
<br />
= Access / Refresh Token =<br />
<br />
* [https://auth0.com/docs/tokens/refresh-token/current Refresh Tokens]<br />
* [https://auth0.com/blog/refresh-tokens-what-are-they-and-when-to-use-them/ OAuth0 - Refresh Tokens: When to Use Them and How They Interact with JWTs]<br />
* [https://auth0.com/docs/api-auth/tutorials/silent-authentication Silent Authentication]<br />
* [https://auth0.com/blog/5-steps-to-add-modern-authentication-to-legacy-apps-using-jwts/ 5 Steps to Add Modern Authentication to Legacy Apps Using JWTs]<br />
* [https://auth0.com/docs/security/store-tokens Where to Store Tokens]<br />
<br />
<br/><br />
<br />
= Fast Identity Online (FIDO) =<br />
<br />
* [https://fidoalliance.org/ FIDO Allianz]<br />
* [https://fidoalliance.org/specifications/download/ Universal Authentication Framework (UAF) / U2F (Universal Second Factor) Specifications]<br />
<br />
<br/><br />
<br />
= Security Assertion Markup Language 2.0 (SAML 2.0) =<br />
<br />
* [https://wiki.oasis-open.org/security/FrontPage Homepage]<br />
* [http://www.oasis-open.org/committees/download.php/56776/sstc-saml-core-errata-2.0-wd-07.pdf Core Specification]<br />
* [http://www.oasis-open.org/committees/download.php/56779/sstc-saml-bindings-errata-2.0-wd-06.pdf Bindings Specification]<br />
* [http://www.oasis-open.org/committees/download.php/56782/sstc-saml-profiles-errata-2.0-wd-07.pdf Profiles Specification]<br />
* [http://www.oasis-open.org/committees/download.php/56785/sstc-saml-metadata-errata-2.0-wd-05.pdf Metadata Specification]<br />
<br />
<br/><br />
<br />
= JSON Web Token (JWT) =<br />
<br />
* [https://tools.ietf.org/html/rfc7515 RFC 7515: JSON Web Signature (JWS)]<br />
* [https://tools.ietf.org/html/rfc7516 RFC 7516: JSON Web Encryption (JWE)]<br />
* [https://tools.ietf.org/html/rfc7517 RFC 7517: JSON Web Key (JWK)]<br />
* [https://tools.ietf.org/html/rfc7518 RFC 7518: JSON Web Algorithms (JWA)]<br />
* [https://tools.ietf.org/html/rfc7519 RFC 7519: JSON Web Token (JWT)]<br />
* [https://tools.ietf.org/html/rfc8725 RFC 8725: JSON Web Token Best Current Practices]<br />
<br />
<br/><br />
<br />
= One Time Passwords =<br />
* [https://tools.ietf.org/html/rfc2289 RFC 2289: A One-Time Password System]<br />
* [https://tools.ietf.org/html/rfc4226 RFC 4226: HOTP: An HMAC-Based One-Time Password Algorithm]<br />
* [https://tools.ietf.org/html/rfc4793 RFC 4793: The EAP Protected One-Time Password Protocol (EAP-POTP)]<br />
* [https://tools.ietf.org/html/rfc6238 RFC 6238: TOTP: Time-Based One-Time Password Algorithm]<br />
* [https://tools.ietf.org/html/rfc6560 RFC 6560: One-Time Password (OTP) Pre-Authentication]<br />
<br />
<br/><br />
<br />
= Einweg-Hashfunktionen =<br />
<br />
* [https://tools.ietf.org/html/rfc1321 RFC 1321: The MD5 Message-Digest Algorithm]<br />
* [https://tools.ietf.org/html/rfc2104 RFC 2104: HMAC: Keyed-Hashing for Message Authentication]<br />
* [https://tools.ietf.org/html/rfc6151 RFC 6151: Updated Security Considerations for the MD5 Message-Digest and the HMAC-MD5 Algorithms]<br />
* [https://tools.ietf.org/html/rfc6234 RFC 6234: US Secure Hash Algorithms (SHA and SHA-based HMAC and HKDF)]<br />
* [http://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.180-4.pdf FIPS PUB 180-4: Secure Hash Standard (SHS)]<br />
* [https://tools.ietf.org/html/draft-irtf-cfrg-argon2 RFC Draft: The memory-hard Argon2 password hash and proof-of-work function]<br />
<br />
<br/><br />
<br />
= Authentifizierung =<br />
<br />
* [http://davenport.sourceforge.net/ntlm.html The NTLM Authentication Protocol] [[Media:The NTLM Authentication Protocol and Security Support Provider.pdf|(PDF)]]<br />
* [https://tools.ietf.org/html/rfc4120 RFC 4120: The Kerberos Network Authentication Service (V5)]<br />
* [https://tools.ietf.org/html/rfc4121 RFC 4120: The Kerberos Version 5 Generic Security Service Application Program Interface (GSS-API) Mechanism: Version 2]<br />
<br />
<br/><br />
<br />
= Challenge Response =<br />
<br />
* [https://tools.ietf.org/html/rfc5802 RFC 5802: Salted Challenge Response Authentication Mechanism (SCRAM) SASL and GSS-API Mechanisms (Updated by RFC 7677)]<br />
* [https://tools.ietf.org/html/rfc7677 RFC 7677: SCRAM-SHA-256 and SCRAM-SHA-256-PLUS Simple Authentication and Security Layer (SASL) Mechanisms]<br />
<br />
<br/><br />
<br />
= Symmetrische Verschlüsselung =<br />
<br />
* [http://csrc.nist.gov/publications/fips/fips46-3/fips46-3.pdf FIPS PUB 46-3: Data Encryption Standard (DES), National Institute of Standards and Technology, October 25, 1999]<br />
* [http://csrc.nist.gov/publications/fips/fips197/fips-197.pdf FIPS PUB 197: Advanced Encryption Standard (AES), National Institute of Standards and Technology, November 26, 2001]<br />
<br />
<br/><br />
<br />
= Public-Key Cryptography Standards (PKCS) - RSA Laboratories =<br />
<br />
* [https://tools.ietf.org/html/rfc3447 PKCS #1: RSA Cryptography Specifications Version 2.1 (RFC 2313)]<br />
* [https://tools.ietf.org/html/draft-moriarty-pkcs1-03 PKCS #1: RSA Cryptography Specifications Version 2.2 (RFC draft-moriarty-pkcs1-03)]<br />
* [ftp://ftp.rsasecurity.com/pub/pkcs/ascii/pkcs-3.asc PKCS #3: Diffie-Hellman Key Agreement Standard, Version 1.4]<br />
* [https://tools.ietf.org/html/rfc2898 PKCS #5: Password-Based Cryptography Standard, Version 2.0 (RFC 2898)]<br />
* [https://tools.ietf.org/html/draft-moriarty-pkcs5-v2dot1-04 PKCS #5: Password-Based Cryptography Standard, Version 2.1 (RFC draft-moriarty-pkcs5-v2dot1-04)]<br />
* [ftp://ftp.rsasecurity.com/pub/pkcs/ascii/pkcs-6.asc PKCS #6: Extended-Certificate Syntax Standard, Version 1.5]<br />
* [https://tools.ietf.org/html/rfc2315 PKCS #7: Cryptographic Message Syntax Standard, Version 1.5 (2315)]<br />
* [https://tools.ietf.org/html/rfc5208 PKCS #8: Private-Key Information Syntax Standard, Version 1.2 (RFC 5208)]<br />
* [https://tools.ietf.org/html/draft-seantek-pkcs8-encrypted-01 PKCS #8: EncryptedPrivateKeyInfo Media Type (RFC draft-seantek-pkcs8-encrypted-01)]<br />
* [https://tools.ietf.org/html/rfc2985 PKCS #9: Selected Object Classes and Attribute Types Version 2.0 (RFC 2985)]<br />
* [https://tools.ietf.org/html/rfc2986 PKCS #10: Certification Request Syntax Specification Version 1.7 (RFC 2986)]<br />
* [https://tools.ietf.org/html/rfc7512 PKCS #11: URI Scheme (RFC 7512)]<br />
* [https://tools.ietf.org/html/rfc7292 PKCS #12: Personal Information Exchange Syntax Version 1.1 (RFC 7292)]<br />
<br />
<br/><br />
<br />
= Generic Security Service API (GSS-API) =<br />
<br />
* [https://tools.ietf.org/html/rfc2743 RFC 2743: Generic Security Service Application Program Interface Version 2, Update 1]<br />
* [https://tools.ietf.org/html/rfc5554 RFC 5554: Clarifications and Extensions to the Generic Security Service Application Program Interface (GSS-API) for the Use of Channel Bindings]<br />
* [https://tools.ietf.org/html/rfc2479 RFC 2479: Independent Data Unit Protection Generic Security Service Application Program Interface (IDUP-GSS-API)]<br />
* [https://tools.ietf.org/html/rfc2744 RFC 2744: Generic Security Service API Version 2 : C-bindings]<br />
* [https://tools.ietf.org/html/rfc5653 RFC 5653: Generic Security Service API Version 2: Java Bindings Update]<br />
<br />
<br/><br />
<br />
= Pretty Good Privacy (PGP) =<br />
<br />
* [https://tools.ietf.org/html/rfc4880 RFC 4880: OpenPGP Message Format]<br />
* [https://tools.ietf.org/html/rfc5581 RFC 5581: The Camellia Cipher in OpenPGP]<br />
<br />
<br/><br />
<br />
= Secure / Multipurpose Internet Mail Extensions (S/MIME) =<br />
<br />
* [https://tools.ietf.org/html/rfc1847 RFC 1847: Security Multiparts for MIME: Multipart/Signed and Multipart/Encrypted]<br />
* [https://tools.ietf.org/html/rfc5751 RFC 5751: Secure/Multipurpose Internet Mail Extensions (S/MIME) Version 3.2 - Message Specification]<br />
<br />
<br/><br />
<br />
= X.509 Public Key Infrastructure =<br />
<br />
* [https://tools.ietf.org/html/rfc4158 RFC 4158: Internet X.509 Public Key Infrastructure: Certification Path Building]<br />
* [https://tools.ietf.org/html/rfc5280 RFC 5280: Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile]<br />
* [https://tools.ietf.org/html/rfc6818 RFC 6818: Updates to the Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile]<br />
* [https://tools.ietf.org/html/rfc8398 RFC 8398: Internationalized Email Addresses in X.509 Certificates]<br />
* [https://tools.ietf.org/html/rfc8399 RFC 8399: Internationalization Updates to RFC 5280]<br />
<br />
<br/><br />
<br />
= Transport Layer Security (TLS) =<br />
<br />
* [https://tools.ietf.org/html/rfc5246 RFC 5246: The Transport Layer Security (TLS) Protocol Version 1.2]<br />
<br />
<br/><br />
<br />
= Misc =<br />
* [https://tools.ietf.org/html/rfc4648 RFC 4648: The Base16, Base32, and Base64 Data Encodings]<br />
* [https://tools.ietf.org/html/rfc4422 RFC 4422: Simple Authentication and Security Layer (SASL)]<br />
<br />
<br/><br />
<br />
= Fun =<br />
* [https://de.wikipedia.org/wiki/Internet_Protocol_over_Avian_Carriers Internet Protocol over Avian Carriers]<br />
* [https://tools.ietf.org/html/rfc1149 RFC 1149: A Standard for the Transmission of IP Datagrams on Avian Carriers]<br />
* [https://tools.ietf.org/html/rfc2549 RFC 2549: IP over Avian Carriers with Quality of Service]<br />
* [https://tools.ietf.org/html/rfc6214 RFC 6214: Adaptation of RFC 1149 for IPv6]<br />
<br />
<br/></div>
Jochen
https://wiki.fam-hammann.de/index.php?title=Tomcat&diff=571
Tomcat
2021-01-27T08:05:52Z
<p>Jochen: /* JMX Monitoring */</p>
<hr />
<div>__TOC__<br />
<br />
<br />
== Remote Debugging ==<br />
<br />
Eine sehr gute Beschreibung zum Thema Tomcat Remote Debugging kann [https://blog.trifork.com/2014/07/14/how-to-remotely-debug-application-running-on-tomcat-from-within-intellij-idea/ hier] gefunden werden.<br />
<br />
<br />
== JMX Monitoring ==<br />
<br />
Das Monitoring und Management via JMX in Java wird [https://docs.oracle.com/en/java/javase/11/management/monitoring-and-management-using-jmx-technology.html hier] beschrieben. Die Einstellungen für den Tomcat 9 [https://tomcat.apache.org/tomcat-9.0-doc/monitoring.html hier]. Als Tools zum JMX Monitoring dienen [https://openjdk.java.net/tools/svc/jconsole/ JConsole] oder [https://visualvm.github.io/ VisualVM].<br />
<br />
Bei der Verwendung von [https://visualvm.github.io/ VisualVM] sollte das Plugin ''VisualVM-MBeans'' installiert sein.<br />
<br />
=== Lokales Monitoring ===<br />
<br />
Werden die Monitoring Tools lokal, unter demselben Benutzer ausgeführt, unter dem auch der Tomcat läuft, müssen meist keine weiteren Einstellungen vorgenommen werden.<br />
<br />
=== Remote Monitoring ===<br />
<br />
Werden die Monitoring Tools Remote oder lokal und einem anderen Benutzer ausgeführt, so müssen folgende Einstellungen am Tomcat vorgenommen werden.<br />
<br />
==== Command Line Interface (CLI) ====<br />
<br />
Wird der Tomcat via CLI gestartet, so muss folgendes Setting spezifiziert werden. Als JMX Port wurde beispielhaft Port 8090 gewählt.<br />
<br />
Unter Linux und MacOS muss folgendes in die Datei <code>bin/setenv.sh</code> aufgenommen werden. <br />
<br />
<syntaxhighlight lang="text"><br />
CATALINA_OPTS=-Dcom.sun.management.jmxremote.port=8090 -Dcom.sun.management.jmxremote.ssl=false -Dcom.sun.management.jmxremote.authenticate=false<br />
</syntaxhighlight><br />
<br />
Unter Microsoft Windows muss folgendes in die Datei <code>setenv.bat</code> aufgenommen werden.<br />
<br />
<syntaxhighlight lang="text"><br />
set CATALINA_OPTS=-Dcom.sun.management.jmxremote.port=8090 -Dcom.sun.management.jmxremote.ssl=false -Dcom.sun.management.jmxremote.authenticate=false<br />
</syntaxhighlight><br />
<br />
==== Windows Service ====<br />
<br />
Läuft der Tomcat als Windows Service, so müssen im Tomcat Config Tool folgende Zeilen im Tab "Java" zu den "Java Options" hinzugefügt werden. Als JMX Port wurde beispielhaft Port 8090 gewählt.<br />
<br />
<syntaxhighlight lang="text"><br />
-Dcom.sun.management.jmxremote.port=8090<br />
-Dcom.sun.management.jmxremote.ssl=false<br />
-Dcom.sun.management.jmxremote.authenticate=false<br />
</syntaxhighlight><br />
<br />
== Namensgebung der WAR Datei ==<br />
<br />
Bei der Namensgebung einer WAR Datei ist zu beachten, dass der Dateiname einen direkten Zusammenhang mit dem Context Name, dem Context Path und der Context Version besitzt. Hierzu kann auch die Tomcat Hilfe zum Thema Context eingesehen werden: siehe [http://tomcat.apache.org/tomcat-7.0-doc/config/context.html#Naming hier].<br />
<br />
Im folgenden ist ein Auszug dieser Hilfe.<br />
<br />
'''Naming'''<br />
<br />
When autoDeploy or deployOnStartup is used then there is a close relationship between the context name, context path, context version and the base file name used for the WAR and/or directory that contains the web application when the WAR or directory is located in the Host's appBase. When no version is specified, the rules are:<br />
<br />
* contextName = contextPath<br />
* If the contextPath is a zero length string, the base name is ROOT<br />
* If the contextPath is not a zero length string, the base name is the contextPath with the leading '/' removed and any remaining '/' characters in the path replaced with '#'.<br />
<br />
When a version is specified, ##version is added to the contextName and base name. To help clarify these rules, some examples are given in the following table.<br />
<br />
{| class="wikitable"<br />
! Context Path !! Context Version !! Context Name !! Base filename<br />
|-<br />
| /foo || None || /foo || foo<br />
|-<br />
| /foo/bar || None || /foo/bar || foo#bar<br />
|-<br />
| Empty String || None || Empty String || ROOT<br />
|-<br />
| /foo || 42 || /foo##42 || foo##42<br />
|-<br />
| /foo/bar || 42 || /foo/bar##42 || foo#bar##42<br />
|-<br />
| Empty String || 42 || ##42 || ROOT##42<br />
|}<br />
<br />
The version component is treated as a String both for performance reasons and to allow flexibility in versioning schemes. String comparisons are used to determine version order. If version is not specified, it is treated as the empty string. Therefore, foo.war will be treated as an earlier version than foo##11.war and foo##11.war will be treated as an earlier version than foo##2.war. If using a purely numerical versioning scheme it is recommended that zero padding is used so that foo##002.war is treated as an earlier version than foo##011.war.<br />
If you want to deploy a WAR file or a directory using a context path that is not related to the base file name then one of the following options must be used to prevent double-deployment:<br />
<br />
* Disable autoDeploy and deployOnStartup and define all Contexts in server.xml<br />
* Locate the WAR and/or directory outside of the Host's appBase and use a context.xml file with a docBase attribute to define it.<br />
<br />
<br />
== Automatic Deployment via Maven==<br />
<br />
Das automatische Deployment via Maven erfordert die Spezifikation eines Admin-Users im Tomcat. Im Folgenden ist die Datei tomcat-users.xml abgebildet, welche exemplarisch die notwendigen Einstellungen zeigt.<br />
<br />
<syntaxhighlight lang="xml"><br />
<?xml version="1.0" encoding="UTF-8"?><br />
<!--<br />
Licensed to the Apache Software Foundation (ASF) under one or more<br />
contributor license agreements. See the NOTICE file distributed with<br />
this work for additional information regarding copyright ownership.<br />
The ASF licenses this file to You under the Apache License, Version 2.0<br />
(the "License"); you may not use this file except in compliance with<br />
the License. You may obtain a copy of the License at<br />
http://www.apache.org/licenses/LICENSE-2.0<br />
Unless required by applicable law or agreed to in writing, software<br />
distributed under the License is distributed on an "AS IS" BASIS,<br />
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.<br />
See the License for the specific language governing permissions and<br />
limitations under the License.<br />
--><tomcat-users><br />
<!--<br />
NOTE: By default, no user is included in the "manager-gui" role required<br />
to operate the "/manager/html" web application. If you wish to use this app,<br />
you must define such a user - the username and password are arbitrary.<br />
--><br />
<!--<br />
NOTE: The sample user and role entries below are wrapped in a comment<br />
and thus are ignored when reading this file. Do not forget to remove<br />
<!.. ..> that surrounds them.<br />
--><br />
<role rolename="manager-gui"/><br />
<role rolename="manager-script"/><br />
<role rolename="admin"/><br />
<user password="21admin" roles="admin,manager-gui,manager-script" username="admin"/><br />
<br />
</tomcat-users><br />
</syntaxhighlight><br />
<br />
<br />
== PermGen - Command Line Parameter ==<br />
<br />
Der folgende JVM Command Line Parameter spezifiziert die zu verwendende maximale Größe der Java Permanent Generation:<br />
<br />
<syntaxhighlight lang="text"><br />
-XX:MaxPermSize=512m<br />
</syntaxhighlight><br />
<br />
<br />
== Proxy - Command Line Parameter ==<br />
<br />
Die folgenden JVM Command Line Parameter spezifizieren die zu verwendende HTTP Proxy:<br />
<br />
<syntaxhighlight lang="text"><br />
-Dhttp.proxyHost=<host><br />
-Dhttp.proxyPort=<port><br />
-Dhttp.proxyUser=<user name><br />
-Dhttp.proxyPassword=<password><br />
<br />
-Dhttp.nonProxyHosts=<br />
</syntaxhighlight><br />
<br />
<br />
Die folgenden JVM Command Line Parameter spezifizieren die zu verwendende HTTPS Proxy. Die ''nonProxyHosts'' werden durch die HTTP Konfiguration spezifiziert.<br />
<br />
<syntaxhighlight lang="text"><br />
-Dhttps.proxyHost=<host><br />
-Dhttps.proxyPort=<port><br />
-Dhttps.proxyUser=<user name><br />
-Dhttps.proxyPassword=<password><br />
<br />
-Dhttp.nonProxyHosts=<br />
</syntaxhighlight><br />
<br />
<br />
== Apache Tomcat 8 in Eclipse (Ubuntu) ==<br />
<br />
Die Installation des Apache Tomcat unter Ubuntu erstellt mehrere Verzeichniss unterhalb des Root.<br />
<br />
<syntaxhighlight lang="text"><br />
/usr/share/tomcat8<br />
/usr/share/tomcat8-admin<br />
/usr/share/tomcat8-docs<br />
/usr/share/tomcat8-examples<br />
/etc/tomcat8<br />
/var/lib/tomcat8<br />
</syntaxhighlight><br />
<br />
Soll nun dieser Tomcat als Server in Eclipse unter Ubuntu verwendet werden, so müssen folgende Einstellungen vorgenommen werden. Man hat zwei verschiedene Möglichkeiten:<br />
<br />
<br />
'''1'''<br />
<br />
* Close Eclipse<br />
* Go to your Eclipse workspace directory<br />
* Then go to directory <code>.metadata/.plugins/org.eclipse.core.runtime/.settings</code><br />
* In Ubuntu, I do it by: <code>cd ~/workspace/.metadata/.plugins/org.eclipse.core.runtime/.settings</code><br />
* Delete the following two files:<br />
** <code>org.eclipse.wst.server.core.prefs</code><br />
** <code>org.eclipse.jst.server.tomcat.core.prefs</code><br/>You can do it by the following command:<br />
** <code>rm org.eclipse.wst.server.core.prefs</code><br />
** <code>rm org.eclipse.jst.server.tomcat.core.prefs</code><br />
* Start Eclipse<br />
<br />
<br />
'''2'''<br />
<br />
If the above solution did not solve the problem then you can try the following solution which contains creating some softlinks along with deleting the above mentioned files.<br />
<br />
Run the following commands in terminal:<br />
<br />
<syntaxhighlight lang="text"><br />
cd ~/workspace/.metadata/.plugins/org.eclipse.core.runtime/.settings/<br />
rm org.eclipse.jst.server.tomcat.core.prefs<br />
rm org.eclipse.wst.server.core.prefs<br />
cd /usr/share/tomcat7<br />
sudo service tomcat7 stop<br />
sudo update-rc.d tomcat7 disable<br />
sudo ln -s /var/lib/tomcat7/conf conf<br />
sudo ln -s /etc/tomcat7/policy.d/03catalina.policy conf/catalina.policy<br />
sudo ln -s /var/log/tomcat7 log<br />
sudo chmod -R 777 /usr/share/tomcat7/conf<br />
sudo ln -s /var/lib/tomcat7/common common<br />
sudo ln -s /var/lib/tomcat7/server server<br />
sudo ln -s /var/lib/tomcat7/shared shared<br />
</syntaxhighlight><br />
<br />
* Restart eclipse<br />
* In Project Explorer of Eclipse, you can see ‘Servers’. Right click and delete it.<br />
* Re-add the Server (File -> New -> Other -> Server)<br />
* Now your project on Eclipse should run fine.<br />
<br />
<br />
== Verwendung von UTF-8 in allen Seiten ==<br />
<br />
Die folgende Beschreibung ist [https://wiki.apache.org/tomcat/FAQ/CharacterEncoding#Q8 hier] entnommen.<br />
<br />
Using UTF-8 as your character encoding for everything is a safe bet. This should work for pretty much every situation.<br />
<br />
In order to completely switch to using UTF-8, you need to make the following changes:<br />
<br />
# Set <code>URIEncoding="UTF-8"</code> on your <code><Connector></code> in ''server.xml''. References: [http://tomcat.apache.org/tomcat-7.0-doc/config/http.html HTTP Connector], [http://tomcat.apache.org/tomcat-7.0-doc/config/ajp.html AJP Connector].<br />
# Use a [https://wiki.apache.org/tomcat/FAQ/CharacterEncoding#Q3 character encoding filter] with the default encoding set to UTF-8.<br />
# Change all your JSPs to include charset name in their contentType.<br/>For example, use <code><%@page contentType="text/html; charset=UTF-8" %></code> for the usual JSP pages and <code><jsp:directive.page contentType="text/html; charset=UTF-8" /></code> for the pages in XML syntax (aka JSP Documents).<br />
# Change all your servlets to set the content type for responses and to include charset name in the content type to be UTF-8.<br/>Use <code>response.setContentType("text/html; charset=UTF-8")</code> or <code>response.setCharacterEncoding("UTF-8")</code>.<br />
# Change any content-generation libraries you use (Velocity, Freemarker, etc.) to use UTF-8 and to specify UTF-8 in the content type of the responses that they generate.<br />
# Disable any valves or filters that may read request parameters before your character encoding filter or jsp page has a chance to set the encoding to UTF-8. For more information see [http://www.mail-archive.com/users@tomcat.apache.org/msg21117.html http://www.mail-archive.com/users@tomcat.apache.org/msg21117.html].<br />
<br />
<br />
== org.apache.catalina.filters.SetCharacterEncodingFilter in web.xml spezifizieren ==<br />
<br />
Das folgende Code-Fragment zeigt die Spezifikation bzw. Konfiguration des <code>org.apache.catalina.filters.SetCharacterEncodingFilter</code> zum Festlegen von UTF-8 für alle Requests.<br />
<br />
<syntaxhighlight lang="xml"><br />
<filter><br />
<filter-name>EncodingFilter</filter-name><br />
<filter-class>org.apache.catalina.filters.SetCharacterEncodingFilter</filter-class><br />
<br />
<init-param><br />
<param-name>encoding</param-name><br />
<param-value>UTF-8</param-value><br />
</init-param><br />
</filter><br />
<br />
<filter-mapping><br />
<filter-name>EncodingFilter</filter-name><br />
<url-pattern>/*</url-pattern><br />
</filter-mapping><br />
</syntaxhighlight></div>
Jochen
https://wiki.fam-hammann.de/index.php?title=Tomcat&diff=570
Tomcat
2021-01-27T07:50:15Z
<p>Jochen: /* JMX Monitoring via Java VisualVM */</p>
<hr />
<div>__TOC__<br />
<br />
<br />
== Remote Debugging ==<br />
<br />
Eine sehr gute Beschreibung zum Thema Tomcat Remote Debugging kann [https://blog.trifork.com/2014/07/14/how-to-remotely-debug-application-running-on-tomcat-from-within-intellij-idea/ hier] gefunden werden.<br />
<br />
<br />
== JMX Monitoring ==<br />
<br />
Das Monitoring und Management via JMX in Java wird [https://docs.oracle.com/en/java/javase/11/management/monitoring-and-management-using-jmx-technology.html hier] beschrieben. Die Einstellungen für den Tomcat 9 [https://tomcat.apache.org/tomcat-9.0-doc/monitoring.html hier]. Als Tools zum JMX Monitoring dienen [https://openjdk.java.net/tools/svc/jconsole/ JConsole] oder [https://visualvm.github.io/ VisualVM]. <br />
<br />
=== Lokales Monitoring ===<br />
<br />
Werden die Monitoring Tools lokal, unter demselben Benutzer ausgeführt, unter dem auch der Tomcat läuft, müssen meist keine weiteren Einstellungen vorgenommen werden.<br />
<br />
=== Remote Monitoring ===<br />
<br />
Werden die Monitoring Tools Remote oder lokal und einem anderen Benutzer ausgeführt, so müssen folgende Einstellungen am Tomcat vorgenommen werden.<br />
<br />
==== Command Line Interface (CLI) ====<br />
<br />
Wird der Tomcat via CLI gestartet, so muss folgendes Setting spezifiziert werden. Als JMX Port wurde beispielhaft Port 8090 gewählt.<br />
<br />
Unter Linux und MacOS muss folgendes in die Datei <code>bin/setenv.sh</code> aufgenommen werden. <br />
<br />
<syntaxhighlight lang="text"><br />
CATALINA_OPTS=-Dcom.sun.management.jmxremote.port=8090 -Dcom.sun.management.jmxremote.ssl=false -Dcom.sun.management.jmxremote.authenticate=false<br />
</syntaxhighlight><br />
<br />
Unter Microsoft Windows muss folgendes in die Datei <code>setenv.bat</code> aufgenommen werden.<br />
<br />
<syntaxhighlight lang="text"><br />
set CATALINA_OPTS=-Dcom.sun.management.jmxremote.port=8090 -Dcom.sun.management.jmxremote.ssl=false -Dcom.sun.management.jmxremote.authenticate=false<br />
</syntaxhighlight><br />
<br />
==== Windows Service ====<br />
<br />
Läuft der Tomcat als Windows Service, so müssen im Tomcat Config Tool folgende Zeilen im Tab "Java" zu den "Java Options" hinzugefügt werden. Als JMX Port wurde beispielhaft Port 8090 gewählt.<br />
<br />
<syntaxhighlight lang="text"><br />
-Dcom.sun.management.jmxremote.port=8090<br />
-Dcom.sun.management.jmxremote.ssl=false<br />
-Dcom.sun.management.jmxremote.authenticate=false<br />
</syntaxhighlight><br />
<br />
== Namensgebung der WAR Datei ==<br />
<br />
Bei der Namensgebung einer WAR Datei ist zu beachten, dass der Dateiname einen direkten Zusammenhang mit dem Context Name, dem Context Path und der Context Version besitzt. Hierzu kann auch die Tomcat Hilfe zum Thema Context eingesehen werden: siehe [http://tomcat.apache.org/tomcat-7.0-doc/config/context.html#Naming hier].<br />
<br />
Im folgenden ist ein Auszug dieser Hilfe.<br />
<br />
'''Naming'''<br />
<br />
When autoDeploy or deployOnStartup is used then there is a close relationship between the context name, context path, context version and the base file name used for the WAR and/or directory that contains the web application when the WAR or directory is located in the Host's appBase. When no version is specified, the rules are:<br />
<br />
* contextName = contextPath<br />
* If the contextPath is a zero length string, the base name is ROOT<br />
* If the contextPath is not a zero length string, the base name is the contextPath with the leading '/' removed and any remaining '/' characters in the path replaced with '#'.<br />
<br />
When a version is specified, ##version is added to the contextName and base name. To help clarify these rules, some examples are given in the following table.<br />
<br />
{| class="wikitable"<br />
! Context Path !! Context Version !! Context Name !! Base filename<br />
|-<br />
| /foo || None || /foo || foo<br />
|-<br />
| /foo/bar || None || /foo/bar || foo#bar<br />
|-<br />
| Empty String || None || Empty String || ROOT<br />
|-<br />
| /foo || 42 || /foo##42 || foo##42<br />
|-<br />
| /foo/bar || 42 || /foo/bar##42 || foo#bar##42<br />
|-<br />
| Empty String || 42 || ##42 || ROOT##42<br />
|}<br />
<br />
The version component is treated as a String both for performance reasons and to allow flexibility in versioning schemes. String comparisons are used to determine version order. If version is not specified, it is treated as the empty string. Therefore, foo.war will be treated as an earlier version than foo##11.war and foo##11.war will be treated as an earlier version than foo##2.war. If using a purely numerical versioning scheme it is recommended that zero padding is used so that foo##002.war is treated as an earlier version than foo##011.war.<br />
If you want to deploy a WAR file or a directory using a context path that is not related to the base file name then one of the following options must be used to prevent double-deployment:<br />
<br />
* Disable autoDeploy and deployOnStartup and define all Contexts in server.xml<br />
* Locate the WAR and/or directory outside of the Host's appBase and use a context.xml file with a docBase attribute to define it.<br />
<br />
<br />
== Automatic Deployment via Maven==<br />
<br />
Das automatische Deployment via Maven erfordert die Spezifikation eines Admin-Users im Tomcat. Im Folgenden ist die Datei tomcat-users.xml abgebildet, welche exemplarisch die notwendigen Einstellungen zeigt.<br />
<br />
<syntaxhighlight lang="xml"><br />
<?xml version="1.0" encoding="UTF-8"?><br />
<!--<br />
Licensed to the Apache Software Foundation (ASF) under one or more<br />
contributor license agreements. See the NOTICE file distributed with<br />
this work for additional information regarding copyright ownership.<br />
The ASF licenses this file to You under the Apache License, Version 2.0<br />
(the "License"); you may not use this file except in compliance with<br />
the License. You may obtain a copy of the License at<br />
http://www.apache.org/licenses/LICENSE-2.0<br />
Unless required by applicable law or agreed to in writing, software<br />
distributed under the License is distributed on an "AS IS" BASIS,<br />
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.<br />
See the License for the specific language governing permissions and<br />
limitations under the License.<br />
--><tomcat-users><br />
<!--<br />
NOTE: By default, no user is included in the "manager-gui" role required<br />
to operate the "/manager/html" web application. If you wish to use this app,<br />
you must define such a user - the username and password are arbitrary.<br />
--><br />
<!--<br />
NOTE: The sample user and role entries below are wrapped in a comment<br />
and thus are ignored when reading this file. Do not forget to remove<br />
<!.. ..> that surrounds them.<br />
--><br />
<role rolename="manager-gui"/><br />
<role rolename="manager-script"/><br />
<role rolename="admin"/><br />
<user password="21admin" roles="admin,manager-gui,manager-script" username="admin"/><br />
<br />
</tomcat-users><br />
</syntaxhighlight><br />
<br />
<br />
== PermGen - Command Line Parameter ==<br />
<br />
Der folgende JVM Command Line Parameter spezifiziert die zu verwendende maximale Größe der Java Permanent Generation:<br />
<br />
<syntaxhighlight lang="text"><br />
-XX:MaxPermSize=512m<br />
</syntaxhighlight><br />
<br />
<br />
== Proxy - Command Line Parameter ==<br />
<br />
Die folgenden JVM Command Line Parameter spezifizieren die zu verwendende HTTP Proxy:<br />
<br />
<syntaxhighlight lang="text"><br />
-Dhttp.proxyHost=<host><br />
-Dhttp.proxyPort=<port><br />
-Dhttp.proxyUser=<user name><br />
-Dhttp.proxyPassword=<password><br />
<br />
-Dhttp.nonProxyHosts=<br />
</syntaxhighlight><br />
<br />
<br />
Die folgenden JVM Command Line Parameter spezifizieren die zu verwendende HTTPS Proxy. Die ''nonProxyHosts'' werden durch die HTTP Konfiguration spezifiziert.<br />
<br />
<syntaxhighlight lang="text"><br />
-Dhttps.proxyHost=<host><br />
-Dhttps.proxyPort=<port><br />
-Dhttps.proxyUser=<user name><br />
-Dhttps.proxyPassword=<password><br />
<br />
-Dhttp.nonProxyHosts=<br />
</syntaxhighlight><br />
<br />
<br />
== Apache Tomcat 8 in Eclipse (Ubuntu) ==<br />
<br />
Die Installation des Apache Tomcat unter Ubuntu erstellt mehrere Verzeichniss unterhalb des Root.<br />
<br />
<syntaxhighlight lang="text"><br />
/usr/share/tomcat8<br />
/usr/share/tomcat8-admin<br />
/usr/share/tomcat8-docs<br />
/usr/share/tomcat8-examples<br />
/etc/tomcat8<br />
/var/lib/tomcat8<br />
</syntaxhighlight><br />
<br />
Soll nun dieser Tomcat als Server in Eclipse unter Ubuntu verwendet werden, so müssen folgende Einstellungen vorgenommen werden. Man hat zwei verschiedene Möglichkeiten:<br />
<br />
<br />
'''1'''<br />
<br />
* Close Eclipse<br />
* Go to your Eclipse workspace directory<br />
* Then go to directory <code>.metadata/.plugins/org.eclipse.core.runtime/.settings</code><br />
* In Ubuntu, I do it by: <code>cd ~/workspace/.metadata/.plugins/org.eclipse.core.runtime/.settings</code><br />
* Delete the following two files:<br />
** <code>org.eclipse.wst.server.core.prefs</code><br />
** <code>org.eclipse.jst.server.tomcat.core.prefs</code><br/>You can do it by the following command:<br />
** <code>rm org.eclipse.wst.server.core.prefs</code><br />
** <code>rm org.eclipse.jst.server.tomcat.core.prefs</code><br />
* Start Eclipse<br />
<br />
<br />
'''2'''<br />
<br />
If the above solution did not solve the problem then you can try the following solution which contains creating some softlinks along with deleting the above mentioned files.<br />
<br />
Run the following commands in terminal:<br />
<br />
<syntaxhighlight lang="text"><br />
cd ~/workspace/.metadata/.plugins/org.eclipse.core.runtime/.settings/<br />
rm org.eclipse.jst.server.tomcat.core.prefs<br />
rm org.eclipse.wst.server.core.prefs<br />
cd /usr/share/tomcat7<br />
sudo service tomcat7 stop<br />
sudo update-rc.d tomcat7 disable<br />
sudo ln -s /var/lib/tomcat7/conf conf<br />
sudo ln -s /etc/tomcat7/policy.d/03catalina.policy conf/catalina.policy<br />
sudo ln -s /var/log/tomcat7 log<br />
sudo chmod -R 777 /usr/share/tomcat7/conf<br />
sudo ln -s /var/lib/tomcat7/common common<br />
sudo ln -s /var/lib/tomcat7/server server<br />
sudo ln -s /var/lib/tomcat7/shared shared<br />
</syntaxhighlight><br />
<br />
* Restart eclipse<br />
* In Project Explorer of Eclipse, you can see ‘Servers’. Right click and delete it.<br />
* Re-add the Server (File -> New -> Other -> Server)<br />
* Now your project on Eclipse should run fine.<br />
<br />
<br />
== Verwendung von UTF-8 in allen Seiten ==<br />
<br />
Die folgende Beschreibung ist [https://wiki.apache.org/tomcat/FAQ/CharacterEncoding#Q8 hier] entnommen.<br />
<br />
Using UTF-8 as your character encoding for everything is a safe bet. This should work for pretty much every situation.<br />
<br />
In order to completely switch to using UTF-8, you need to make the following changes:<br />
<br />
# Set <code>URIEncoding="UTF-8"</code> on your <code><Connector></code> in ''server.xml''. References: [http://tomcat.apache.org/tomcat-7.0-doc/config/http.html HTTP Connector], [http://tomcat.apache.org/tomcat-7.0-doc/config/ajp.html AJP Connector].<br />
# Use a [https://wiki.apache.org/tomcat/FAQ/CharacterEncoding#Q3 character encoding filter] with the default encoding set to UTF-8.<br />
# Change all your JSPs to include charset name in their contentType.<br/>For example, use <code><%@page contentType="text/html; charset=UTF-8" %></code> for the usual JSP pages and <code><jsp:directive.page contentType="text/html; charset=UTF-8" /></code> for the pages in XML syntax (aka JSP Documents).<br />
# Change all your servlets to set the content type for responses and to include charset name in the content type to be UTF-8.<br/>Use <code>response.setContentType("text/html; charset=UTF-8")</code> or <code>response.setCharacterEncoding("UTF-8")</code>.<br />
# Change any content-generation libraries you use (Velocity, Freemarker, etc.) to use UTF-8 and to specify UTF-8 in the content type of the responses that they generate.<br />
# Disable any valves or filters that may read request parameters before your character encoding filter or jsp page has a chance to set the encoding to UTF-8. For more information see [http://www.mail-archive.com/users@tomcat.apache.org/msg21117.html http://www.mail-archive.com/users@tomcat.apache.org/msg21117.html].<br />
<br />
<br />
== org.apache.catalina.filters.SetCharacterEncodingFilter in web.xml spezifizieren ==<br />
<br />
Das folgende Code-Fragment zeigt die Spezifikation bzw. Konfiguration des <code>org.apache.catalina.filters.SetCharacterEncodingFilter</code> zum Festlegen von UTF-8 für alle Requests.<br />
<br />
<syntaxhighlight lang="xml"><br />
<filter><br />
<filter-name>EncodingFilter</filter-name><br />
<filter-class>org.apache.catalina.filters.SetCharacterEncodingFilter</filter-class><br />
<br />
<init-param><br />
<param-name>encoding</param-name><br />
<param-value>UTF-8</param-value><br />
</init-param><br />
</filter><br />
<br />
<filter-mapping><br />
<filter-name>EncodingFilter</filter-name><br />
<url-pattern>/*</url-pattern><br />
</filter-mapping><br />
</syntaxhighlight></div>
Jochen
https://wiki.fam-hammann.de/index.php?title=Standards_%26_Protocols&diff=569
Standards & Protocols
2020-12-30T15:57:25Z
<p>Jochen: </p>
<hr />
<div>__TOC__<br />
<br />
<br />
== C ==<br />
<br />
* [[Media:n869.pdf | ISO/IEC ?????: ''Programming languages - C, Committee Draft, 1999-01-18]]<br />
<br />
<br />
== C++ ==<br />
<br />
* [http://www.open-std.org/jtc1/sc22/wg21/docs/papers/2005/n1836.pdf ISO/IEC DTR 19768 Draft Technical Report on C++ Library Extensions]<br />
* [http://www.open-std.org/jtc1/sc22/wg21/docs/TR18015.pdf Technical Report on C++ Performance]<br />
<br />
<br />
== C# ==<br />
<br />
* C# Language Specification<br />
** [http://www.ecma-international.org/publications/files/ECMA-ST/Ecma-334.pdf 4th Edition, June 2006]<br />
* Common Language Infrastructure (CLI)<br />
** [http://www.ecma-international.org/publications/files/ECMA-ST/ECMA-335.pdf 6th Edition, June 2012]<br />
<br />
<br />
== C++/CLI ==<br />
<br />
* [http://www.ecma-international.org/publications/files/ECMA-ST/ECMA-372.pdf C++/CLI Language Specification, 1st Edition, December 2005]<br />
<br />
<br />
== Java ==<br />
<br />
* [https://docs.oracle.com/javase/specs/ Java Language and Virtual Machine Specifications]<br />
* The Java Language Specification<br />
** [https://docs.oracle.com/javase/specs/jls/se6/html/j3TOC.html The Java Language Specification, Java SE 5 & 6 Edition (Third Edition)]<br />
** [https://docs.oracle.com/javase/specs/jls/se7/html/index.html The Java Language Specification, Java SE 7 Edition]<br />
** [https://docs.oracle.com/javase/specs/jls/se8/html/index.html The Java Language Specification, Java SE 8 Edition]<br />
* The Java Virtual Machine Specification<br />
** [https://docs.oracle.com/javase/specs/jvms/se6/html/VMSpecTOC.doc.html The Java Virtual Machine Specification, Second Edition]<br />
** [https://docs.oracle.com/javase/specs/jvms/se7/html/index.html The Java Virtual Machine Specification, Java SE 7 Edition]<br />
** [https://docs.oracle.com/javase/specs/jvms/se8/html/index.html The Java Virtual Machine Specification, Java SE 8 Edition]<br />
* [http://www.oracle.com/technetwork/java/javase/tech/index.html Java SE Technologies]<br />
* [http://www.oracle.com/technetwork/java/javaee/tech/index-jsp-142185.html Java EE 7 Technologies]<br />
** [https://jcp.org/aboutJava/communityprocess/final/jsr342/index.html JSR 000342: Java Platform, Enterprise Edition 7 (Java EE 7) Specification]<br />
** [https://jcp.org/aboutJava/communityprocess/final/jsr356/index.html JSR-000356: Java API for WebSocket]<br />
** [https://jcp.org/aboutJava/communityprocess/final/jsr353/index.html JSR-000353: Java API for JSON Processing]<br />
** [https://jcp.org/aboutJava/communityprocess/final/jsr340/index.html JSR-000340: Java Servlet 3.1]<br />
** [https://jcp.org/aboutJava/communityprocess/final/jsr339/index.html JSR-000339: The Java API for RESTful Web Services (JAX-RS)]<br />
** [https://jcp.org/aboutJava/communityprocess/mrel/jsr224/index4.html JSR-000224: Java API for XML-Based Web Services 2.2 Rev a (JAX-WS)]<br />
** [https://jcp.org/aboutJava/communityprocess/mrel/jsr109/index2.html JSR-000109: Implementing Enterprise Web Services]<br />
** [https://jcp.org/aboutJava/communityprocess/mrel/jsr222/index2.html JSR-000222: Java Architecture for XML Binding (JAXB) 2.2]<br />
<br />
<br />
== JavaScript (ECMAScript) ==<br />
<br />
* [http://www.ecma-international.org/publications/files/ECMA-ST-ARCH/ECMA-262,%201st%20edition,%20June%201997.pdf ECMA-262: ECMAScript Language Specification, 1th Edition]<br />
* [http://www.ecma-international.org/publications/files/ECMA-ST-ARCH/ECMA-262,%202nd%20edition,%20August%201998.pdf ECMA-262: ECMAScript Language Specification, 2th Edition]<br />
* [http://www.ecma-international.org/publications/files/ECMA-ST-ARCH/ECMA-262,%203rd%20edition,%20December%201999.pdf ECMA-262: ECMAScript Language Specification, 3th Edition]<br />
* [http://www.ecma-international.org/publications/files/ECMA-ST-ARCH/ECMA-262%205th%20edition%20December%202009.pdf ECMA-262: ECMAScript Language Specification, 5th Edition]<br />
* [http://www.ecma-international.org/publications/files/ECMA-ST-ARCH/ECMA-262%205.1%20edition%20June%202011.pdf ECMA-262: ECMAScript Language Specification, 5.1 Edition] [http://www.ecma-international.org/ecma-262/5.1/index.html (HTML)]<br />
* [http://www.ecma-international.org/publications/files/ECMA-ST-ARCH/ECMA-262%206th%20edition%20June%202015.pdf ECMA-262: ECMAScript Language Specification, 6th Edition] [http://www.ecma-international.org/ecma-262/6.0/index.html (HTML)]<br />
* [http://www.ecma-international.org/publications/files/ECMA-ST/Ecma-262.pdf ECMA-262: ECMAScript Language Specification, 7th Edition, 2016] [http://www.ecma-international.org/ecma-262/7.0/index.html (HTML)]<br />
<br />
<br />
== JavaScript Object Notation (JSON) ==<br />
<br />
* RFC 6901: JavaScript Object Notation (JSON) Pointer<br />
* [http://goessner.net/articles/JsonPath/ JSONPath - XPath for JSON]<br />
<br />
<br />
== Date and Time ==<br />
<br />
* ISO 8601: ''Representation of dates and times'', Second Edition, Final Draft, 2000-12-15<br />
* RFC 3339: Date and Time on the Internet: Timestamps<br />
<br />
<br />
== Calendaring Specifications ==<br />
<br />
* RFC 3283: Guide to Internet Calendaring<br />
* RFC 5545: Internet Calendaring and Scheduling Core Object Specification (iCalendar)<br />
* RFC 5546: iCalendar Transport-Independent Interoperability Protocol<br />
* RFC 6868: Parameter Value Encoding in iCalendar and vCard<br />
* RFC 2447: iCalendar Message-Based Interoperability Protocol (iMIP)<br />
* RFC 4324: Calendar Access Protocol (CAP)<br />
* RFC 4791: Calendaring Extensions to WebDAV (CalDAV)<br />
* RFC 5689: Extended MKCOL for Web Distributed Authoring and Versioning (WebDAV)<br />
* RFC 6638: Scheduling Extensions to CalDAV<br />
* RFC 6764: Locating Services for Calendaring Extensions to WebDAV (CalDAV) and vCard Extensions to WebDAV (CardDAV)<br />
* RFC 7265: jCal: The JSON Format for iCalendar<br />
* RFC 7529: Non-Gregorian Recurrence Rules in the Internet Calendaring and Scheduling Core Object Specification (iCalendar)<br />
* RFC 7809: Calendaring Extensions to WebDAV (CalDAV): Time Zones by Reference<br />
* RFC 7953: Calendar Availability<br />
* [https://tools.ietf.org/html/draft-ietf-calsch-many-xcal-02 iCalendar DTD Document (xCal) - Draft]<br />
<br />
== Hypertext Transfer Protocol (HTTP) ==<br />
<br />
* RFC 2397: The "data" URL scheme<br />
* RFC 2817: Upgrading to TLS Within HTTP/1.1, Updates RFC 2616<br />
* RFC 2818: HTTP Over TLS<br />
* RFC 2965: HTTP State Management Mechanism, Obsoleted by RFC 6265<br />
* RFC 3986: Uniform Resource Identifier (URI): Generic Syntax<br />
* RFC 4627: The application/json Media Type for JavaScript Object Notation (JSON)<br />
* RFC 5785: Defining Well-Known Uniform Resource Identifiers (URIs), Updates RFC 2616, 2818<br />
* RFC 6265: HTTP State Management Mechanism (Cookies), Obsoletes RFC 2965<br />
* RFC 6266: Use of the Content-Disposition Header Field in the Hypertext Transfer Protocol (HTTP), Updates RFC 2616<br />
* RFC 6570: URI Template<br />
* RFC 7230: Hypertext Transfer Protocol (HTTP/1.1): Message Syntax and Routing<br />
* RFC 7231: Hypertext Transfer Protocol (HTTP/1.1): Semantics and Content<br />
* RFC 7232: Hypertext Transfer Protocol (HTTP/1.1): Conditional Requests<br />
* RFC 7233: Hypertext Transfer Protocol (HTTP/1.1): Range Requests<br />
* RFC 7234: Hypertext Transfer Protocol (HTTP/1.1): Caching<br />
* RFC 7235: Hypertext Transfer Protocol (HTTP/1.1): Authentication<br />
<br />
<br />
== Scalable Vector Graphics (SVG) ==<br />
<br />
* [https://www.w3.org/TR/SVG11/ Scalable Vector Graphics (SVG) 1.1 (Second Edition)]<br />
<br />
<br />
== UML - Object Management Group (OMG) ==<br />
<br />
* [http://www.omg.org/spec/UML/2.5/PDF OMG Unified Modeling Language Specification, Version 2.5]<br />
<br />
<br />
== Multipurpose Internet Mail Extensions (MIME) ==<br />
<br />
* RFC 2045: MIME Part One: Format of Internet Message Bodies<br />
* RFC 2046: MIME Part Two: Media Types<br />
* RFC 2047: MIME Part Three: Message Header Extensions for Non-ASCII Tex<br />
* RFC 4289: MIME Part Four: Registration Procedures<br />
* RFC 2049: MIME Part Five: Conformance Criteria and Examples<br />
* RFC 2231: MIME Parameter Value and Encoded Word Extensions: Character Sets, Languages, and Continuations<br />
<br />
<br />
== Hypertext Markup Language (HTML) ==<br />
<br />
* [https://www.w3.org/TR/html5/Overview.html HTML5 - A vocabulary and associated APIs for HTML and XHTML (28 October 2014)]<br />
<br />
<br />
== Character Encoding / Decoding ==<br />
<br />
* [https://tools.ietf.org/html/rfc3986 RFC 3986: Uniform Resource Identifier (URI): Generic Syntax (enhält URI Encoding)]<br />
* [https://www.w3.org/TR/html5/forms.html#application/x-www-form-urlencoded-encoding-algorithm HTML5: application/x-www-form-urlencoded Encoding Algorithm]<br />
<br />
<br />
== Metasprachen ==<br />
<br />
* [[Media:iso-14977.pdf | ISO/IEC 14977: ''Extended Backus Naur Form'', 1996]]<br />
<br />
<br />
== Universally Unique Identifier (UUID) ==<br />
<br />
* [https://tools.ietf.org/html/rfc4122 RFC 4122: A Universally Unique IDentifier (UUID) URN Namespace]<br />
* [[Media:T-REC-X.667-201210.pdf|ITU-T X.667 (10/2012): Information technology – Procedures for the operation of object identifier registration authorities: Generation of universally unique identifiers and their use in object dentifiers]]<br />
<br />
<br />
== Simple Mail Transfer Protocol (SMTP) ==<br />
<br />
* RFC 5321: Simple Mail Transfer Protocol<br />
* RFC 5322: Internet Message Format<br />
* RFC 4954: SMTP Service Extension for Authentication<br />
<br />
<br />
== Simple Network Management Protocol (SNMP) ==<br />
<br />
* SNMP Version 1<br />
** RFC 1157: A Simple Network Management Protocol<br />
* Secure SNMP<br />
** RFC 1351: SNMP Administrative Model<br />
** RFC 1352: SNMP Security Protocols<br />
** RFC 1353: Definitions of Managed Objects for Administration of SNMP Parties<br />
* Community-Based SNMP Version 2 (SNMPv2c), Diese Version hat sich durchgesetzt und breite Akzeptanz erfahren. Wenn heutzutage von SNMPv2 gesprochen wird, ist meistens diese Version gemeint.<br />
** RFC 1901: Introduction to Community-based SNMPv2<br />
** RFC 1905: Protocol Operations for version 2 of the Simple Network Management Protocol (SNMPv2)<br />
** RFC 1906: Transport Mappings for version 2 of the Simple Network Management Protocol (SNMPv2)<br />
* SNMP Version 3<br />
** RFC 3410: Introduction and Applicability Statements for Internet-Standard Management Framework<br />
** RFC 3411: An Architecture for Describing Simple Network Management Protocol (SNMP) Management Frameworks<br />
** RFC 3412: Message Processing and Dispatching for the Simple Network Management Protocol (SNMP)<br />
** RFC 3413: Simple Network Management Protocol (SNMP) Applications<br />
** RFC 3414: User-based Security Model (USM) for version 3 of the Simple Network Management Protocol (SNMPv3)<br />
** RFC 3415: View-based Access Control Model (VACM) for the Simple Network Management Protocol (SNMP)<br />
** RFC 3416: Version 2 of the Protocol Operations for the Simple Network Management Protocol (SNMP)<br />
** RFC 3417: Transport Mappings for the Simple Network Management Protocol (SNMP)<br />
** RFC 3418: Management Information Base (MIB) for the Simple Network Management Protocol (SNMP)<br />
<br />
<br />
== Structure of Management Information (SMI) ==<br />
<br />
* RFC 1155: Structure and Identification of Management Information for TCP/IP-based Internets (SMIv1)<br />
* RFC 1156: Management Information Base for Network Management of TCP/IP-based internets (SMIv1)<br />
* RFC 2578: Structure of Management Information Version 2 (SMIv2), beinhaltet SNMPv2-SMI<br />
* RFC 2579: Textual Conventions for SMIv2<br />
* RFC 2580: Conformance Statements for SMIv2<br />
* [http://www.iana.org/assignments/smi-numbers/smi-numbers.xhtml Structure of Management Information (SMI) Numbers (MIB Module Registrations)]<br />
<br />
<br />
== Management Information Base (MIB) ==<br />
<br />
* RFC 3418: Management Information Base (MIB) for the Simple Network Management Protocol (SNMP)<br />
<br />
<br />
== Global System for Mobile Communications (GSM) ==<br />
<br />
* Digital cellular telecommunications system (Phase 2+); Alphabets and language-specific information <br />
** [http://www.qtc.jp/3GPP/GSM/SMG_20/tdocs/P-96-607.pdf GSM 03.38, Version 5.3.0]<br />
** [http://www.etsi.org/deliver/etsi_ts/100900_100999/100900/07.02.00_60/ts_100900v070200p.pdf GSM 03.38, Version 7.2.0, Release 1998]<br />
* Digital cellular telecommunications system (Phase 2+); Universal Mobile Telecommunications System (UMTS); Alphabets and language-specific information<br />
** [http://www.etsi.org/deliver/etsi_ts/123000_123099/123038/07.00.00_60/ts_123038v070000p.pdf 3GPP TS 23.038 (ETSI TS 123 038), Version 7.0.0, 2006-03]<br />
* Digital cellular telecommunications system (Phase 2+); Universal Mobile Telecommunications System (UMTS); LTE; Alphabets and language-specific information<br />
** [http://www.etsi.org/deliver/etsi_ts/123000_123099/123038/09.01.01_60/ts_123038v090101p.pdf 3GPP TS 23.038 (ETSI TS 123 038), Version 9.1.1, 2010-02]<br />
* Digital cellular telecommunications system (Phase 2+); Technical realization of the Short Message Service (SMS) Point-to-Point (PP) <br />
** [http://www.etsi.org/deliver/etsi_gts/03/0340/05.03.00_60/gsmts_0340v050300p.pdf GSM 03.40, Version 5.3.0]<br />
** [http://www.etsi.org/deliver/etsi_ts/100900_100999/100901/07.05.00_60/ts_100901v070500p.pdf 3GPP TS 03.40 (ETSI TS 100 901), Version 7.5.0, 2001-12]<br />
* Digital cellular telecommunications system (Phase 2+), Use of Data Terminal Equipment - Data Circuit terminating, Equipment (DTE - DCE) interface for Short Message Service (SMS) and Cell Broadcast Service (CBS) <br />
** [http://www.etsi.org/deliver/etsi_gts/07/0705/05.03.00_60/gsmts_0705v050300p.pdf GSM 07.05, Version 5.3.0]<br />
* Digital cellular telecommunications system (Phase 2+); Universal Mobile Telecommunications System (UMTS); Technical realization of Cell Broadcast Service (CBS)<br />
** [http://www.etsi.org/deliver/etsi_ts/123000_123099/123041/09.09.00_60/ts_123041v090900p.pdf 3GPP TS 23.041 (ETSI TS 123 041), Version 9.9.0, 2012-07]<br />
* Digital cellular telecommunications system (Phase 2+), AT command set for GSM Mobile Equipment (ME)<br />
** [http://www.etsi.org/deliver/etsi_gts/07/0707/05.00.00_60/gsmts_0707v050000p.pdf GSM 07.07, Version 5.0.0]<br />
* Access and Terminals (AT); Short Message Service (SMS) for PSTN/ISDN; Short Message Communication between a fixed network Short Message Terminal Equipment and a Short Message Service Centre <br />
** [http://www.etsi.org/deliver/etsi_es/201900_201999/201912/01.02.01_60/es_201912v010201p.pdf ETSI ES 201 912, Version 1.2.1, 2004-08]<br />
<br />
<br />
== Telocator Alphanumeric Protocol (TAP) ==<br />
<br />
* [ PCIA, Version 1.8, February 1997]<br />
* T-Mobile<br />
** [ Version 1.0, August 2002]<br />
** [ Version 2.0, März 2008]<br />
<br />
<br />
== Universal Computer Protocol (UCP) ==<br />
<br />
* CMG Telecommunications<br />
** [ Version 3.1.2, January 1999]<br />
** [ Version 3.5, December 1999]<br />
* Vodafone <br />
** [ Version 4.0, February 2003]<br />
** [ Version 4.1, February 2003]<br />
* T-Mobile <br />
** [ Version 4.6, January 2004]<br />
<br />
<br />
== Simple Network Paging Protocol (SNPP) ==<br />
* RFC 1861: Simple Network Paging Protocol (SNPP)<br />
<br />
<br />
== Wireless Communication Transfer Protocol (WCTP) ==<br />
* [ Wireless Communication Transfer Protocol]</div>
Jochen
https://wiki.fam-hammann.de/index.php?title=Datei:T-REC-X.667-201210.pdf&diff=568
Datei:T-REC-X.667-201210.pdf
2020-12-30T15:53:01Z
<p>Jochen: </p>
<hr />
<div></div>
Jochen
https://wiki.fam-hammann.de/index.php?title=Web_Development&diff=567
Web Development
2020-12-04T09:02:42Z
<p>Jochen: /* CORS in IIS aktivieren */</p>
<hr />
<div>__TOC__<br />
<br />
<br />
= Cross-Origin Resource Sharing (CORS) =<br />
<br />
== CORS in Tomcat aktivieren ==<br />
<br />
Für den Tomcat wird CORS in der jeweiligen <code>web.xml</code> Datei mit Hilfe eines Filters aktiviert.<br />
<br />
<syntaxhighlight lang='xml'><br />
<filter><br />
<filter-name>CorsFilter</filter-name><br />
<filter-class>org.apache.catalina.filters.CorsFilter</filter-class><br />
<async-supported>true</async-supported><br />
<init-param><br />
<param-name>cors.allowed.origins</param-name><br />
<param-value>*</param-value><br />
</init-param><br />
<init-param><br />
<param-name>cors.allowed.methods</param-name><br />
<param-value>GET,POST,HEAD,OPTIONS,PUT,PATCH</param-value><br />
</init-param><br />
<init-param><br />
<param-name>cors.allowed.headers</param-name><br />
<param-value>Origin, Accept, X-Requested-With, X-Requested-By, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers, authorization, x-customer<br />
</param-value><br />
</init-param><br />
</filter><br />
<filter-mapping><br />
<filter-name>CorsFilter</filter-name><br />
<url-pattern>/*</url-pattern><br />
</filter-mapping><br />
<br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
== CORS in IIS aktivieren ==<br />
<br />
Die folgenden Schritte wurden [https://stackoverflow.com/a/20126603 hier] entnommen und zeigen die Aktivierung von Cross Origin Resource Sharing (CORS) in den Microsoft Internet Informations Services.<br />
<br />
# First, configure the ''OPTIONSVerbHandler'' to execute before .Net handlers.<br/>In IIS console, select "Handler Mappings". (Do this either on server level or site level. On site level it will redefine all the handlers for your site and ignore any change done on server level after that. And of course on server level, this could break other sites if they need their own handling of options verb.)<br/>In Action pane, select "View ordered list...". Seek ''OPTIONSVerbHandler'', and move it up (lots of clicks...).<br/>You can also do this in web.config by redefining all handlers under <system.webServer><handlers>. (<clear> then <add ...> them back, this is what does the IIS console for you. By the way, there is no need to ask for "read" permission on this handler.)<br />
# Second, configure custom http headers for your cors needs, such as<br />
<syntaxhighlight lang='xml'><br />
<system.webServer><br />
<httpProtocol><br />
<customHeaders><br />
<add name="Access-Control-Allow-Origin" value="*"/><br />
<add name="Access-Control-Allow-Headers" value="Content-Type, Authorization, x-customer"/><br />
<add name="Access-Control-Allow-Methods" value="GET, POST, PUT, PATCH, DELETE, OPTIONS"/><br />
</customHeaders><br />
</httpProtocol><br />
</system.webServer><br />
</syntaxhighlight><br />
<br />
<br />
Eine sehr einfache <code>web.config</code> kann hier eingesehen werden.<br />
<br />
<syntaxhighlight lang='xml'><br />
<?xml version="1.0" encoding="UTF-8"?><br />
<configuration><br />
<system.webServer><br />
<httpProtocol><br />
<customHeaders><br />
<add name="Access-Control-Allow-Origin" value="*"/><br />
<add name="Access-Control-Allow-Headers" value="Content-Type, Authorization, x-customer"/><br />
<add name="Access-Control-Allow-Methods" value="GET, POST, PUT, PATCH, DELETE, OPTIONS"/><br />
</customHeaders><br />
</httpProtocol><br />
<handlers><br />
<clear /><br />
<add name="OPTIONSVerbHandler" path="*" verb="OPTIONS" type="" modules="ProtocolSupportModule" scriptProcessor="" resourceType="Unspecified" requireAccess="None" allowPathInfo="false" preCondition="" responseBufferLimit="4194304" /><br />
<add name="xamlx-ISAPI-4.0_64bit" path="*.xamlx" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="4194304" /><br />
<add name="xamlx-ISAPI-4.0_32bit" path="*.xamlx" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="4194304" /><br />
<add name="xamlx-Integrated-4.0" path="*.xamlx" verb="GET,HEAD,POST,DEBUG" type="System.Xaml.Hosting.XamlHttpHandlerFactory, System.Xaml.Hosting, Version=4.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="rules-ISAPI-4.0_64bit" path="*.rules" verb="*" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="4194304" /><br />
<add name="rules-ISAPI-4.0_32bit" path="*.rules" verb="*" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="4194304" /><br />
<add name="rules-Integrated-4.0" path="*.rules" verb="*" type="System.ServiceModel.Activation.ServiceHttpHandlerFactory, System.ServiceModel.Activation, Version=4.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="xoml-ISAPI-4.0_64bit" path="*.xoml" verb="*" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="4194304" /><br />
<add name="xoml-ISAPI-4.0_32bit" path="*.xoml" verb="*" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="4194304" /><br />
<add name="xoml-Integrated-4.0" path="*.xoml" verb="*" type="System.ServiceModel.Activation.ServiceHttpHandlerFactory, System.ServiceModel.Activation, Version=4.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="svc-ISAPI-4.0_64bit" path="*.svc" verb="*" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="4194304" /><br />
<add name="svc-ISAPI-4.0_32bit" path="*.svc" verb="*" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="4194304" /><br />
<add name="svc-Integrated-4.0" path="*.svc" verb="*" type="System.ServiceModel.Activation.ServiceHttpHandlerFactory, System.ServiceModel.Activation, Version=4.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="rules-64-ISAPI-2.0" path="*.rules" verb="*" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness64" responseBufferLimit="4194304" /><br />
<add name="rules-ISAPI-2.0" path="*.rules" verb="*" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness32" responseBufferLimit="4194304" /><br />
<add name="rules-Integrated" path="*.rules" verb="*" type="System.ServiceModel.Activation.HttpHandler, System.ServiceModel, Version=3.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv2.0" responseBufferLimit="4194304" /><br />
<add name="xoml-64-ISAPI-2.0" path="*.xoml" verb="*" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness64" responseBufferLimit="4194304" /><br />
<add name="xoml-ISAPI-2.0" path="*.xoml" verb="*" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness32" responseBufferLimit="4194304" /><br />
<add name="xoml-Integrated" path="*.xoml" verb="*" type="System.ServiceModel.Activation.HttpHandler, System.ServiceModel, Version=3.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv2.0" responseBufferLimit="4194304" /><br />
<add name="svc-ISAPI-2.0-64" path="*.svc" verb="*" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness64" responseBufferLimit="4194304" /><br />
<add name="svc-ISAPI-2.0" path="*.svc" verb="*" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness32" responseBufferLimit="4194304" /><br />
<add name="svc-Integrated" path="*.svc" verb="*" type="System.ServiceModel.Activation.HttpHandler, System.ServiceModel, Version=3.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv2.0" responseBufferLimit="4194304" /><br />
<add name="ASPClassic" path="*.asp" verb="GET,HEAD,POST" type="" modules="IsapiModule" scriptProcessor="%windir%\system32\inetsrv\asp.dll" resourceType="File" requireAccess="Script" allowPathInfo="false" preCondition="" responseBufferLimit="4194304" /><br />
<add name="SecurityCertificate" path="*.cer" verb="GET,HEAD,POST" type="" modules="IsapiModule" scriptProcessor="%windir%\system32\inetsrv\asp.dll" resourceType="File" requireAccess="Script" allowPathInfo="false" preCondition="" responseBufferLimit="4194304" /><br />
<add name="ISAPI-dll" path="*.dll" verb="*" type="" modules="IsapiModule" scriptProcessor="" resourceType="File" requireAccess="Execute" allowPathInfo="true" preCondition="" responseBufferLimit="4194304" /><br />
<add name="AXD-ISAPI-4.0_64bit" path="*.axd" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="0" /><br />
<add name="PageHandlerFactory-ISAPI-4.0_64bit" path="*.aspx" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="0" /><br />
<add name="SimpleHandlerFactory-ISAPI-4.0_64bit" path="*.ashx" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="0" /><br />
<add name="WebServiceHandlerFactory-ISAPI-4.0_64bit" path="*.asmx" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="0" /><br />
<add name="HttpRemotingHandlerFactory-rem-ISAPI-4.0_64bit" path="*.rem" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="0" /><br />
<add name="HttpRemotingHandlerFactory-soap-ISAPI-4.0_64bit" path="*.soap" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="0" /><br />
<add name="aspq-ISAPI-4.0_64bit" path="*.aspq" verb="*" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="0" /><br />
<add name="cshtm-ISAPI-4.0_64bit" path="*.cshtm" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="0" /><br />
<add name="cshtml-ISAPI-4.0_64bit" path="*.cshtml" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="0" /><br />
<add name="vbhtm-ISAPI-4.0_64bit" path="*.vbhtm" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="0" /><br />
<add name="vbhtml-ISAPI-4.0_64bit" path="*.vbhtml" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="0" /><br />
<add name="TraceHandler-Integrated-4.0" path="trace.axd" verb="GET,HEAD,POST,DEBUG" type="System.Web.Handlers.TraceHandler" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="WebAdminHandler-Integrated-4.0" path="WebAdmin.axd" verb="GET,DEBUG" type="System.Web.Handlers.WebAdminHandler" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="AssemblyResourceLoader-Integrated-4.0" path="WebResource.axd" verb="GET,DEBUG" type="System.Web.Handlers.AssemblyResourceLoader" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="PageHandlerFactory-Integrated-4.0" path="*.aspx" verb="GET,HEAD,POST,DEBUG" type="System.Web.UI.PageHandlerFactory" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="SimpleHandlerFactory-Integrated-4.0" path="*.ashx" verb="GET,HEAD,POST,DEBUG" type="System.Web.UI.SimpleHandlerFactory" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="WebServiceHandlerFactory-Integrated-4.0" path="*.asmx" verb="GET,HEAD,POST,DEBUG" type="System.Web.Script.Services.ScriptHandlerFactory, System.Web.Extensions, Version=4.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="HttpRemotingHandlerFactory-rem-Integrated-4.0" path="*.rem" verb="GET,HEAD,POST,DEBUG" type="System.Runtime.Remoting.Channels.Http.HttpRemotingHandlerFactory, System.Runtime.Remoting, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="HttpRemotingHandlerFactory-soap-Integrated-4.0" path="*.soap" verb="GET,HEAD,POST,DEBUG" type="System.Runtime.Remoting.Channels.Http.HttpRemotingHandlerFactory, System.Runtime.Remoting, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="aspq-Integrated-4.0" path="*.aspq" verb="GET,HEAD,POST,DEBUG" type="System.Web.HttpForbiddenHandler" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="cshtm-Integrated-4.0" path="*.cshtm" verb="GET,HEAD,POST,DEBUG" type="System.Web.HttpForbiddenHandler" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="cshtml-Integrated-4.0" path="*.cshtml" verb="GET,HEAD,POST,DEBUG" type="System.Web.HttpForbiddenHandler" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="vbhtm-Integrated-4.0" path="*.vbhtm" verb="GET,HEAD,POST,DEBUG" type="System.Web.HttpForbiddenHandler" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="vbhtml-Integrated-4.0" path="*.vbhtml" verb="GET,HEAD,POST,DEBUG" type="System.Web.HttpForbiddenHandler" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="ScriptHandlerFactoryAppServices-Integrated-4.0" path="*_AppService.axd" verb="*" type="System.Web.Script.Services.ScriptHandlerFactory, System.Web.Extensions, Version=4.0.0.0, Culture=neutral, PublicKeyToken=31BF3856AD364E35" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="ScriptResourceIntegrated-4.0" path="*ScriptResource.axd" verb="GET,HEAD" type="System.Web.Handlers.ScriptResourceHandler, System.Web.Extensions, Version=4.0.0.0, Culture=neutral, PublicKeyToken=31BF3856AD364E35" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="AXD-ISAPI-4.0_32bit" path="*.axd" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="0" /><br />
<add name="PageHandlerFactory-ISAPI-4.0_32bit" path="*.aspx" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="0" /><br />
<add name="SimpleHandlerFactory-ISAPI-4.0_32bit" path="*.ashx" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="0" /><br />
<add name="WebServiceHandlerFactory-ISAPI-4.0_32bit" path="*.asmx" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="0" /><br />
<add name="HttpRemotingHandlerFactory-rem-ISAPI-4.0_32bit" path="*.rem" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="0" /><br />
<add name="HttpRemotingHandlerFactory-soap-ISAPI-4.0_32bit" path="*.soap" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="0" /><br />
<add name="aspq-ISAPI-4.0_32bit" path="*.aspq" verb="*" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="0" /><br />
<add name="cshtm-ISAPI-4.0_32bit" path="*.cshtm" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="0" /><br />
<add name="cshtml-ISAPI-4.0_32bit" path="*.cshtml" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="0" /><br />
<add name="vbhtm-ISAPI-4.0_32bit" path="*.vbhtm" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="0" /><br />
<add name="vbhtml-ISAPI-4.0_32bit" path="*.vbhtml" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="0" /><br />
<add name="TraceHandler-Integrated" path="trace.axd" verb="GET,HEAD,POST,DEBUG" type="System.Web.Handlers.TraceHandler" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv2.0" responseBufferLimit="4194304" /><br />
<add name="WebAdminHandler-Integrated" path="WebAdmin.axd" verb="GET,DEBUG" type="System.Web.Handlers.WebAdminHandler" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv2.0" responseBufferLimit="4194304" /><br />
<add name="AssemblyResourceLoader-Integrated" path="WebResource.axd" verb="GET,DEBUG" type="System.Web.Handlers.AssemblyResourceLoader" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv2.0" responseBufferLimit="4194304" /><br />
<add name="PageHandlerFactory-Integrated" path="*.aspx" verb="GET,HEAD,POST,DEBUG" type="System.Web.UI.PageHandlerFactory" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv2.0" responseBufferLimit="4194304" /><br />
<add name="SimpleHandlerFactory-Integrated" path="*.ashx" verb="GET,HEAD,POST,DEBUG" type="System.Web.UI.SimpleHandlerFactory" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv2.0" responseBufferLimit="4194304" /><br />
<add name="WebServiceHandlerFactory-Integrated" path="*.asmx" verb="GET,HEAD,POST,DEBUG" type="System.Web.Services.Protocols.WebServiceHandlerFactory, System.Web.Services, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv2.0" responseBufferLimit="4194304" /><br />
<add name="HttpRemotingHandlerFactory-rem-Integrated" path="*.rem" verb="GET,HEAD,POST,DEBUG" type="System.Runtime.Remoting.Channels.Http.HttpRemotingHandlerFactory, System.Runtime.Remoting, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv2.0" responseBufferLimit="4194304" /><br />
<add name="HttpRemotingHandlerFactory-soap-Integrated" path="*.soap" verb="GET,HEAD,POST,DEBUG" type="System.Runtime.Remoting.Channels.Http.HttpRemotingHandlerFactory, System.Runtime.Remoting, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv2.0" responseBufferLimit="4194304" /><br />
<add name="AXD-ISAPI-2.0" path="*.axd" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness32" responseBufferLimit="0" /><br />
<add name="PageHandlerFactory-ISAPI-2.0" path="*.aspx" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness32" responseBufferLimit="0" /><br />
<add name="SimpleHandlerFactory-ISAPI-2.0" path="*.ashx" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness32" responseBufferLimit="0" /><br />
<add name="WebServiceHandlerFactory-ISAPI-2.0" path="*.asmx" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness32" responseBufferLimit="0" /><br />
<add name="HttpRemotingHandlerFactory-rem-ISAPI-2.0" path="*.rem" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness32" responseBufferLimit="0" /><br />
<add name="HttpRemotingHandlerFactory-soap-ISAPI-2.0" path="*.soap" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness32" responseBufferLimit="0" /><br />
<add name="AXD-ISAPI-2.0-64" path="*.axd" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness64" responseBufferLimit="0" /><br />
<add name="PageHandlerFactory-ISAPI-2.0-64" path="*.aspx" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness64" responseBufferLimit="0" /><br />
<add name="SimpleHandlerFactory-ISAPI-2.0-64" path="*.ashx" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness64" responseBufferLimit="0" /><br />
<add name="WebServiceHandlerFactory-ISAPI-2.0-64" path="*.asmx" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness64" responseBufferLimit="0" /><br />
<add name="HttpRemotingHandlerFactory-rem-ISAPI-2.0-64" path="*.rem" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness64" responseBufferLimit="0" /><br />
<add name="HttpRemotingHandlerFactory-soap-ISAPI-2.0-64" path="*.soap" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness64" responseBufferLimit="0" /><br />
<add name="TRACEVerbHandler" path="*" verb="TRACE" type="" modules="ProtocolSupportModule" scriptProcessor="" resourceType="Unspecified" requireAccess="None" allowPathInfo="false" preCondition="" responseBufferLimit="4194304" /><br />
<add name="ExtensionlessUrlHandler-ISAPI-4.0_32bit" path="*." verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="0" /><br />
<add name="ExtensionlessUrlHandler-ISAPI-4.0_64bit" path="*." verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="0" /><br />
<add name="ExtensionlessUrlHandler-Integrated-4.0" path="*." verb="GET,HEAD,POST,DEBUG" type="System.Web.Handlers.TransferRequestHandler" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="0" /><br />
<add name="StaticFile" path="*" verb="*" type="" modules="StaticFileModule,DefaultDocumentModule,DirectoryListingModule" scriptProcessor="" resourceType="Either" requireAccess="Read" allowPathInfo="false" preCondition="" responseBufferLimit="4194304" /><br />
</handlers><br />
</system.webServer><br />
</configuration><br />
</syntaxhighlight><br />
<br />
<br />
Sollte der Header <code>Access-Control-Allow-Origin</code> in der Response nicht enthalten sein, sollte folgende Outbound Rule eingebunden werden.<br />
<br />
<syntaxhighlight lang='xml'><br />
<?xml version="1.0" encoding="UTF-8"?><br />
<configuration><br />
<system.webServer><br />
<br />
<rewrite><br />
<outboundRules><br />
<clear /> <br />
<rule name="AddCrossDomainHeader"><br />
<match serverVariable="RESPONSE_Access_Control_Allow_Origin" pattern=".*" /><br />
<conditions logicalGrouping="MatchAll" trackAllCaptures="true"><br />
<add input="{HTTP_ORIGIN}" pattern="http(s)?://127.0.0.1:\d+|http(s)?://localhost:\d+" /><br />
</conditions><br />
<action type="Rewrite" value="{C:0}" /><br />
</rule> <br />
</outboundRules><br />
</rewrite><br />
<br />
</system.webServer><br />
</configuration><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
= Custom (OS) Protocol Handler =<br />
<br />
Custom Protocol Handler im Allgemeinen ermöglichen die Verwendung eigener Protokolle in Web Browser - z.B. stweb://my.web. Diese Custom Protocol Handler gibt es in zwei Ausprägungen: web-basiert und Betriebssystem-spezifisch.<br />
<br />
<br/><br />
<br />
== Custom Web Protocol Handler ==<br />
<br />
Diese werden mit Hilfe der JavaScript Funktion <code>navigator.registerProtocolHandler()</code> registriert.<br />
<br />
Beispiel:<br />
<br />
<syntaxhighlight lang="javascript"><br />
navigator.registerProtocolHandler("burger",<br />
"http://www.google.co.uk/?uri=%s",<br />
"Burger handler");<br />
<br />
<a href="burger:cheeseburger">link</a><br />
</syntaxhighlight><br />
<br />
Links:<br />
* [https://developer.mozilla.org/de/docs/Web-based_protocol_handlers MDN, ''Web-based protocol handlers'']<br />
<br />
<br/><br />
<br />
== Custom OS Protocol Handler ==<br />
<br />
=== Custom Windows Protocol Handler ===<br />
<br />
Diese werden in der Windows Registry registriert.<br />
<br />
Beispiel (stweb) - .reg File:<br />
<br />
<syntaxhighlight lang="text"><br />
Windows Registry Editor Version 5.00<br />
[HKEY_CLASSES_ROOT\stweb]<br />
"URL Protocol"=""<br />
[HKEY_CLASSES_ROOT\stweb\Shell]<br />
[HKEY_CLASSES_ROOT\stweb\Shell\Open]<br />
[HKEY_CLASSES_ROOT\stweb\Shell\Open\Command]<br />
@="\"C:\\Temp\\customProtocolHandler.exe\" \"%1\""<br />
</syntaxhighlight><br />
<br />
<br />
'''Achtung:''' URLs, welche ein Custom Protocol enthalten (z.B. stweb:foo.bar) können in Google Chrome nicht im URL Eingabefeld verwendet werden, da diese dort nicht verarbeitet werden. Ist eine URL mit Custom Protocol Handler jedoch innerhalb einer HTML Seite als href Attribut eines Anchors (<a> Tag) enthalten, wird der Custom Windows Protocol Handler verarbeitet und die externe Applikation nach einer Sicherheitsabfrage gestartet bzw. geöffnet.<br />
<br />
Links:<br />
* [https://msdn.microsoft.com/de-de/en_us/library/aa767914(VS.85).aspx MSDN, “Registering an Application to a URI Scheme”]<br />
* [https://blogs.msdn.com/b/noahc/archive/2006/10/19/register-a-custom-url-protocol-handler.aspx Noah Coad, “Register a Custom URL Protocol Handler”]<br />
* [https://support.shotgunsoftware.com/entries/86754-How-to-launch-external-applications-using-custom-protocols-rock-instead-of-http- Don Parker, “How to launch external applications using custom protocols (rock:// instead of http://)]”<br />
<br />
<br/><br />
<br />
=== Custom Linux Protocol Handler ===<br />
<br />
Links:<br />
* [https://support.shotgunsoftware.com/entries/86754-How-to-launch-external-applications-using-custom-protocols-rock-instead-of-http- Don Parker, “How to launch external applications using custom protocols (rock:// instead of http://)”]<br />
<br />
<br/><br />
<br />
= Session Management =<br />
<br />
== Access / Refresh Token ==<br />
<br />
An dieser Stelle sollen Eigenschaften von Refresh Token festgehalten werden, die in einer Recherche von JHA am 19.09.2019 eruiert wurden. Die folgende Liste beschreibt interessante Links zum Thema ''Refresh Token''.<br />
<br />
* [https://auth0.com/learn/refresh-tokens/ Understanding Refresh Tokens (Auth0)]<br />
* [https://auth0.com/docs/tokens/refresh-token/current Refresh Tokens (Auth0)]<br />
* [https://auth0.com/blog/refresh-tokens-what-are-they-and-when-to-use-them/ Refresh Tokens: When to Use Them and How They Interact with JWTs (Auth0)]<br />
* [https://auth0.com/docs/api-auth/tutorials/silent-authentication Silent Authentication (Auth0)]<br />
* [https://auth0.com/blog/5-steps-to-add-modern-authentication-to-legacy-apps-using-jwts/ 5 Steps to Add Modern Authentication to Legacy Apps Using JWTs (Auth0)]<br />
* [https://auth0.com/docs/security/store-tokens Where to Store Tokens (Auth0)]<br />
<br />
<br/><br />
<br />
== Speicherort von Refresh Token ==<br />
<br />
Entsprechend der [https://auth0.com/ Auth0] Spezifikation von [https://auth0.com/docs/tokens/refresh-token/current Refresh Tokens] dürfen Refresh Token nicht in einem Browser gespeichert werden.<br />
<br />
<blockquote><br />
''A Single-Page Application (normally implementing Implicit Flow) should not ever receive a Refresh Token. A Refresh Token is essentially a user credential that allows a user to remain authenticated indefinitely. '''This sensitive information should be stored securely and not exposed client-side in a browser'''.''<br />
<br />
''If you are implementing an SPA using Implicit Flow and you need to renew a token, the only secure option for doing so is to use [https://auth0.com/docs/api-auth/tutorials/silent-authentication Silent Authentication].''<br />
</blockquote><br />
<br />
<br/><br />
<br />
== Silent Authentication für Single Page Applications (SPA) ==<br />
<br />
Wie bereits im vorhergehenden Kapitel erwähnt, bietet sich für eine Single Page Application (SPA) eine [https://auth0.com/docs/api-auth/tutorials/silent-authentication Silent Authentication] an.<br />
<br />
Hier wird aus einer noch nicht abgelaufenen Session ein neues Session/Access Token (z.B. JWT) erzeugt. Beispielsweise mit Hilfe eines Parameter ''expires_in'' (Minuten, Stunden, Tage, etc.). Dieser wird dem Web Client nach eines erfolgreichen Logins mitgeteilt. Der Web Client konfiguriert einen Timer vor diesen Wert. Nach Ablauf des Timers ist die Session also noch kurze Zeit gültig. Mit dieser gültigen Session führt der Web Client nun eine ''Silent Authentication'' durch und erhält eine neues Session/Access Token (z.B. JWT).<br />
<br />
Ein Problem hierbei ist die Erneuerung der Session mit dem aktuellen Session/Access Token. Ein Angreifer könnte dies nutzen, das Session/Access Token immer wieder zu erneuern. Um diesem Problem entgegen zu wirken, muss die Web Application die Möglichkeit bieten, Sessions via Web GUI einzusehen und zu beenden.<br />
<br />
<br/><br />
<br />
== Sliding Sessions ==<br />
<br />
Ein weiterer Ansatz, eine Session gültig zu halten sind Sliding Sessions (beschrieben in diesem [https://auth0.com/blog/refresh-tokens-what-are-they-and-when-to-use-them/ Artikel]). Hierbei wird bei jedem Request am Web Service ein neues Session/Access Token (z.B. JWT) erstellt. Dieses ersetzt jeweils das aktuelle Session/Access Token. Hier ist dann allerdings dasselbe Problem zu erwarten, das auch die ''Silent Authentication'' besitzt: Ein Angreifer könnte die Session beliebig lange offen halten.<br />
<br />
<br/><br />
<br />
== JWT Tokens ==<br />
<br />
* [https://auth0.com/learn/token-based-authentication-made-easy/ Token Based Authentication Made Easy (Auth0)]<br />
<br />
<br/><br />
<br />
== JWT Tokens in Self-Contained Systems und Microservices Architekturen ==<br />
<br />
Die folgenden Artikel beschäftigen sich mit der Verwendung von JWT Tokens in verteilten Service Architekturen.<br />
<br />
=== Blog Beiträge ===<br />
<br />
* [https://stormpath.com/blog/microservices-jwt-spring-boot Tutorial: Establish Trust Between Microservices with JWT and Spring Boot]<br />
* [https://medium.com/tech-tajawal/microservice-authentication-and-authorization-solutions-e0e5e74b248a Microservices Authentication and Authorization Solutions]<br />
* [http://alexander.holbreich.org/jwt/ JSON Web Tokens are made for Microservices]<br />
* [http://proficientblog.com/microservices-security/ Microservices Security – OAuth2 and OpenID Connect]<br />
<br />
<br/><br />
<br />
=== Stack Overflow ===<br />
<br />
* [https://stackoverflow.com/a/56149939 Use JWT to authenticate separate API Microservice]<br />
* [https://stackoverflow.com/a/26834685 JWT (JSON Web Token) automatic prolongation of expiration]<br />
<br />
<br/><br />
<br />
= Cookies =<br />
<br />
== SameSite Cookies ==<br />
<br />
Die folgenden Artikel beschreiben SameSite Cookies, sowie die Bestimmung einer Same Site.<br />
<br />
* [https://web.dev/samesite-cookies-explained/ SameSite cookies explained]<br />
* [https://tools.ietf.org/html/draft-ietf-httpbis-rfc6265bis RFC 6265bis: Cookies: HTTP State Management Mechanism (draft)]<br />
* [https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Set-Cookie/SameSite MDN: SameSite cookies]<br />
* [https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Set-Cookie MDN: Set-Cookie]<br />
* [https://developer.mozilla.org/en-US/docs/Glossary/Site MDN: Site]<br />
* [https://html.spec.whatwg.org/multipage/origin.html#sites HTML - Living Standard: Sites]<br />
* [https://url.spec.whatwg.org/#host-miscellaneous URL - Living Standard: Host miscellaneous (public suffix, registrable domain)]<br />
* [https://publicsuffix.org/list/ Public Suffix List]<br />
<br />
<br/></div>
Jochen
https://wiki.fam-hammann.de/index.php?title=Web_Development&diff=566
Web Development
2020-12-04T09:00:55Z
<p>Jochen: /* CORS in IIS aktivieren */</p>
<hr />
<div>__TOC__<br />
<br />
<br />
= Cross-Origin Resource Sharing (CORS) =<br />
<br />
== CORS in Tomcat aktivieren ==<br />
<br />
Für den Tomcat wird CORS in der jeweiligen <code>web.xml</code> Datei mit Hilfe eines Filters aktiviert.<br />
<br />
<syntaxhighlight lang='xml'><br />
<filter><br />
<filter-name>CorsFilter</filter-name><br />
<filter-class>org.apache.catalina.filters.CorsFilter</filter-class><br />
<async-supported>true</async-supported><br />
<init-param><br />
<param-name>cors.allowed.origins</param-name><br />
<param-value>*</param-value><br />
</init-param><br />
<init-param><br />
<param-name>cors.allowed.methods</param-name><br />
<param-value>GET,POST,HEAD,OPTIONS,PUT,PATCH</param-value><br />
</init-param><br />
<init-param><br />
<param-name>cors.allowed.headers</param-name><br />
<param-value>Origin, Accept, X-Requested-With, X-Requested-By, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers, authorization, x-customer<br />
</param-value><br />
</init-param><br />
</filter><br />
<filter-mapping><br />
<filter-name>CorsFilter</filter-name><br />
<url-pattern>/*</url-pattern><br />
</filter-mapping><br />
<br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
== CORS in IIS aktivieren ==<br />
<br />
Die folgenden Schritte wurden [https://stackoverflow.com/a/20126603 hier] entnommen und zeigen die Aktivierung von Cross Origin Resource Sharing (CORS) in den Microsoft Internet Informations Services.<br />
<br />
# First, configure the ''OPTIONSVerbHandler'' to execute before .Net handlers.<br/>In IIS console, select "Handler Mappings". (Do this either on server level or site level. On site level it will redefine all the handlers for your site and ignore any change done on server level after that. And of course on server level, this could break other sites if they need their own handling of options verb.)<br/>In Action pane, select "View ordered list...". Seek ''OPTIONSVerbHandler'', and move it up (lots of clicks...).<br/>You can also do this in web.config by redefining all handlers under <system.webServer><handlers>. (<clear> then <add ...> them back, this is what does the IIS console for you. By the way, there is no need to ask for "read" permission on this handler.)<br />
# Second, configure custom http headers for your cors needs, such as<br />
<syntaxhighlight lang='xml'><br />
<system.webServer><br />
<httpProtocol><br />
<customHeaders><br />
<add name="Access-Control-Allow-Origin" value="*"/><br />
<add name="Access-Control-Allow-Headers" value="Content-Type, Authorization, x-customer"/><br />
<add name="Access-Control-Allow-Methods" value="GET, POST, PUT, PATCH, DELETE, OPTIONS"/><br />
</customHeaders><br />
</httpProtocol><br />
</system.webServer><br />
</syntaxhighlight><br />
<br />
<br />
Eine sehr einfache web.config kann hier eingesehen werden.<br />
<br />
<syntaxhighlight lang='xml'><br />
<?xml version="1.0" encoding="UTF-8"?><br />
<configuration><br />
<system.webServer><br />
<httpProtocol><br />
<customHeaders><br />
<add name="Access-Control-Allow-Origin" value="*"/><br />
<add name="Access-Control-Allow-Headers" value="Content-Type, Authorization, x-customer"/><br />
<add name="Access-Control-Allow-Methods" value="GET, POST, PUT, PATCH, DELETE, OPTIONS"/><br />
</customHeaders><br />
</httpProtocol><br />
<handlers><br />
<clear /><br />
<add name="OPTIONSVerbHandler" path="*" verb="OPTIONS" type="" modules="ProtocolSupportModule" scriptProcessor="" resourceType="Unspecified" requireAccess="None" allowPathInfo="false" preCondition="" responseBufferLimit="4194304" /><br />
<add name="xamlx-ISAPI-4.0_64bit" path="*.xamlx" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="4194304" /><br />
<add name="xamlx-ISAPI-4.0_32bit" path="*.xamlx" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="4194304" /><br />
<add name="xamlx-Integrated-4.0" path="*.xamlx" verb="GET,HEAD,POST,DEBUG" type="System.Xaml.Hosting.XamlHttpHandlerFactory, System.Xaml.Hosting, Version=4.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="rules-ISAPI-4.0_64bit" path="*.rules" verb="*" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="4194304" /><br />
<add name="rules-ISAPI-4.0_32bit" path="*.rules" verb="*" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="4194304" /><br />
<add name="rules-Integrated-4.0" path="*.rules" verb="*" type="System.ServiceModel.Activation.ServiceHttpHandlerFactory, System.ServiceModel.Activation, Version=4.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="xoml-ISAPI-4.0_64bit" path="*.xoml" verb="*" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="4194304" /><br />
<add name="xoml-ISAPI-4.0_32bit" path="*.xoml" verb="*" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="4194304" /><br />
<add name="xoml-Integrated-4.0" path="*.xoml" verb="*" type="System.ServiceModel.Activation.ServiceHttpHandlerFactory, System.ServiceModel.Activation, Version=4.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="svc-ISAPI-4.0_64bit" path="*.svc" verb="*" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="4194304" /><br />
<add name="svc-ISAPI-4.0_32bit" path="*.svc" verb="*" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="4194304" /><br />
<add name="svc-Integrated-4.0" path="*.svc" verb="*" type="System.ServiceModel.Activation.ServiceHttpHandlerFactory, System.ServiceModel.Activation, Version=4.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="rules-64-ISAPI-2.0" path="*.rules" verb="*" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness64" responseBufferLimit="4194304" /><br />
<add name="rules-ISAPI-2.0" path="*.rules" verb="*" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness32" responseBufferLimit="4194304" /><br />
<add name="rules-Integrated" path="*.rules" verb="*" type="System.ServiceModel.Activation.HttpHandler, System.ServiceModel, Version=3.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv2.0" responseBufferLimit="4194304" /><br />
<add name="xoml-64-ISAPI-2.0" path="*.xoml" verb="*" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness64" responseBufferLimit="4194304" /><br />
<add name="xoml-ISAPI-2.0" path="*.xoml" verb="*" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness32" responseBufferLimit="4194304" /><br />
<add name="xoml-Integrated" path="*.xoml" verb="*" type="System.ServiceModel.Activation.HttpHandler, System.ServiceModel, Version=3.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv2.0" responseBufferLimit="4194304" /><br />
<add name="svc-ISAPI-2.0-64" path="*.svc" verb="*" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness64" responseBufferLimit="4194304" /><br />
<add name="svc-ISAPI-2.0" path="*.svc" verb="*" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness32" responseBufferLimit="4194304" /><br />
<add name="svc-Integrated" path="*.svc" verb="*" type="System.ServiceModel.Activation.HttpHandler, System.ServiceModel, Version=3.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv2.0" responseBufferLimit="4194304" /><br />
<add name="ASPClassic" path="*.asp" verb="GET,HEAD,POST" type="" modules="IsapiModule" scriptProcessor="%windir%\system32\inetsrv\asp.dll" resourceType="File" requireAccess="Script" allowPathInfo="false" preCondition="" responseBufferLimit="4194304" /><br />
<add name="SecurityCertificate" path="*.cer" verb="GET,HEAD,POST" type="" modules="IsapiModule" scriptProcessor="%windir%\system32\inetsrv\asp.dll" resourceType="File" requireAccess="Script" allowPathInfo="false" preCondition="" responseBufferLimit="4194304" /><br />
<add name="ISAPI-dll" path="*.dll" verb="*" type="" modules="IsapiModule" scriptProcessor="" resourceType="File" requireAccess="Execute" allowPathInfo="true" preCondition="" responseBufferLimit="4194304" /><br />
<add name="AXD-ISAPI-4.0_64bit" path="*.axd" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="0" /><br />
<add name="PageHandlerFactory-ISAPI-4.0_64bit" path="*.aspx" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="0" /><br />
<add name="SimpleHandlerFactory-ISAPI-4.0_64bit" path="*.ashx" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="0" /><br />
<add name="WebServiceHandlerFactory-ISAPI-4.0_64bit" path="*.asmx" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="0" /><br />
<add name="HttpRemotingHandlerFactory-rem-ISAPI-4.0_64bit" path="*.rem" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="0" /><br />
<add name="HttpRemotingHandlerFactory-soap-ISAPI-4.0_64bit" path="*.soap" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="0" /><br />
<add name="aspq-ISAPI-4.0_64bit" path="*.aspq" verb="*" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="0" /><br />
<add name="cshtm-ISAPI-4.0_64bit" path="*.cshtm" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="0" /><br />
<add name="cshtml-ISAPI-4.0_64bit" path="*.cshtml" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="0" /><br />
<add name="vbhtm-ISAPI-4.0_64bit" path="*.vbhtm" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="0" /><br />
<add name="vbhtml-ISAPI-4.0_64bit" path="*.vbhtml" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="0" /><br />
<add name="TraceHandler-Integrated-4.0" path="trace.axd" verb="GET,HEAD,POST,DEBUG" type="System.Web.Handlers.TraceHandler" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="WebAdminHandler-Integrated-4.0" path="WebAdmin.axd" verb="GET,DEBUG" type="System.Web.Handlers.WebAdminHandler" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="AssemblyResourceLoader-Integrated-4.0" path="WebResource.axd" verb="GET,DEBUG" type="System.Web.Handlers.AssemblyResourceLoader" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="PageHandlerFactory-Integrated-4.0" path="*.aspx" verb="GET,HEAD,POST,DEBUG" type="System.Web.UI.PageHandlerFactory" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="SimpleHandlerFactory-Integrated-4.0" path="*.ashx" verb="GET,HEAD,POST,DEBUG" type="System.Web.UI.SimpleHandlerFactory" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="WebServiceHandlerFactory-Integrated-4.0" path="*.asmx" verb="GET,HEAD,POST,DEBUG" type="System.Web.Script.Services.ScriptHandlerFactory, System.Web.Extensions, Version=4.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="HttpRemotingHandlerFactory-rem-Integrated-4.0" path="*.rem" verb="GET,HEAD,POST,DEBUG" type="System.Runtime.Remoting.Channels.Http.HttpRemotingHandlerFactory, System.Runtime.Remoting, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="HttpRemotingHandlerFactory-soap-Integrated-4.0" path="*.soap" verb="GET,HEAD,POST,DEBUG" type="System.Runtime.Remoting.Channels.Http.HttpRemotingHandlerFactory, System.Runtime.Remoting, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="aspq-Integrated-4.0" path="*.aspq" verb="GET,HEAD,POST,DEBUG" type="System.Web.HttpForbiddenHandler" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="cshtm-Integrated-4.0" path="*.cshtm" verb="GET,HEAD,POST,DEBUG" type="System.Web.HttpForbiddenHandler" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="cshtml-Integrated-4.0" path="*.cshtml" verb="GET,HEAD,POST,DEBUG" type="System.Web.HttpForbiddenHandler" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="vbhtm-Integrated-4.0" path="*.vbhtm" verb="GET,HEAD,POST,DEBUG" type="System.Web.HttpForbiddenHandler" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="vbhtml-Integrated-4.0" path="*.vbhtml" verb="GET,HEAD,POST,DEBUG" type="System.Web.HttpForbiddenHandler" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="ScriptHandlerFactoryAppServices-Integrated-4.0" path="*_AppService.axd" verb="*" type="System.Web.Script.Services.ScriptHandlerFactory, System.Web.Extensions, Version=4.0.0.0, Culture=neutral, PublicKeyToken=31BF3856AD364E35" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="ScriptResourceIntegrated-4.0" path="*ScriptResource.axd" verb="GET,HEAD" type="System.Web.Handlers.ScriptResourceHandler, System.Web.Extensions, Version=4.0.0.0, Culture=neutral, PublicKeyToken=31BF3856AD364E35" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="AXD-ISAPI-4.0_32bit" path="*.axd" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="0" /><br />
<add name="PageHandlerFactory-ISAPI-4.0_32bit" path="*.aspx" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="0" /><br />
<add name="SimpleHandlerFactory-ISAPI-4.0_32bit" path="*.ashx" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="0" /><br />
<add name="WebServiceHandlerFactory-ISAPI-4.0_32bit" path="*.asmx" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="0" /><br />
<add name="HttpRemotingHandlerFactory-rem-ISAPI-4.0_32bit" path="*.rem" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="0" /><br />
<add name="HttpRemotingHandlerFactory-soap-ISAPI-4.0_32bit" path="*.soap" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="0" /><br />
<add name="aspq-ISAPI-4.0_32bit" path="*.aspq" verb="*" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="0" /><br />
<add name="cshtm-ISAPI-4.0_32bit" path="*.cshtm" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="0" /><br />
<add name="cshtml-ISAPI-4.0_32bit" path="*.cshtml" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="0" /><br />
<add name="vbhtm-ISAPI-4.0_32bit" path="*.vbhtm" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="0" /><br />
<add name="vbhtml-ISAPI-4.0_32bit" path="*.vbhtml" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="0" /><br />
<add name="TraceHandler-Integrated" path="trace.axd" verb="GET,HEAD,POST,DEBUG" type="System.Web.Handlers.TraceHandler" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv2.0" responseBufferLimit="4194304" /><br />
<add name="WebAdminHandler-Integrated" path="WebAdmin.axd" verb="GET,DEBUG" type="System.Web.Handlers.WebAdminHandler" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv2.0" responseBufferLimit="4194304" /><br />
<add name="AssemblyResourceLoader-Integrated" path="WebResource.axd" verb="GET,DEBUG" type="System.Web.Handlers.AssemblyResourceLoader" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv2.0" responseBufferLimit="4194304" /><br />
<add name="PageHandlerFactory-Integrated" path="*.aspx" verb="GET,HEAD,POST,DEBUG" type="System.Web.UI.PageHandlerFactory" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv2.0" responseBufferLimit="4194304" /><br />
<add name="SimpleHandlerFactory-Integrated" path="*.ashx" verb="GET,HEAD,POST,DEBUG" type="System.Web.UI.SimpleHandlerFactory" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv2.0" responseBufferLimit="4194304" /><br />
<add name="WebServiceHandlerFactory-Integrated" path="*.asmx" verb="GET,HEAD,POST,DEBUG" type="System.Web.Services.Protocols.WebServiceHandlerFactory, System.Web.Services, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv2.0" responseBufferLimit="4194304" /><br />
<add name="HttpRemotingHandlerFactory-rem-Integrated" path="*.rem" verb="GET,HEAD,POST,DEBUG" type="System.Runtime.Remoting.Channels.Http.HttpRemotingHandlerFactory, System.Runtime.Remoting, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv2.0" responseBufferLimit="4194304" /><br />
<add name="HttpRemotingHandlerFactory-soap-Integrated" path="*.soap" verb="GET,HEAD,POST,DEBUG" type="System.Runtime.Remoting.Channels.Http.HttpRemotingHandlerFactory, System.Runtime.Remoting, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv2.0" responseBufferLimit="4194304" /><br />
<add name="AXD-ISAPI-2.0" path="*.axd" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness32" responseBufferLimit="0" /><br />
<add name="PageHandlerFactory-ISAPI-2.0" path="*.aspx" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness32" responseBufferLimit="0" /><br />
<add name="SimpleHandlerFactory-ISAPI-2.0" path="*.ashx" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness32" responseBufferLimit="0" /><br />
<add name="WebServiceHandlerFactory-ISAPI-2.0" path="*.asmx" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness32" responseBufferLimit="0" /><br />
<add name="HttpRemotingHandlerFactory-rem-ISAPI-2.0" path="*.rem" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness32" responseBufferLimit="0" /><br />
<add name="HttpRemotingHandlerFactory-soap-ISAPI-2.0" path="*.soap" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness32" responseBufferLimit="0" /><br />
<add name="AXD-ISAPI-2.0-64" path="*.axd" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness64" responseBufferLimit="0" /><br />
<add name="PageHandlerFactory-ISAPI-2.0-64" path="*.aspx" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness64" responseBufferLimit="0" /><br />
<add name="SimpleHandlerFactory-ISAPI-2.0-64" path="*.ashx" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness64" responseBufferLimit="0" /><br />
<add name="WebServiceHandlerFactory-ISAPI-2.0-64" path="*.asmx" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness64" responseBufferLimit="0" /><br />
<add name="HttpRemotingHandlerFactory-rem-ISAPI-2.0-64" path="*.rem" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness64" responseBufferLimit="0" /><br />
<add name="HttpRemotingHandlerFactory-soap-ISAPI-2.0-64" path="*.soap" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness64" responseBufferLimit="0" /><br />
<add name="TRACEVerbHandler" path="*" verb="TRACE" type="" modules="ProtocolSupportModule" scriptProcessor="" resourceType="Unspecified" requireAccess="None" allowPathInfo="false" preCondition="" responseBufferLimit="4194304" /><br />
<add name="ExtensionlessUrlHandler-ISAPI-4.0_32bit" path="*." verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="0" /><br />
<add name="ExtensionlessUrlHandler-ISAPI-4.0_64bit" path="*." verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="0" /><br />
<add name="ExtensionlessUrlHandler-Integrated-4.0" path="*." verb="GET,HEAD,POST,DEBUG" type="System.Web.Handlers.TransferRequestHandler" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="0" /><br />
<add name="StaticFile" path="*" verb="*" type="" modules="StaticFileModule,DefaultDocumentModule,DirectoryListingModule" scriptProcessor="" resourceType="Either" requireAccess="Read" allowPathInfo="false" preCondition="" responseBufferLimit="4194304" /><br />
</handlers><br />
</system.webServer><br />
</configuration><br />
</syntaxhighlight><br />
<br />
Sollte der Header <code></code> in der Response nicht enthalten sein, sollte folgende Outbound Rule eingebunden werden.<br />
<br />
Eine sehr einfache web.config kann hier eingesehen werden.<br />
<br />
<syntaxhighlight lang='xml'><br />
<?xml version="1.0" encoding="UTF-8"?><br />
<configuration><br />
<system.webServer><br />
<br />
<rewrite><br />
<outboundRules><br />
<clear /> <br />
<rule name="AddCrossDomainHeader"><br />
<match serverVariable="RESPONSE_Access_Control_Allow_Origin" pattern=".*" /><br />
<conditions logicalGrouping="MatchAll" trackAllCaptures="true"><br />
<add input="{HTTP_ORIGIN}" pattern="http(s)?://127.0.0.1:\d+|http(s)?://localhost:\d+" /><br />
</conditions><br />
<action type="Rewrite" value="{C:0}" /><br />
</rule> <br />
</outboundRules><br />
</rewrite><br />
<br />
</system.webServer><br />
</configuration><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
= Custom (OS) Protocol Handler =<br />
<br />
Custom Protocol Handler im Allgemeinen ermöglichen die Verwendung eigener Protokolle in Web Browser - z.B. stweb://my.web. Diese Custom Protocol Handler gibt es in zwei Ausprägungen: web-basiert und Betriebssystem-spezifisch.<br />
<br />
<br/><br />
<br />
== Custom Web Protocol Handler ==<br />
<br />
Diese werden mit Hilfe der JavaScript Funktion <code>navigator.registerProtocolHandler()</code> registriert.<br />
<br />
Beispiel:<br />
<br />
<syntaxhighlight lang="javascript"><br />
navigator.registerProtocolHandler("burger",<br />
"http://www.google.co.uk/?uri=%s",<br />
"Burger handler");<br />
<br />
<a href="burger:cheeseburger">link</a><br />
</syntaxhighlight><br />
<br />
Links:<br />
* [https://developer.mozilla.org/de/docs/Web-based_protocol_handlers MDN, ''Web-based protocol handlers'']<br />
<br />
<br/><br />
<br />
== Custom OS Protocol Handler ==<br />
<br />
=== Custom Windows Protocol Handler ===<br />
<br />
Diese werden in der Windows Registry registriert.<br />
<br />
Beispiel (stweb) - .reg File:<br />
<br />
<syntaxhighlight lang="text"><br />
Windows Registry Editor Version 5.00<br />
[HKEY_CLASSES_ROOT\stweb]<br />
"URL Protocol"=""<br />
[HKEY_CLASSES_ROOT\stweb\Shell]<br />
[HKEY_CLASSES_ROOT\stweb\Shell\Open]<br />
[HKEY_CLASSES_ROOT\stweb\Shell\Open\Command]<br />
@="\"C:\\Temp\\customProtocolHandler.exe\" \"%1\""<br />
</syntaxhighlight><br />
<br />
<br />
'''Achtung:''' URLs, welche ein Custom Protocol enthalten (z.B. stweb:foo.bar) können in Google Chrome nicht im URL Eingabefeld verwendet werden, da diese dort nicht verarbeitet werden. Ist eine URL mit Custom Protocol Handler jedoch innerhalb einer HTML Seite als href Attribut eines Anchors (<a> Tag) enthalten, wird der Custom Windows Protocol Handler verarbeitet und die externe Applikation nach einer Sicherheitsabfrage gestartet bzw. geöffnet.<br />
<br />
Links:<br />
* [https://msdn.microsoft.com/de-de/en_us/library/aa767914(VS.85).aspx MSDN, “Registering an Application to a URI Scheme”]<br />
* [https://blogs.msdn.com/b/noahc/archive/2006/10/19/register-a-custom-url-protocol-handler.aspx Noah Coad, “Register a Custom URL Protocol Handler”]<br />
* [https://support.shotgunsoftware.com/entries/86754-How-to-launch-external-applications-using-custom-protocols-rock-instead-of-http- Don Parker, “How to launch external applications using custom protocols (rock:// instead of http://)]”<br />
<br />
<br/><br />
<br />
=== Custom Linux Protocol Handler ===<br />
<br />
Links:<br />
* [https://support.shotgunsoftware.com/entries/86754-How-to-launch-external-applications-using-custom-protocols-rock-instead-of-http- Don Parker, “How to launch external applications using custom protocols (rock:// instead of http://)”]<br />
<br />
<br/><br />
<br />
= Session Management =<br />
<br />
== Access / Refresh Token ==<br />
<br />
An dieser Stelle sollen Eigenschaften von Refresh Token festgehalten werden, die in einer Recherche von JHA am 19.09.2019 eruiert wurden. Die folgende Liste beschreibt interessante Links zum Thema ''Refresh Token''.<br />
<br />
* [https://auth0.com/learn/refresh-tokens/ Understanding Refresh Tokens (Auth0)]<br />
* [https://auth0.com/docs/tokens/refresh-token/current Refresh Tokens (Auth0)]<br />
* [https://auth0.com/blog/refresh-tokens-what-are-they-and-when-to-use-them/ Refresh Tokens: When to Use Them and How They Interact with JWTs (Auth0)]<br />
* [https://auth0.com/docs/api-auth/tutorials/silent-authentication Silent Authentication (Auth0)]<br />
* [https://auth0.com/blog/5-steps-to-add-modern-authentication-to-legacy-apps-using-jwts/ 5 Steps to Add Modern Authentication to Legacy Apps Using JWTs (Auth0)]<br />
* [https://auth0.com/docs/security/store-tokens Where to Store Tokens (Auth0)]<br />
<br />
<br/><br />
<br />
== Speicherort von Refresh Token ==<br />
<br />
Entsprechend der [https://auth0.com/ Auth0] Spezifikation von [https://auth0.com/docs/tokens/refresh-token/current Refresh Tokens] dürfen Refresh Token nicht in einem Browser gespeichert werden.<br />
<br />
<blockquote><br />
''A Single-Page Application (normally implementing Implicit Flow) should not ever receive a Refresh Token. A Refresh Token is essentially a user credential that allows a user to remain authenticated indefinitely. '''This sensitive information should be stored securely and not exposed client-side in a browser'''.''<br />
<br />
''If you are implementing an SPA using Implicit Flow and you need to renew a token, the only secure option for doing so is to use [https://auth0.com/docs/api-auth/tutorials/silent-authentication Silent Authentication].''<br />
</blockquote><br />
<br />
<br/><br />
<br />
== Silent Authentication für Single Page Applications (SPA) ==<br />
<br />
Wie bereits im vorhergehenden Kapitel erwähnt, bietet sich für eine Single Page Application (SPA) eine [https://auth0.com/docs/api-auth/tutorials/silent-authentication Silent Authentication] an.<br />
<br />
Hier wird aus einer noch nicht abgelaufenen Session ein neues Session/Access Token (z.B. JWT) erzeugt. Beispielsweise mit Hilfe eines Parameter ''expires_in'' (Minuten, Stunden, Tage, etc.). Dieser wird dem Web Client nach eines erfolgreichen Logins mitgeteilt. Der Web Client konfiguriert einen Timer vor diesen Wert. Nach Ablauf des Timers ist die Session also noch kurze Zeit gültig. Mit dieser gültigen Session führt der Web Client nun eine ''Silent Authentication'' durch und erhält eine neues Session/Access Token (z.B. JWT).<br />
<br />
Ein Problem hierbei ist die Erneuerung der Session mit dem aktuellen Session/Access Token. Ein Angreifer könnte dies nutzen, das Session/Access Token immer wieder zu erneuern. Um diesem Problem entgegen zu wirken, muss die Web Application die Möglichkeit bieten, Sessions via Web GUI einzusehen und zu beenden.<br />
<br />
<br/><br />
<br />
== Sliding Sessions ==<br />
<br />
Ein weiterer Ansatz, eine Session gültig zu halten sind Sliding Sessions (beschrieben in diesem [https://auth0.com/blog/refresh-tokens-what-are-they-and-when-to-use-them/ Artikel]). Hierbei wird bei jedem Request am Web Service ein neues Session/Access Token (z.B. JWT) erstellt. Dieses ersetzt jeweils das aktuelle Session/Access Token. Hier ist dann allerdings dasselbe Problem zu erwarten, das auch die ''Silent Authentication'' besitzt: Ein Angreifer könnte die Session beliebig lange offen halten.<br />
<br />
<br/><br />
<br />
== JWT Tokens ==<br />
<br />
* [https://auth0.com/learn/token-based-authentication-made-easy/ Token Based Authentication Made Easy (Auth0)]<br />
<br />
<br/><br />
<br />
== JWT Tokens in Self-Contained Systems und Microservices Architekturen ==<br />
<br />
Die folgenden Artikel beschäftigen sich mit der Verwendung von JWT Tokens in verteilten Service Architekturen.<br />
<br />
=== Blog Beiträge ===<br />
<br />
* [https://stormpath.com/blog/microservices-jwt-spring-boot Tutorial: Establish Trust Between Microservices with JWT and Spring Boot]<br />
* [https://medium.com/tech-tajawal/microservice-authentication-and-authorization-solutions-e0e5e74b248a Microservices Authentication and Authorization Solutions]<br />
* [http://alexander.holbreich.org/jwt/ JSON Web Tokens are made for Microservices]<br />
* [http://proficientblog.com/microservices-security/ Microservices Security – OAuth2 and OpenID Connect]<br />
<br />
<br/><br />
<br />
=== Stack Overflow ===<br />
<br />
* [https://stackoverflow.com/a/56149939 Use JWT to authenticate separate API Microservice]<br />
* [https://stackoverflow.com/a/26834685 JWT (JSON Web Token) automatic prolongation of expiration]<br />
<br />
<br/><br />
<br />
= Cookies =<br />
<br />
== SameSite Cookies ==<br />
<br />
Die folgenden Artikel beschreiben SameSite Cookies, sowie die Bestimmung einer Same Site.<br />
<br />
* [https://web.dev/samesite-cookies-explained/ SameSite cookies explained]<br />
* [https://tools.ietf.org/html/draft-ietf-httpbis-rfc6265bis RFC 6265bis: Cookies: HTTP State Management Mechanism (draft)]<br />
* [https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Set-Cookie/SameSite MDN: SameSite cookies]<br />
* [https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Set-Cookie MDN: Set-Cookie]<br />
* [https://developer.mozilla.org/en-US/docs/Glossary/Site MDN: Site]<br />
* [https://html.spec.whatwg.org/multipage/origin.html#sites HTML - Living Standard: Sites]<br />
* [https://url.spec.whatwg.org/#host-miscellaneous URL - Living Standard: Host miscellaneous (public suffix, registrable domain)]<br />
* [https://publicsuffix.org/list/ Public Suffix List]<br />
<br />
<br/></div>
Jochen
https://wiki.fam-hammann.de/index.php?title=LinuxOS&diff=565
LinuxOS
2020-10-28T13:09:56Z
<p>Jochen: /* Root CA Zertifikat importieren */</p>
<hr />
<div>__TOC__<br />
<br />
<br />
== Festplattenplatz anzeigen ==<br />
<br />
<syntaxhighlight lang="text"><br />
df --total<br />
</syntaxhighlight><br />
<br />
<br />
== Liste installierter Anwendungen ==<br />
<br />
<syntaxhighlight lang="text"><br />
apt -l | more<br />
apt -l | grep <regex><br />
</syntaxhighlight><br />
<br />
<br />
== LibreOffice deinstallieren ==<br />
<br />
<syntaxhighlight lang="text"><br />
sudo apt-get remove --purge libreoffice*<br />
sudo apt-get clean<br />
sudo apt-get autoremove<br />
</syntaxhighlight><br />
<br />
<br />
== Windows Namensauflösung (WINS) ==<br />
<br />
(Entommen [http://singularo.com/ubuntu-winbind-not-working hier] und [http://d0m.me/2011/02/08/windows-netzwerk-hostnamen-unter-linux-ansprechen/ hier])<br />
<br />
<syntaxhighlight lang="text"><br />
sudo apt-get install winbind<br />
sudo apt-get install libnss-winbind<br />
</syntaxhighlight><br />
<br />
<br />
'''/etc/nsswitch.conf:'''<br />
<br />
<syntaxhighlight lang="text"><br />
hosts: files mdns4_minimal [NOTFOUND=return] dns wins mdns4<br />
sudo /etc/init.d/winbind restart<br />
</syntaxhighlight><br />
<br />
<br />
== Prozess finden, der einen bestimmten Port belegt ==<br />
<br />
(Entommen [http://askubuntu.com/questions/278448/how-to-know-what-program-is-listening-on-a-given-port hier])<br />
<br />
<br />
Beispiel:<br />
<br />
<syntaxhighlight lang="text"><br />
$ lsof -i :8000<br />
COMMAND PID USER FD TYPE DEVICE SIZE/OFF NODE NAME<br />
squid3 1289 proxy 15u IPv6 14810490 0t0 TCP *:8000 (LISTEN)<br />
<br />
$ ps -fp 1289<br />
UID PID PPID C STIME TTY TIME CMD<br />
proxy 1289 1 0 09:48 ? 00:00:00 /usr/sbin/squid3 -N -f /etc/squid-deb-proxy/squid-deb-proxy.conf<br />
</syntaxhighlight><br />
<br />
<br />
== Bluetooth Konfiguration ==<br />
<br />
(Entnommen [https://zach-adams.com/2014/07/bluetooth-audio-sink-stream-setup-failed/ hier])<br />
<br />
<br />
<syntaxhighlight lang="text"><br />
sudo apt-get install pulseaudio-module-bluetooth<br />
</syntaxhighlight><br />
<br />
<br />
<syntaxhighlight lang="text"><br />
pactl load-module module-bluetooth-discover<br />
</syntaxhighlight><br />
<br />
<br />
== Bluetooth Konfigurations- und Audio-Probleme beheben ==<br />
<br />
<syntaxhighlight lang="text"><br />
sudo service bluetooth restart<br />
pulseaudio --kill<br />
pulseaudio --start<br />
</syntaxhighlight><br />
<br />
<br />
== Root CA Zertifikat importieren ==<br />
<br />
Entsprechend der Beschreibung [https://askubuntu.com/a/94861 hier] müssen folgende Punkte ausgeführt werden.<br />
<br />
<br />
Given a CA certificate file <code>foo.crt</code>, follow these steps to install it on Ubuntu:<br />
<br />
<br />
1. Create a directory for extra CA certificates in <code>/usr/share/ca-certificates</code>:<br />
<br />
sudo mkdir /usr/share/ca-certificates/extra<br />
<br />
<br />
2. Copy the CA <code>.crt</code> file to this directory:<br />
<br />
sudo cp foo.crt /usr/share/ca-certificates/extra/foo.crt<br />
<br />
<br />
3. Let Ubuntu add the <code>.crt</code> file's path relative to <code>/usr/share/ca-certificates</code> to <code>/etc/ca-certificates.conf</code>:<br />
<br />
sudo dpkg-reconfigure ca-certificates<br />
<br />
: To do this non-interactively, run:<br />
<br />
sudo update-ca-certificates<br />
<br />
<br />
In case of a <code>.pem</code> file on Ubuntu, it must first be converted to a <code>.crt</code> file:<br />
<br />
openssl x509 -in foo.pem -inform PEM -out foo.crt</div>
Jochen
https://wiki.fam-hammann.de/index.php?title=LinuxOS&diff=564
LinuxOS
2020-10-28T13:09:20Z
<p>Jochen: /* Zertifikate (Root CA) importieren */</p>
<hr />
<div>__TOC__<br />
<br />
<br />
== Festplattenplatz anzeigen ==<br />
<br />
<syntaxhighlight lang="text"><br />
df --total<br />
</syntaxhighlight><br />
<br />
<br />
== Liste installierter Anwendungen ==<br />
<br />
<syntaxhighlight lang="text"><br />
apt -l | more<br />
apt -l | grep <regex><br />
</syntaxhighlight><br />
<br />
<br />
== LibreOffice deinstallieren ==<br />
<br />
<syntaxhighlight lang="text"><br />
sudo apt-get remove --purge libreoffice*<br />
sudo apt-get clean<br />
sudo apt-get autoremove<br />
</syntaxhighlight><br />
<br />
<br />
== Windows Namensauflösung (WINS) ==<br />
<br />
(Entommen [http://singularo.com/ubuntu-winbind-not-working hier] und [http://d0m.me/2011/02/08/windows-netzwerk-hostnamen-unter-linux-ansprechen/ hier])<br />
<br />
<syntaxhighlight lang="text"><br />
sudo apt-get install winbind<br />
sudo apt-get install libnss-winbind<br />
</syntaxhighlight><br />
<br />
<br />
'''/etc/nsswitch.conf:'''<br />
<br />
<syntaxhighlight lang="text"><br />
hosts: files mdns4_minimal [NOTFOUND=return] dns wins mdns4<br />
sudo /etc/init.d/winbind restart<br />
</syntaxhighlight><br />
<br />
<br />
== Prozess finden, der einen bestimmten Port belegt ==<br />
<br />
(Entommen [http://askubuntu.com/questions/278448/how-to-know-what-program-is-listening-on-a-given-port hier])<br />
<br />
<br />
Beispiel:<br />
<br />
<syntaxhighlight lang="text"><br />
$ lsof -i :8000<br />
COMMAND PID USER FD TYPE DEVICE SIZE/OFF NODE NAME<br />
squid3 1289 proxy 15u IPv6 14810490 0t0 TCP *:8000 (LISTEN)<br />
<br />
$ ps -fp 1289<br />
UID PID PPID C STIME TTY TIME CMD<br />
proxy 1289 1 0 09:48 ? 00:00:00 /usr/sbin/squid3 -N -f /etc/squid-deb-proxy/squid-deb-proxy.conf<br />
</syntaxhighlight><br />
<br />
<br />
== Bluetooth Konfiguration ==<br />
<br />
(Entnommen [https://zach-adams.com/2014/07/bluetooth-audio-sink-stream-setup-failed/ hier])<br />
<br />
<br />
<syntaxhighlight lang="text"><br />
sudo apt-get install pulseaudio-module-bluetooth<br />
</syntaxhighlight><br />
<br />
<br />
<syntaxhighlight lang="text"><br />
pactl load-module module-bluetooth-discover<br />
</syntaxhighlight><br />
<br />
<br />
== Bluetooth Konfigurations- und Audio-Probleme beheben ==<br />
<br />
<syntaxhighlight lang="text"><br />
sudo service bluetooth restart<br />
pulseaudio --kill<br />
pulseaudio --start<br />
</syntaxhighlight><br />
<br />
<br />
== Root CA Zertifikat importieren ==<br />
<br />
Entsprechend der Beschreibung [https://askubuntu.com/a/94861 hier] müssen folgende Punkte ausgeführt werden.<br />
<br />
<br />
Given a CA certificate file <code>foo.crt</code>, follow these steps to install it on Ubuntu:<br />
<br />
<br />
1. Create a directory for extra CA certificates in <code>/usr/share/ca-certificates</code>:<br />
<br />
sudo mkdir /usr/share/ca-certificates/extra<br />
<br />
<br />
2. Copy the CA <code>.crt</code> file to this directory:<br />
<br />
sudo cp foo.crt /usr/share/ca-certificates/extra/foo.crt<br />
<br />
<br />
3. Let Ubuntu add the <code>.crt</code> file's path relative to <code>/usr/share/ca-certificates</code> to <code>/etc/ca-certificates.conf</code>:<br />
<br />
sudo dpkg-reconfigure ca-certificates<br />
<br />
: To do this non-interactively, run:<br />
<br />
sudo update-ca-certificates<br />
<br />
<br />
In case of a <code>.pem</code> file on Ubuntu, it must first be converted to a <code>.crt</code> file:<br />
<br />
openssl x509 -in foo.pem -inform PEM -out foo.crt</div>
Jochen
https://wiki.fam-hammann.de/index.php?title=LinuxOS&diff=563
LinuxOS
2020-10-28T12:54:50Z
<p>Jochen: </p>
<hr />
<div>__TOC__<br />
<br />
<br />
== Festplattenplatz anzeigen ==<br />
<br />
<syntaxhighlight lang="text"><br />
df --total<br />
</syntaxhighlight><br />
<br />
<br />
== Liste installierter Anwendungen ==<br />
<br />
<syntaxhighlight lang="text"><br />
apt -l | more<br />
apt -l | grep <regex><br />
</syntaxhighlight><br />
<br />
<br />
== LibreOffice deinstallieren ==<br />
<br />
<syntaxhighlight lang="text"><br />
sudo apt-get remove --purge libreoffice*<br />
sudo apt-get clean<br />
sudo apt-get autoremove<br />
</syntaxhighlight><br />
<br />
<br />
== Windows Namensauflösung (WINS) ==<br />
<br />
(Entommen [http://singularo.com/ubuntu-winbind-not-working hier] und [http://d0m.me/2011/02/08/windows-netzwerk-hostnamen-unter-linux-ansprechen/ hier])<br />
<br />
<syntaxhighlight lang="text"><br />
sudo apt-get install winbind<br />
sudo apt-get install libnss-winbind<br />
</syntaxhighlight><br />
<br />
<br />
'''/etc/nsswitch.conf:'''<br />
<br />
<syntaxhighlight lang="text"><br />
hosts: files mdns4_minimal [NOTFOUND=return] dns wins mdns4<br />
sudo /etc/init.d/winbind restart<br />
</syntaxhighlight><br />
<br />
<br />
== Prozess finden, der einen bestimmten Port belegt ==<br />
<br />
(Entommen [http://askubuntu.com/questions/278448/how-to-know-what-program-is-listening-on-a-given-port hier])<br />
<br />
<br />
Beispiel:<br />
<br />
<syntaxhighlight lang="text"><br />
$ lsof -i :8000<br />
COMMAND PID USER FD TYPE DEVICE SIZE/OFF NODE NAME<br />
squid3 1289 proxy 15u IPv6 14810490 0t0 TCP *:8000 (LISTEN)<br />
<br />
$ ps -fp 1289<br />
UID PID PPID C STIME TTY TIME CMD<br />
proxy 1289 1 0 09:48 ? 00:00:00 /usr/sbin/squid3 -N -f /etc/squid-deb-proxy/squid-deb-proxy.conf<br />
</syntaxhighlight><br />
<br />
<br />
== Bluetooth Konfiguration ==<br />
<br />
(Entnommen [https://zach-adams.com/2014/07/bluetooth-audio-sink-stream-setup-failed/ hier])<br />
<br />
<br />
<syntaxhighlight lang="text"><br />
sudo apt-get install pulseaudio-module-bluetooth<br />
</syntaxhighlight><br />
<br />
<br />
<syntaxhighlight lang="text"><br />
pactl load-module module-bluetooth-discover<br />
</syntaxhighlight><br />
<br />
<br />
== Bluetooth Konfigurations- und Audio-Probleme beheben ==<br />
<br />
<syntaxhighlight lang="text"><br />
sudo service bluetooth restart<br />
pulseaudio --kill<br />
pulseaudio --start<br />
</syntaxhighlight><br />
<br />
<br />
== Zertifikate (Root CA) importieren ==<br />
<br />
Entsprechend der Beschreibung [https://askubuntu.com/a/94861 hier] müssen folgende Punkte ausgeführt werden.<br />
<br />
<br />
Given a CA certificate file foo.crt, follow these steps to install it on Ubuntu:<br />
<br />
# Create a directory for extra CA certificates in /usr/share/ca-certificates:<br/><code>sudo mkdir /usr/share/ca-certificates/extra</code><br />
<br />
# Copy the CA .crt file to this directory:<br />
<br />
sudo cp foo.crt /usr/share/ca-certificates/extra/foo.crt<br />
Let Ubuntu add the .crt file's path relative to /usr/share/ca-certificates to /etc/ca-certificates.conf:<br />
<br />
sudo dpkg-reconfigure ca-certificates<br />
To do this non-interactively, run:<br />
<br />
sudo update-ca-certificates<br />
In case of a .pem file on Ubuntu, it must first be converted to a .crt file:<br />
<br />
openssl x509 -in foo.pem -inform PEM -out foo.crt</div>
Jochen
https://wiki.fam-hammann.de/index.php?title=Maven&diff=562
Maven
2020-09-17T07:18:36Z
<p>Jochen: /* Sonatype OSS Index */</p>
<hr />
<div>__TOC__<br />
<br />
<br />
= Plugins =<br />
<br />
== OWASP Dependency Track ==<br />
<br />
[https://owasp.org/www-project-dependency-track/ OWASP Dependency Track]<br />
<br />
<br/><br />
<br />
=== CycloneDX Plugin ===<br />
<br />
[https://github.com/CycloneDX/cyclonedx-maven-plugin OWASP Dependency Track - CycloneDX Plugin]<br />
<br />
==== Single-Module Build ====<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [OWASP Dependency Track - CycloneDX Plugin] ++++++++++ --><br />
<br />
<!-- CLI: mvn org.cyclonedx:cyclonedx-maven-plugin:makeBom --><br />
<!-- CLI: mvn cyclonedx:makeBom --><br />
<!-- CLI: mvn org.cyclonedx:cyclonedx-maven-plugin:makeAggregateBom --><br />
<!-- CLI: mvn cyclonedx:makeAggregateBom --><br />
<plugin><br />
<groupId>org.cyclonedx</groupId><br />
<artifactId>cyclonedx-maven-plugin</artifactId><br />
<version>1.6.4</version><br />
<executions><br />
<execution><br />
<phase>verify</phase><br />
<goals><br />
<goal>makeBom</goal><br />
</goals><br />
</execution><br />
</executions><br />
<configuration><br />
<schemaVersion>1.1</schemaVersion><br />
<includeBomSerialNumber>true</includeBomSerialNumber><br />
<includeCompileScope>true</includeCompileScope><br />
<includeProvidedScope>true</includeProvidedScope><br />
<includeRuntimeScope>true</includeRuntimeScope><br />
<includeSystemScope>true</includeSystemScope><br />
<includeTestScope>false</includeTestScope><br />
<includeLicenseText>true</includeLicenseText><br />
<includeDependencyGraph>true</includeDependencyGraph><br />
</configuration><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
==== Multi-Module Build ====<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [OWASP Dependency Track - CycloneDX Plugin] ++++++++++ --><br />
<br />
<!-- CLI: mvn org.cyclonedx:cyclonedx-maven-plugin:makeBom --><br />
<!-- CLI: mvn cyclonedx:makeBom --><br />
<!-- CLI: mvn org.cyclonedx:cyclonedx-maven-plugin:makeAggregateBom --><br />
<!-- CLI: mvn cyclonedx:makeAggregateBom --><br />
<plugin><br />
<groupId>org.cyclonedx</groupId><br />
<artifactId>cyclonedx-maven-plugin</artifactId><br />
<version>1.6.4</version><br />
<executions><br />
<execution><br />
<phase>verify</phase><br />
<goals><br />
<goal>makeAggregateBom</goal><br />
</goals><br />
</execution><br />
</executions><br />
<configuration><br />
<schemaVersion>1.1</schemaVersion><br />
<includeBomSerialNumber>true</includeBomSerialNumber><br />
<includeCompileScope>true</includeCompileScope><br />
<includeProvidedScope>true</includeProvidedScope><br />
<includeRuntimeScope>true</includeRuntimeScope><br />
<includeSystemScope>true</includeSystemScope><br />
<includeTestScope>false</includeTestScope><br />
<includeLicenseText>true</includeLicenseText><br />
<includeDependencyGraph>true</includeDependencyGraph><br />
</configuration><br />
<inherited>false</inherited><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
=== Upload Plugin ===<br />
<br />
[https://github.com/pmckeown/dependency-track-maven-plugin OWASP Dependency Track - Upload Plugin]<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [OWASP Dependency Track - Upload Plugin] ++++++++++ --><br />
<br />
<!-- Caution: The dependency-track-maven-plugin must be specified after the cyclonedx-maven-plugin.<br />
Because both plugins are processed in the phase 'verify'. --><br />
<br />
<!-- CLI: mvn dependency-track:upload-bom --><br />
<plugin><br />
<groupId>io.github.pmckeown</groupId><br />
<artifactId>dependency-track-maven-plugin</artifactId><br />
<version>0.8.1</version><br />
<executions><br />
<execution><br />
<phase>verify</phase><br />
<goals><br />
<goal>upload-bom</goal><br />
</goals><br />
</execution><br />
</executions><br />
<configuration><br />
<dependencyTrackBaseUrl>http://...</dependencyTrackBaseUrl><br />
<apiKey>${dependencytrack.apikey}</apiKey><br />
</configuration><br />
<inherited>false</inherited><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
== OWASP Dependency Check ==<br />
<br />
[https://owasp.org/www-project-dependency-check/ OWASP Dependency Check]<br />
<br />
=== Signle-Module Build ===<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [OWASP Dependency Check Plugin] ++++++++++ --><br />
<br />
<!-- CLI: mvn org.owasp:dependency-check-maven:check --><br />
<!-- CLI: mvn dependency-check:check --><br />
<!-- CLI: mvn org.owasp:dependency-check-maven:aggregate --><br />
<!-- CLI: dependency-check:aggregate --><br />
<plugin><br />
<groupId>org.owasp</groupId><br />
<artifactId>dependency-check-maven</artifactId><br />
<version>5.3.2</version><br />
<configuration><br />
<skipProvidedScope>false</skipProvidedScope><br />
<skipRuntimeScope>false</skipRuntimeScope><br />
<retireJsAnalyzerEnabled>false</retireJsAnalyzerEnabled><br />
</configuration><br />
<executions><br />
<execution><br />
<goals><br />
<goal>check</goal><br />
</goals><br />
</execution><br />
</executions><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
=== Multi-Module Build ===<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [OWASP Dependency Check Plugin] ++++++++++ --><br />
<br />
<!-- CLI: mvn org.owasp:dependency-check-maven:check --><br />
<!-- CLI: mvn dependency-check:check --><br />
<!-- CLI: mvn org.owasp:dependency-check-maven:aggregate --><br />
<!-- CLI: dependency-check:aggregate --><br />
<!-- Caution: This plugin configuration (aggregated and not inherited) requires, that the project have been installed --><br />
<!-- (mvn install) at least once. Otherwise the OWASP Dependency Check creates a virtual dependency tree. --><br />
<plugin><br />
<groupId>org.owasp</groupId><br />
<artifactId>dependency-check-maven</artifactId><br />
<version>5.3.2</version><br />
<configuration><br />
<skipProvidedScope>false</skipProvidedScope><br />
<skipRuntimeScope>false</skipRuntimeScope><br />
<retireJsAnalyzerEnabled>false</retireJsAnalyzerEnabled><br />
</configuration><br />
<executions><br />
<execution><br />
<goals><br />
<goal>aggregate</goal><br />
</goals><br />
</execution><br />
</executions><br />
<inherited>false</inherited><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
== Sonatype OSS Index ==<br />
<br />
[https://sonatype.github.io/ossindex-maven/maven-plugin/ Sonatype OSS Index]<br />
<br />
=== Single-Module Build ===<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [Sonatype OSS Index Plugin] ++++++++++ --><br />
<br />
<!-- CLI: mvn org.sonatype.ossindex.maven:ossindex-maven-plugin:audit --><br />
<!-- CLI: mvn ossindex:audit --><br />
<!-- CLI: mvn org.sonatype.ossindex.maven:ossindex-maven-plugin:audit-aggregate --><br />
<!-- CLI: mvn ossindex:audit-aggregate --><br />
<plugin><br />
<groupId>org.sonatype.ossindex.maven</groupId><br />
<artifactId>ossindex-maven-plugin</artifactId><br />
<version>3.1.0</version><br />
<executions><br />
<execution><br />
<id>audit-dependencies</id><br />
<phase>validate</phase><br />
<goals><br />
<goal>audit</goal><br />
</goals><br />
</execution><br />
</executions><br />
<configuration><br />
<fail>false</fail><br />
</configuration><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
=== Multi-Module Build ===<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [Sonatype OSS Index Plugin] ++++++++++ --><br />
<br />
<!-- CLI: mvn org.sonatype.ossindex.maven:ossindex-maven-plugin:audit --><br />
<!-- CLI: mvn ossindex:audit --><br />
<!-- CLI: mvn org.sonatype.ossindex.maven:ossindex-maven-plugin:audit-aggregate --><br />
<!-- CLI: mvn ossindex:audit-aggregate --><br />
<!-- Caution: This plugin configuration (aggregated and non-inherited) requires, that the project have been installed --><br />
<!-- (mvn install) at least once. Otherwise the OWASP Dependency Check creates a virtual dependency tree. --><br />
<plugin><br />
<groupId>org.sonatype.ossindex.maven</groupId><br />
<artifactId>ossindex-maven-plugin</artifactId><br />
<version>3.1.0</version><br />
<executions><br />
<execution><br />
<id>audit-dependencies</id><br />
<phase>validate</phase><br />
<goals><br />
<goal>audit-aggregate</goal><br />
</goals><br />
</execution><br />
</executions><br />
<configuration><br />
<fail>false</fail><br />
</configuration><br />
<inherited>false</inherited><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
== Echo Plugin ==<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [Echo Plugin] ++++++++++ --><br />
<br />
<plugin><br />
<groupId>com.soebes.maven.plugins</groupId><br />
<artifactId>echo-maven-plugin</artifactId><br />
<version>0.4.0</version><br />
<executions><br />
<execution><br />
<id>echo-first-time</id><br />
<phase>validate</phase><br />
<goals><br />
<goal>echo</goal><br />
</goals><br />
<configuration><br />
<echos><br />
<echo>Project Version: ${project.version}</echo><br />
</echos><br />
</configuration><br />
</execution><br />
</executions><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br />
<br/><br />
<br />
== Antrun Plugin ==<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [Ant Run Plugin] ++++++++++ --><br />
<br />
<plugin><br />
<groupId>org.apache.maven.plugins</groupId><br />
<artifactId>maven-antrun-plugin</artifactId><br />
<version>3.0.0</version><br />
<executions><br />
<execution><br />
<phase>validate</phase><br />
<goals><br />
<goal>run</goal><br />
</goals><br />
<configuration><br />
<exportAntProperties>true</exportAntProperties><br />
<target><br />
<condition property="projectVersion" value="develop" else="${project.version}"><br />
<contains string="${project.version}" substring="-SNAPSHOT" /><br />
</condition><br />
<echo message="${projectVersion}"/><br />
</target><br />
</configuration><br />
</execution><br />
</executions><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/></div>
Jochen
https://wiki.fam-hammann.de/index.php?title=Maven&diff=561
Maven
2020-09-17T07:18:09Z
<p>Jochen: /* Plugins */</p>
<hr />
<div>__TOC__<br />
<br />
<br />
= Plugins =<br />
<br />
== OWASP Dependency Track ==<br />
<br />
[https://owasp.org/www-project-dependency-track/ OWASP Dependency Track]<br />
<br />
<br/><br />
<br />
=== CycloneDX Plugin ===<br />
<br />
[https://github.com/CycloneDX/cyclonedx-maven-plugin OWASP Dependency Track - CycloneDX Plugin]<br />
<br />
==== Single-Module Build ====<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [OWASP Dependency Track - CycloneDX Plugin] ++++++++++ --><br />
<br />
<!-- CLI: mvn org.cyclonedx:cyclonedx-maven-plugin:makeBom --><br />
<!-- CLI: mvn cyclonedx:makeBom --><br />
<!-- CLI: mvn org.cyclonedx:cyclonedx-maven-plugin:makeAggregateBom --><br />
<!-- CLI: mvn cyclonedx:makeAggregateBom --><br />
<plugin><br />
<groupId>org.cyclonedx</groupId><br />
<artifactId>cyclonedx-maven-plugin</artifactId><br />
<version>1.6.4</version><br />
<executions><br />
<execution><br />
<phase>verify</phase><br />
<goals><br />
<goal>makeBom</goal><br />
</goals><br />
</execution><br />
</executions><br />
<configuration><br />
<schemaVersion>1.1</schemaVersion><br />
<includeBomSerialNumber>true</includeBomSerialNumber><br />
<includeCompileScope>true</includeCompileScope><br />
<includeProvidedScope>true</includeProvidedScope><br />
<includeRuntimeScope>true</includeRuntimeScope><br />
<includeSystemScope>true</includeSystemScope><br />
<includeTestScope>false</includeTestScope><br />
<includeLicenseText>true</includeLicenseText><br />
<includeDependencyGraph>true</includeDependencyGraph><br />
</configuration><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
==== Multi-Module Build ====<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [OWASP Dependency Track - CycloneDX Plugin] ++++++++++ --><br />
<br />
<!-- CLI: mvn org.cyclonedx:cyclonedx-maven-plugin:makeBom --><br />
<!-- CLI: mvn cyclonedx:makeBom --><br />
<!-- CLI: mvn org.cyclonedx:cyclonedx-maven-plugin:makeAggregateBom --><br />
<!-- CLI: mvn cyclonedx:makeAggregateBom --><br />
<plugin><br />
<groupId>org.cyclonedx</groupId><br />
<artifactId>cyclonedx-maven-plugin</artifactId><br />
<version>1.6.4</version><br />
<executions><br />
<execution><br />
<phase>verify</phase><br />
<goals><br />
<goal>makeAggregateBom</goal><br />
</goals><br />
</execution><br />
</executions><br />
<configuration><br />
<schemaVersion>1.1</schemaVersion><br />
<includeBomSerialNumber>true</includeBomSerialNumber><br />
<includeCompileScope>true</includeCompileScope><br />
<includeProvidedScope>true</includeProvidedScope><br />
<includeRuntimeScope>true</includeRuntimeScope><br />
<includeSystemScope>true</includeSystemScope><br />
<includeTestScope>false</includeTestScope><br />
<includeLicenseText>true</includeLicenseText><br />
<includeDependencyGraph>true</includeDependencyGraph><br />
</configuration><br />
<inherited>false</inherited><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
=== Upload Plugin ===<br />
<br />
[https://github.com/pmckeown/dependency-track-maven-plugin OWASP Dependency Track - Upload Plugin]<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [OWASP Dependency Track - Upload Plugin] ++++++++++ --><br />
<br />
<!-- Caution: The dependency-track-maven-plugin must be specified after the cyclonedx-maven-plugin.<br />
Because both plugins are processed in the phase 'verify'. --><br />
<br />
<!-- CLI: mvn dependency-track:upload-bom --><br />
<plugin><br />
<groupId>io.github.pmckeown</groupId><br />
<artifactId>dependency-track-maven-plugin</artifactId><br />
<version>0.8.1</version><br />
<executions><br />
<execution><br />
<phase>verify</phase><br />
<goals><br />
<goal>upload-bom</goal><br />
</goals><br />
</execution><br />
</executions><br />
<configuration><br />
<dependencyTrackBaseUrl>http://...</dependencyTrackBaseUrl><br />
<apiKey>${dependencytrack.apikey}</apiKey><br />
</configuration><br />
<inherited>false</inherited><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
== OWASP Dependency Check ==<br />
<br />
[https://owasp.org/www-project-dependency-check/ OWASP Dependency Check]<br />
<br />
=== Signle-Module Build ===<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [OWASP Dependency Check Plugin] ++++++++++ --><br />
<br />
<!-- CLI: mvn org.owasp:dependency-check-maven:check --><br />
<!-- CLI: mvn dependency-check:check --><br />
<!-- CLI: mvn org.owasp:dependency-check-maven:aggregate --><br />
<!-- CLI: dependency-check:aggregate --><br />
<plugin><br />
<groupId>org.owasp</groupId><br />
<artifactId>dependency-check-maven</artifactId><br />
<version>5.3.2</version><br />
<configuration><br />
<skipProvidedScope>false</skipProvidedScope><br />
<skipRuntimeScope>false</skipRuntimeScope><br />
<retireJsAnalyzerEnabled>false</retireJsAnalyzerEnabled><br />
</configuration><br />
<executions><br />
<execution><br />
<goals><br />
<goal>check</goal><br />
</goals><br />
</execution><br />
</executions><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
=== Multi-Module Build ===<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [OWASP Dependency Check Plugin] ++++++++++ --><br />
<br />
<!-- CLI: mvn org.owasp:dependency-check-maven:check --><br />
<!-- CLI: mvn dependency-check:check --><br />
<!-- CLI: mvn org.owasp:dependency-check-maven:aggregate --><br />
<!-- CLI: dependency-check:aggregate --><br />
<!-- Caution: This plugin configuration (aggregated and not inherited) requires, that the project have been installed --><br />
<!-- (mvn install) at least once. Otherwise the OWASP Dependency Check creates a virtual dependency tree. --><br />
<plugin><br />
<groupId>org.owasp</groupId><br />
<artifactId>dependency-check-maven</artifactId><br />
<version>5.3.2</version><br />
<configuration><br />
<skipProvidedScope>false</skipProvidedScope><br />
<skipRuntimeScope>false</skipRuntimeScope><br />
<retireJsAnalyzerEnabled>false</retireJsAnalyzerEnabled><br />
</configuration><br />
<executions><br />
<execution><br />
<goals><br />
<goal>aggregate</goal><br />
</goals><br />
</execution><br />
</executions><br />
<inherited>false</inherited><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
== Sonatype OSS Index ==<br />
<br />
[https://sonatype.github.io/ossindex-maven/maven-plugin/ Sonatype OSS Index]<br />
<br />
==== Single-Module Build ====<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [Sonatype OSS Index Plugin] ++++++++++ --><br />
<br />
<!-- CLI: mvn org.sonatype.ossindex.maven:ossindex-maven-plugin:audit --><br />
<!-- CLI: mvn ossindex:audit --><br />
<!-- CLI: mvn org.sonatype.ossindex.maven:ossindex-maven-plugin:audit-aggregate --><br />
<!-- CLI: mvn ossindex:audit-aggregate --><br />
<plugin><br />
<groupId>org.sonatype.ossindex.maven</groupId><br />
<artifactId>ossindex-maven-plugin</artifactId><br />
<version>3.1.0</version><br />
<executions><br />
<execution><br />
<id>audit-dependencies</id><br />
<phase>validate</phase><br />
<goals><br />
<goal>audit</goal><br />
</goals><br />
</execution><br />
</executions><br />
<configuration><br />
<fail>false</fail><br />
</configuration><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
=== Multi-Module Build ===<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [Sonatype OSS Index Plugin] ++++++++++ --><br />
<br />
<!-- CLI: mvn org.sonatype.ossindex.maven:ossindex-maven-plugin:audit --><br />
<!-- CLI: mvn ossindex:audit --><br />
<!-- CLI: mvn org.sonatype.ossindex.maven:ossindex-maven-plugin:audit-aggregate --><br />
<!-- CLI: mvn ossindex:audit-aggregate --><br />
<!-- Caution: This plugin configuration (aggregated and non-inherited) requires, that the project have been installed --><br />
<!-- (mvn install) at least once. Otherwise the OWASP Dependency Check creates a virtual dependency tree. --><br />
<plugin><br />
<groupId>org.sonatype.ossindex.maven</groupId><br />
<artifactId>ossindex-maven-plugin</artifactId><br />
<version>3.1.0</version><br />
<executions><br />
<execution><br />
<id>audit-dependencies</id><br />
<phase>validate</phase><br />
<goals><br />
<goal>audit-aggregate</goal><br />
</goals><br />
</execution><br />
</executions><br />
<configuration><br />
<fail>false</fail><br />
</configuration><br />
<inherited>false</inherited><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
== Echo Plugin ==<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [Echo Plugin] ++++++++++ --><br />
<br />
<plugin><br />
<groupId>com.soebes.maven.plugins</groupId><br />
<artifactId>echo-maven-plugin</artifactId><br />
<version>0.4.0</version><br />
<executions><br />
<execution><br />
<id>echo-first-time</id><br />
<phase>validate</phase><br />
<goals><br />
<goal>echo</goal><br />
</goals><br />
<configuration><br />
<echos><br />
<echo>Project Version: ${project.version}</echo><br />
</echos><br />
</configuration><br />
</execution><br />
</executions><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br />
<br/><br />
<br />
== Antrun Plugin ==<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [Ant Run Plugin] ++++++++++ --><br />
<br />
<plugin><br />
<groupId>org.apache.maven.plugins</groupId><br />
<artifactId>maven-antrun-plugin</artifactId><br />
<version>3.0.0</version><br />
<executions><br />
<execution><br />
<phase>validate</phase><br />
<goals><br />
<goal>run</goal><br />
</goals><br />
<configuration><br />
<exportAntProperties>true</exportAntProperties><br />
<target><br />
<condition property="projectVersion" value="develop" else="${project.version}"><br />
<contains string="${project.version}" substring="-SNAPSHOT" /><br />
</condition><br />
<echo message="${projectVersion}"/><br />
</target><br />
</configuration><br />
</execution><br />
</executions><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/></div>
Jochen
https://wiki.fam-hammann.de/index.php?title=Maven&diff=560
Maven
2020-09-17T07:16:44Z
<p>Jochen: /* Multi-Module Build */</p>
<hr />
<div>__TOC__<br />
<br />
<br />
= Plugins =<br />
<br />
== OWASP Dependency Track ==<br />
<br />
[https://owasp.org/www-project-dependency-track/ OWASP Dependency Track]<br />
<br />
<br/><br />
<br />
=== CycloneDX Plugin ===<br />
<br />
[https://github.com/CycloneDX/cyclonedx-maven-plugin OWASP Dependency Track - CycloneDX Plugin]<br />
<br />
==== Single-Module Build ====<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [OWASP Dependency Track - CycloneDX Plugin] ++++++++++ --><br />
<br />
<!-- CLI: mvn org.cyclonedx:cyclonedx-maven-plugin:makeBom --><br />
<!-- CLI: mvn cyclonedx:makeBom --><br />
<!-- CLI: mvn org.cyclonedx:cyclonedx-maven-plugin:makeAggregateBom --><br />
<!-- CLI: mvn cyclonedx:makeAggregateBom --><br />
<plugin><br />
<groupId>org.cyclonedx</groupId><br />
<artifactId>cyclonedx-maven-plugin</artifactId><br />
<version>1.6.4</version><br />
<executions><br />
<execution><br />
<phase>verify</phase><br />
<goals><br />
<goal>makeBom</goal><br />
</goals><br />
</execution><br />
</executions><br />
<configuration><br />
<schemaVersion>1.1</schemaVersion><br />
<includeBomSerialNumber>true</includeBomSerialNumber><br />
<includeCompileScope>true</includeCompileScope><br />
<includeProvidedScope>true</includeProvidedScope><br />
<includeRuntimeScope>true</includeRuntimeScope><br />
<includeSystemScope>true</includeSystemScope><br />
<includeTestScope>false</includeTestScope><br />
<includeLicenseText>true</includeLicenseText><br />
<includeDependencyGraph>true</includeDependencyGraph><br />
</configuration><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
==== Multi-Module Build ====<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [OWASP Dependency Track - CycloneDX Plugin] ++++++++++ --><br />
<br />
<!-- CLI: mvn org.cyclonedx:cyclonedx-maven-plugin:makeBom --><br />
<!-- CLI: mvn cyclonedx:makeBom --><br />
<!-- CLI: mvn org.cyclonedx:cyclonedx-maven-plugin:makeAggregateBom --><br />
<!-- CLI: mvn cyclonedx:makeAggregateBom --><br />
<plugin><br />
<groupId>org.cyclonedx</groupId><br />
<artifactId>cyclonedx-maven-plugin</artifactId><br />
<version>1.6.4</version><br />
<executions><br />
<execution><br />
<phase>verify</phase><br />
<goals><br />
<goal>makeAggregateBom</goal><br />
</goals><br />
</execution><br />
</executions><br />
<configuration><br />
<schemaVersion>1.1</schemaVersion><br />
<includeBomSerialNumber>true</includeBomSerialNumber><br />
<includeCompileScope>true</includeCompileScope><br />
<includeProvidedScope>true</includeProvidedScope><br />
<includeRuntimeScope>true</includeRuntimeScope><br />
<includeSystemScope>true</includeSystemScope><br />
<includeTestScope>false</includeTestScope><br />
<includeLicenseText>true</includeLicenseText><br />
<includeDependencyGraph>true</includeDependencyGraph><br />
</configuration><br />
<inherited>false</inherited><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
=== Upload Plugin ===<br />
<br />
[https://github.com/pmckeown/dependency-track-maven-plugin OWASP Dependency Track - Upload Plugin]<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [OWASP Dependency Track - Upload Plugin] ++++++++++ --><br />
<br />
<!-- Caution: The dependency-track-maven-plugin must be specified after the cyclonedx-maven-plugin.<br />
Because both plugins are processed in the phase 'verify'. --><br />
<br />
<!-- CLI: mvn dependency-track:upload-bom --><br />
<plugin><br />
<groupId>io.github.pmckeown</groupId><br />
<artifactId>dependency-track-maven-plugin</artifactId><br />
<version>0.8.1</version><br />
<executions><br />
<execution><br />
<phase>verify</phase><br />
<goals><br />
<goal>upload-bom</goal><br />
</goals><br />
</execution><br />
</executions><br />
<configuration><br />
<dependencyTrackBaseUrl>http://...</dependencyTrackBaseUrl><br />
<apiKey>${dependencytrack.apikey}</apiKey><br />
</configuration><br />
<inherited>false</inherited><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
== OWASP Dependency Check ==<br />
<br />
[https://owasp.org/www-project-dependency-check/ OWASP Dependency Check]<br />
<br />
=== Signle-Module Build ===<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [OWASP Dependency Check Plugin] ++++++++++ --><br />
<br />
<!-- CLI: mvn org.owasp:dependency-check-maven:check --><br />
<!-- CLI: mvn dependency-check:check --><br />
<!-- CLI: mvn org.owasp:dependency-check-maven:aggregate --><br />
<!-- CLI: dependency-check:aggregate --><br />
<plugin><br />
<groupId>org.owasp</groupId><br />
<artifactId>dependency-check-maven</artifactId><br />
<version>5.3.2</version><br />
<configuration><br />
<skipProvidedScope>false</skipProvidedScope><br />
<skipRuntimeScope>false</skipRuntimeScope><br />
<retireJsAnalyzerEnabled>false</retireJsAnalyzerEnabled><br />
</configuration><br />
<executions><br />
<execution><br />
<goals><br />
<goal>check</goal><br />
</goals><br />
</execution><br />
</executions><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
=== Multi-Module Build ===<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [OWASP Dependency Check Plugin] ++++++++++ --><br />
<br />
<!-- CLI: mvn org.owasp:dependency-check-maven:check --><br />
<!-- CLI: mvn dependency-check:check --><br />
<!-- CLI: mvn org.owasp:dependency-check-maven:aggregate --><br />
<!-- CLI: dependency-check:aggregate --><br />
<!-- Caution: This plugin configuration (aggregated and not inherited) requires, that the project have been installed --><br />
<!-- (mvn install) at least once. Otherwise the OWASP Dependency Check creates a virtual dependency tree. --><br />
<plugin><br />
<groupId>org.owasp</groupId><br />
<artifactId>dependency-check-maven</artifactId><br />
<version>5.3.2</version><br />
<configuration><br />
<skipProvidedScope>false</skipProvidedScope><br />
<skipRuntimeScope>false</skipRuntimeScope><br />
<retireJsAnalyzerEnabled>false</retireJsAnalyzerEnabled><br />
</configuration><br />
<executions><br />
<execution><br />
<goals><br />
<goal>aggregate</goal><br />
</goals><br />
</execution><br />
</executions><br />
<inherited>false</inherited><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
== Sonatype OSS Index ==<br />
<br />
[https://sonatype.github.io/ossindex-maven/maven-plugin/ Sonatype OSS Index]<br />
<br />
=== Multi-Module Build ===<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [Sonatype OSS Index Plugin] ++++++++++ --><br />
<br />
<!-- CLI: mvn org.sonatype.ossindex.maven:ossindex-maven-plugin:audit --><br />
<!-- CLI: mvn ossindex:audit --><br />
<!-- CLI: mvn org.sonatype.ossindex.maven:ossindex-maven-plugin:audit-aggregate --><br />
<!-- CLI: mvn ossindex:audit-aggregate --><br />
<!-- Caution: This plugin configuration (aggregated and non-inherited) requires, that the project have been installed --><br />
<!-- (mvn install) at least once. Otherwise the OWASP Dependency Check creates a virtual dependency tree. --><br />
<plugin><br />
<groupId>org.sonatype.ossindex.maven</groupId><br />
<artifactId>ossindex-maven-plugin</artifactId><br />
<version>3.1.0</version><br />
<executions><br />
<execution><br />
<id>audit-dependencies</id><br />
<phase>validate</phase><br />
<goals><br />
<goal>audit-aggregate</goal><br />
</goals><br />
</execution><br />
</executions><br />
<configuration><br />
<fail>false</fail><br />
</configuration><br />
<inherited>false</inherited><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
== Echo Plugin ==<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [Echo Plugin] ++++++++++ --><br />
<br />
<plugin><br />
<groupId>com.soebes.maven.plugins</groupId><br />
<artifactId>echo-maven-plugin</artifactId><br />
<version>0.4.0</version><br />
<executions><br />
<execution><br />
<id>echo-first-time</id><br />
<phase>validate</phase><br />
<goals><br />
<goal>echo</goal><br />
</goals><br />
<configuration><br />
<echos><br />
<echo>Project Version: ${project.version}</echo><br />
</echos><br />
</configuration><br />
</execution><br />
</executions><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br />
<br/><br />
<br />
== Antrun Plugin ==<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [Ant Run Plugin] ++++++++++ --><br />
<br />
<plugin><br />
<groupId>org.apache.maven.plugins</groupId><br />
<artifactId>maven-antrun-plugin</artifactId><br />
<version>3.0.0</version><br />
<executions><br />
<execution><br />
<phase>validate</phase><br />
<goals><br />
<goal>run</goal><br />
</goals><br />
<configuration><br />
<exportAntProperties>true</exportAntProperties><br />
<target><br />
<condition property="projectVersion" value="develop" else="${project.version}"><br />
<contains string="${project.version}" substring="-SNAPSHOT" /><br />
</condition><br />
<echo message="${projectVersion}"/><br />
</target><br />
</configuration><br />
</execution><br />
</executions><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/></div>
Jochen
https://wiki.fam-hammann.de/index.php?title=Web_Development&diff=559
Web Development
2020-08-13T14:58:43Z
<p>Jochen: /* SameSite Cookies */</p>
<hr />
<div>__TOC__<br />
<br />
<br />
= Cross-Origin Resource Sharing (CORS) =<br />
<br />
== CORS in Tomcat aktivieren ==<br />
<br />
Für den Tomcat wird CORS in der jeweiligen <code>web.xml</code> Datei mit Hilfe eines Filters aktiviert.<br />
<br />
<syntaxhighlight lang='xml'><br />
<filter><br />
<filter-name>CorsFilter</filter-name><br />
<filter-class>org.apache.catalina.filters.CorsFilter</filter-class><br />
<async-supported>true</async-supported><br />
<init-param><br />
<param-name>cors.allowed.origins</param-name><br />
<param-value>*</param-value><br />
</init-param><br />
<init-param><br />
<param-name>cors.allowed.methods</param-name><br />
<param-value>GET,POST,HEAD,OPTIONS,PUT,PATCH</param-value><br />
</init-param><br />
<init-param><br />
<param-name>cors.allowed.headers</param-name><br />
<param-value>Origin, Accept, X-Requested-With, X-Requested-By, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers, authorization, x-customer<br />
</param-value><br />
</init-param><br />
</filter><br />
<filter-mapping><br />
<filter-name>CorsFilter</filter-name><br />
<url-pattern>/*</url-pattern><br />
</filter-mapping><br />
<br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
== CORS in IIS aktivieren ==<br />
<br />
Die folgenden Schritte wurden [https://stackoverflow.com/a/20126603 hier] entnommen und zeigen die Aktivierung von Cross Origin Resource Sharing (CORS) in den Microsoft Internet Informations Services.<br />
<br />
# First, configure the ''OPTIONSVerbHandler'' to execute before .Net handlers.<br/>In IIS console, select "Handler Mappings". (Do this either on server level or site level. On site level it will redefine all the handlers for your site and ignore any change done on server level after that. And of course on server level, this could break other sites if they need their own handling of options verb.)<br/>In Action pane, select "View ordered list...". Seek ''OPTIONSVerbHandler'', and move it up (lots of clicks...).<br/>You can also do this in web.config by redefining all handlers under <system.webServer><handlers>. (<clear> then <add ...> them back, this is what does the IIS console for you. By the way, there is no need to ask for "read" permission on this handler.)<br />
# Second, configure custom http headers for your cors needs, such as<br />
<syntaxhighlight lang='xml'><br />
<system.webServer><br />
<httpProtocol><br />
<customHeaders><br />
<add name="Access-Control-Allow-Origin" value="*"/><br />
<add name="Access-Control-Allow-Headers" value="Content-Type, Authorization, x-customer"/><br />
<add name="Access-Control-Allow-Methods" value="GET, POST, PUT, PATCH, DELETE, OPTIONS"/><br />
</customHeaders><br />
</httpProtocol><br />
</system.webServer><br />
</syntaxhighlight><br />
<br />
<br />
Eine sehr einfache web.config kann hier eingesehen werden.<br />
<syntaxhighlight lang='xml'><br />
<?xml version="1.0" encoding="UTF-8"?><br />
<configuration><br />
<system.webServer><br />
<httpProtocol><br />
<customHeaders><br />
<add name="Access-Control-Allow-Origin" value="*"/><br />
<add name="Access-Control-Allow-Headers" value="Content-Type, Authorization, x-customer"/><br />
<add name="Access-Control-Allow-Methods" value="GET, POST, PUT, PATCH, DELETE, OPTIONS"/><br />
</customHeaders><br />
</httpProtocol><br />
<handlers><br />
<clear /><br />
<add name="OPTIONSVerbHandler" path="*" verb="OPTIONS" type="" modules="ProtocolSupportModule" scriptProcessor="" resourceType="Unspecified" requireAccess="None" allowPathInfo="false" preCondition="" responseBufferLimit="4194304" /><br />
<add name="xamlx-ISAPI-4.0_64bit" path="*.xamlx" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="4194304" /><br />
<add name="xamlx-ISAPI-4.0_32bit" path="*.xamlx" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="4194304" /><br />
<add name="xamlx-Integrated-4.0" path="*.xamlx" verb="GET,HEAD,POST,DEBUG" type="System.Xaml.Hosting.XamlHttpHandlerFactory, System.Xaml.Hosting, Version=4.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="rules-ISAPI-4.0_64bit" path="*.rules" verb="*" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="4194304" /><br />
<add name="rules-ISAPI-4.0_32bit" path="*.rules" verb="*" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="4194304" /><br />
<add name="rules-Integrated-4.0" path="*.rules" verb="*" type="System.ServiceModel.Activation.ServiceHttpHandlerFactory, System.ServiceModel.Activation, Version=4.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="xoml-ISAPI-4.0_64bit" path="*.xoml" verb="*" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="4194304" /><br />
<add name="xoml-ISAPI-4.0_32bit" path="*.xoml" verb="*" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="4194304" /><br />
<add name="xoml-Integrated-4.0" path="*.xoml" verb="*" type="System.ServiceModel.Activation.ServiceHttpHandlerFactory, System.ServiceModel.Activation, Version=4.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="svc-ISAPI-4.0_64bit" path="*.svc" verb="*" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="4194304" /><br />
<add name="svc-ISAPI-4.0_32bit" path="*.svc" verb="*" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="4194304" /><br />
<add name="svc-Integrated-4.0" path="*.svc" verb="*" type="System.ServiceModel.Activation.ServiceHttpHandlerFactory, System.ServiceModel.Activation, Version=4.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="rules-64-ISAPI-2.0" path="*.rules" verb="*" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness64" responseBufferLimit="4194304" /><br />
<add name="rules-ISAPI-2.0" path="*.rules" verb="*" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness32" responseBufferLimit="4194304" /><br />
<add name="rules-Integrated" path="*.rules" verb="*" type="System.ServiceModel.Activation.HttpHandler, System.ServiceModel, Version=3.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv2.0" responseBufferLimit="4194304" /><br />
<add name="xoml-64-ISAPI-2.0" path="*.xoml" verb="*" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness64" responseBufferLimit="4194304" /><br />
<add name="xoml-ISAPI-2.0" path="*.xoml" verb="*" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness32" responseBufferLimit="4194304" /><br />
<add name="xoml-Integrated" path="*.xoml" verb="*" type="System.ServiceModel.Activation.HttpHandler, System.ServiceModel, Version=3.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv2.0" responseBufferLimit="4194304" /><br />
<add name="svc-ISAPI-2.0-64" path="*.svc" verb="*" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness64" responseBufferLimit="4194304" /><br />
<add name="svc-ISAPI-2.0" path="*.svc" verb="*" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness32" responseBufferLimit="4194304" /><br />
<add name="svc-Integrated" path="*.svc" verb="*" type="System.ServiceModel.Activation.HttpHandler, System.ServiceModel, Version=3.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv2.0" responseBufferLimit="4194304" /><br />
<add name="ASPClassic" path="*.asp" verb="GET,HEAD,POST" type="" modules="IsapiModule" scriptProcessor="%windir%\system32\inetsrv\asp.dll" resourceType="File" requireAccess="Script" allowPathInfo="false" preCondition="" responseBufferLimit="4194304" /><br />
<add name="SecurityCertificate" path="*.cer" verb="GET,HEAD,POST" type="" modules="IsapiModule" scriptProcessor="%windir%\system32\inetsrv\asp.dll" resourceType="File" requireAccess="Script" allowPathInfo="false" preCondition="" responseBufferLimit="4194304" /><br />
<add name="ISAPI-dll" path="*.dll" verb="*" type="" modules="IsapiModule" scriptProcessor="" resourceType="File" requireAccess="Execute" allowPathInfo="true" preCondition="" responseBufferLimit="4194304" /><br />
<add name="AXD-ISAPI-4.0_64bit" path="*.axd" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="0" /><br />
<add name="PageHandlerFactory-ISAPI-4.0_64bit" path="*.aspx" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="0" /><br />
<add name="SimpleHandlerFactory-ISAPI-4.0_64bit" path="*.ashx" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="0" /><br />
<add name="WebServiceHandlerFactory-ISAPI-4.0_64bit" path="*.asmx" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="0" /><br />
<add name="HttpRemotingHandlerFactory-rem-ISAPI-4.0_64bit" path="*.rem" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="0" /><br />
<add name="HttpRemotingHandlerFactory-soap-ISAPI-4.0_64bit" path="*.soap" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="0" /><br />
<add name="aspq-ISAPI-4.0_64bit" path="*.aspq" verb="*" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="0" /><br />
<add name="cshtm-ISAPI-4.0_64bit" path="*.cshtm" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="0" /><br />
<add name="cshtml-ISAPI-4.0_64bit" path="*.cshtml" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="0" /><br />
<add name="vbhtm-ISAPI-4.0_64bit" path="*.vbhtm" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="0" /><br />
<add name="vbhtml-ISAPI-4.0_64bit" path="*.vbhtml" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="0" /><br />
<add name="TraceHandler-Integrated-4.0" path="trace.axd" verb="GET,HEAD,POST,DEBUG" type="System.Web.Handlers.TraceHandler" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="WebAdminHandler-Integrated-4.0" path="WebAdmin.axd" verb="GET,DEBUG" type="System.Web.Handlers.WebAdminHandler" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="AssemblyResourceLoader-Integrated-4.0" path="WebResource.axd" verb="GET,DEBUG" type="System.Web.Handlers.AssemblyResourceLoader" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="PageHandlerFactory-Integrated-4.0" path="*.aspx" verb="GET,HEAD,POST,DEBUG" type="System.Web.UI.PageHandlerFactory" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="SimpleHandlerFactory-Integrated-4.0" path="*.ashx" verb="GET,HEAD,POST,DEBUG" type="System.Web.UI.SimpleHandlerFactory" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="WebServiceHandlerFactory-Integrated-4.0" path="*.asmx" verb="GET,HEAD,POST,DEBUG" type="System.Web.Script.Services.ScriptHandlerFactory, System.Web.Extensions, Version=4.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="HttpRemotingHandlerFactory-rem-Integrated-4.0" path="*.rem" verb="GET,HEAD,POST,DEBUG" type="System.Runtime.Remoting.Channels.Http.HttpRemotingHandlerFactory, System.Runtime.Remoting, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="HttpRemotingHandlerFactory-soap-Integrated-4.0" path="*.soap" verb="GET,HEAD,POST,DEBUG" type="System.Runtime.Remoting.Channels.Http.HttpRemotingHandlerFactory, System.Runtime.Remoting, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="aspq-Integrated-4.0" path="*.aspq" verb="GET,HEAD,POST,DEBUG" type="System.Web.HttpForbiddenHandler" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="cshtm-Integrated-4.0" path="*.cshtm" verb="GET,HEAD,POST,DEBUG" type="System.Web.HttpForbiddenHandler" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="cshtml-Integrated-4.0" path="*.cshtml" verb="GET,HEAD,POST,DEBUG" type="System.Web.HttpForbiddenHandler" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="vbhtm-Integrated-4.0" path="*.vbhtm" verb="GET,HEAD,POST,DEBUG" type="System.Web.HttpForbiddenHandler" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="vbhtml-Integrated-4.0" path="*.vbhtml" verb="GET,HEAD,POST,DEBUG" type="System.Web.HttpForbiddenHandler" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="ScriptHandlerFactoryAppServices-Integrated-4.0" path="*_AppService.axd" verb="*" type="System.Web.Script.Services.ScriptHandlerFactory, System.Web.Extensions, Version=4.0.0.0, Culture=neutral, PublicKeyToken=31BF3856AD364E35" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="ScriptResourceIntegrated-4.0" path="*ScriptResource.axd" verb="GET,HEAD" type="System.Web.Handlers.ScriptResourceHandler, System.Web.Extensions, Version=4.0.0.0, Culture=neutral, PublicKeyToken=31BF3856AD364E35" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="AXD-ISAPI-4.0_32bit" path="*.axd" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="0" /><br />
<add name="PageHandlerFactory-ISAPI-4.0_32bit" path="*.aspx" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="0" /><br />
<add name="SimpleHandlerFactory-ISAPI-4.0_32bit" path="*.ashx" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="0" /><br />
<add name="WebServiceHandlerFactory-ISAPI-4.0_32bit" path="*.asmx" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="0" /><br />
<add name="HttpRemotingHandlerFactory-rem-ISAPI-4.0_32bit" path="*.rem" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="0" /><br />
<add name="HttpRemotingHandlerFactory-soap-ISAPI-4.0_32bit" path="*.soap" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="0" /><br />
<add name="aspq-ISAPI-4.0_32bit" path="*.aspq" verb="*" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="0" /><br />
<add name="cshtm-ISAPI-4.0_32bit" path="*.cshtm" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="0" /><br />
<add name="cshtml-ISAPI-4.0_32bit" path="*.cshtml" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="0" /><br />
<add name="vbhtm-ISAPI-4.0_32bit" path="*.vbhtm" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="0" /><br />
<add name="vbhtml-ISAPI-4.0_32bit" path="*.vbhtml" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="0" /><br />
<add name="TraceHandler-Integrated" path="trace.axd" verb="GET,HEAD,POST,DEBUG" type="System.Web.Handlers.TraceHandler" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv2.0" responseBufferLimit="4194304" /><br />
<add name="WebAdminHandler-Integrated" path="WebAdmin.axd" verb="GET,DEBUG" type="System.Web.Handlers.WebAdminHandler" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv2.0" responseBufferLimit="4194304" /><br />
<add name="AssemblyResourceLoader-Integrated" path="WebResource.axd" verb="GET,DEBUG" type="System.Web.Handlers.AssemblyResourceLoader" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv2.0" responseBufferLimit="4194304" /><br />
<add name="PageHandlerFactory-Integrated" path="*.aspx" verb="GET,HEAD,POST,DEBUG" type="System.Web.UI.PageHandlerFactory" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv2.0" responseBufferLimit="4194304" /><br />
<add name="SimpleHandlerFactory-Integrated" path="*.ashx" verb="GET,HEAD,POST,DEBUG" type="System.Web.UI.SimpleHandlerFactory" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv2.0" responseBufferLimit="4194304" /><br />
<add name="WebServiceHandlerFactory-Integrated" path="*.asmx" verb="GET,HEAD,POST,DEBUG" type="System.Web.Services.Protocols.WebServiceHandlerFactory, System.Web.Services, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv2.0" responseBufferLimit="4194304" /><br />
<add name="HttpRemotingHandlerFactory-rem-Integrated" path="*.rem" verb="GET,HEAD,POST,DEBUG" type="System.Runtime.Remoting.Channels.Http.HttpRemotingHandlerFactory, System.Runtime.Remoting, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv2.0" responseBufferLimit="4194304" /><br />
<add name="HttpRemotingHandlerFactory-soap-Integrated" path="*.soap" verb="GET,HEAD,POST,DEBUG" type="System.Runtime.Remoting.Channels.Http.HttpRemotingHandlerFactory, System.Runtime.Remoting, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv2.0" responseBufferLimit="4194304" /><br />
<add name="AXD-ISAPI-2.0" path="*.axd" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness32" responseBufferLimit="0" /><br />
<add name="PageHandlerFactory-ISAPI-2.0" path="*.aspx" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness32" responseBufferLimit="0" /><br />
<add name="SimpleHandlerFactory-ISAPI-2.0" path="*.ashx" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness32" responseBufferLimit="0" /><br />
<add name="WebServiceHandlerFactory-ISAPI-2.0" path="*.asmx" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness32" responseBufferLimit="0" /><br />
<add name="HttpRemotingHandlerFactory-rem-ISAPI-2.0" path="*.rem" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness32" responseBufferLimit="0" /><br />
<add name="HttpRemotingHandlerFactory-soap-ISAPI-2.0" path="*.soap" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness32" responseBufferLimit="0" /><br />
<add name="AXD-ISAPI-2.0-64" path="*.axd" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness64" responseBufferLimit="0" /><br />
<add name="PageHandlerFactory-ISAPI-2.0-64" path="*.aspx" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness64" responseBufferLimit="0" /><br />
<add name="SimpleHandlerFactory-ISAPI-2.0-64" path="*.ashx" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness64" responseBufferLimit="0" /><br />
<add name="WebServiceHandlerFactory-ISAPI-2.0-64" path="*.asmx" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness64" responseBufferLimit="0" /><br />
<add name="HttpRemotingHandlerFactory-rem-ISAPI-2.0-64" path="*.rem" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness64" responseBufferLimit="0" /><br />
<add name="HttpRemotingHandlerFactory-soap-ISAPI-2.0-64" path="*.soap" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness64" responseBufferLimit="0" /><br />
<add name="TRACEVerbHandler" path="*" verb="TRACE" type="" modules="ProtocolSupportModule" scriptProcessor="" resourceType="Unspecified" requireAccess="None" allowPathInfo="false" preCondition="" responseBufferLimit="4194304" /><br />
<add name="ExtensionlessUrlHandler-ISAPI-4.0_32bit" path="*." verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="0" /><br />
<add name="ExtensionlessUrlHandler-ISAPI-4.0_64bit" path="*." verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="0" /><br />
<add name="ExtensionlessUrlHandler-Integrated-4.0" path="*." verb="GET,HEAD,POST,DEBUG" type="System.Web.Handlers.TransferRequestHandler" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="0" /><br />
<add name="StaticFile" path="*" verb="*" type="" modules="StaticFileModule,DefaultDocumentModule,DirectoryListingModule" scriptProcessor="" resourceType="Either" requireAccess="Read" allowPathInfo="false" preCondition="" responseBufferLimit="4194304" /><br />
</handlers><br />
</system.webServer><br />
</configuration><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
= Custom (OS) Protocol Handler =<br />
<br />
Custom Protocol Handler im Allgemeinen ermöglichen die Verwendung eigener Protokolle in Web Browser - z.B. stweb://my.web. Diese Custom Protocol Handler gibt es in zwei Ausprägungen: web-basiert und Betriebssystem-spezifisch.<br />
<br />
<br/><br />
<br />
== Custom Web Protocol Handler ==<br />
<br />
Diese werden mit Hilfe der JavaScript Funktion <code>navigator.registerProtocolHandler()</code> registriert.<br />
<br />
Beispiel:<br />
<br />
<syntaxhighlight lang="javascript"><br />
navigator.registerProtocolHandler("burger",<br />
"http://www.google.co.uk/?uri=%s",<br />
"Burger handler");<br />
<br />
<a href="burger:cheeseburger">link</a><br />
</syntaxhighlight><br />
<br />
Links:<br />
* [https://developer.mozilla.org/de/docs/Web-based_protocol_handlers MDN, ''Web-based protocol handlers'']<br />
<br />
<br/><br />
<br />
== Custom OS Protocol Handler ==<br />
<br />
=== Custom Windows Protocol Handler ===<br />
<br />
Diese werden in der Windows Registry registriert.<br />
<br />
Beispiel (stweb) - .reg File:<br />
<br />
<syntaxhighlight lang="text"><br />
Windows Registry Editor Version 5.00<br />
[HKEY_CLASSES_ROOT\stweb]<br />
"URL Protocol"=""<br />
[HKEY_CLASSES_ROOT\stweb\Shell]<br />
[HKEY_CLASSES_ROOT\stweb\Shell\Open]<br />
[HKEY_CLASSES_ROOT\stweb\Shell\Open\Command]<br />
@="\"C:\\Temp\\customProtocolHandler.exe\" \"%1\""<br />
</syntaxhighlight><br />
<br />
<br />
'''Achtung:''' URLs, welche ein Custom Protocol enthalten (z.B. stweb:foo.bar) können in Google Chrome nicht im URL Eingabefeld verwendet werden, da diese dort nicht verarbeitet werden. Ist eine URL mit Custom Protocol Handler jedoch innerhalb einer HTML Seite als href Attribut eines Anchors (<a> Tag) enthalten, wird der Custom Windows Protocol Handler verarbeitet und die externe Applikation nach einer Sicherheitsabfrage gestartet bzw. geöffnet.<br />
<br />
Links:<br />
* [https://msdn.microsoft.com/de-de/en_us/library/aa767914(VS.85).aspx MSDN, “Registering an Application to a URI Scheme”]<br />
* [https://blogs.msdn.com/b/noahc/archive/2006/10/19/register-a-custom-url-protocol-handler.aspx Noah Coad, “Register a Custom URL Protocol Handler”]<br />
* [https://support.shotgunsoftware.com/entries/86754-How-to-launch-external-applications-using-custom-protocols-rock-instead-of-http- Don Parker, “How to launch external applications using custom protocols (rock:// instead of http://)]”<br />
<br />
<br/><br />
<br />
=== Custom Linux Protocol Handler ===<br />
<br />
Links:<br />
* [https://support.shotgunsoftware.com/entries/86754-How-to-launch-external-applications-using-custom-protocols-rock-instead-of-http- Don Parker, “How to launch external applications using custom protocols (rock:// instead of http://)”]<br />
<br />
<br/><br />
<br />
= Session Management =<br />
<br />
== Access / Refresh Token ==<br />
<br />
An dieser Stelle sollen Eigenschaften von Refresh Token festgehalten werden, die in einer Recherche von JHA am 19.09.2019 eruiert wurden. Die folgende Liste beschreibt interessante Links zum Thema ''Refresh Token''.<br />
<br />
* [https://auth0.com/learn/refresh-tokens/ Understanding Refresh Tokens (Auth0)]<br />
* [https://auth0.com/docs/tokens/refresh-token/current Refresh Tokens (Auth0)]<br />
* [https://auth0.com/blog/refresh-tokens-what-are-they-and-when-to-use-them/ Refresh Tokens: When to Use Them and How They Interact with JWTs (Auth0)]<br />
* [https://auth0.com/docs/api-auth/tutorials/silent-authentication Silent Authentication (Auth0)]<br />
* [https://auth0.com/blog/5-steps-to-add-modern-authentication-to-legacy-apps-using-jwts/ 5 Steps to Add Modern Authentication to Legacy Apps Using JWTs (Auth0)]<br />
* [https://auth0.com/docs/security/store-tokens Where to Store Tokens (Auth0)]<br />
<br />
<br/><br />
<br />
== Speicherort von Refresh Token ==<br />
<br />
Entsprechend der [https://auth0.com/ Auth0] Spezifikation von [https://auth0.com/docs/tokens/refresh-token/current Refresh Tokens] dürfen Refresh Token nicht in einem Browser gespeichert werden.<br />
<br />
<blockquote><br />
''A Single-Page Application (normally implementing Implicit Flow) should not ever receive a Refresh Token. A Refresh Token is essentially a user credential that allows a user to remain authenticated indefinitely. '''This sensitive information should be stored securely and not exposed client-side in a browser'''.''<br />
<br />
''If you are implementing an SPA using Implicit Flow and you need to renew a token, the only secure option for doing so is to use [https://auth0.com/docs/api-auth/tutorials/silent-authentication Silent Authentication].''<br />
</blockquote><br />
<br />
<br/><br />
<br />
== Silent Authentication für Single Page Applications (SPA) ==<br />
<br />
Wie bereits im vorhergehenden Kapitel erwähnt, bietet sich für eine Single Page Application (SPA) eine [https://auth0.com/docs/api-auth/tutorials/silent-authentication Silent Authentication] an.<br />
<br />
Hier wird aus einer noch nicht abgelaufenen Session ein neues Session/Access Token (z.B. JWT) erzeugt. Beispielsweise mit Hilfe eines Parameter ''expires_in'' (Minuten, Stunden, Tage, etc.). Dieser wird dem Web Client nach eines erfolgreichen Logins mitgeteilt. Der Web Client konfiguriert einen Timer vor diesen Wert. Nach Ablauf des Timers ist die Session also noch kurze Zeit gültig. Mit dieser gültigen Session führt der Web Client nun eine ''Silent Authentication'' durch und erhält eine neues Session/Access Token (z.B. JWT).<br />
<br />
Ein Problem hierbei ist die Erneuerung der Session mit dem aktuellen Session/Access Token. Ein Angreifer könnte dies nutzen, das Session/Access Token immer wieder zu erneuern. Um diesem Problem entgegen zu wirken, muss die Web Application die Möglichkeit bieten, Sessions via Web GUI einzusehen und zu beenden.<br />
<br />
<br/><br />
<br />
== Sliding Sessions ==<br />
<br />
Ein weiterer Ansatz, eine Session gültig zu halten sind Sliding Sessions (beschrieben in diesem [https://auth0.com/blog/refresh-tokens-what-are-they-and-when-to-use-them/ Artikel]). Hierbei wird bei jedem Request am Web Service ein neues Session/Access Token (z.B. JWT) erstellt. Dieses ersetzt jeweils das aktuelle Session/Access Token. Hier ist dann allerdings dasselbe Problem zu erwarten, das auch die ''Silent Authentication'' besitzt: Ein Angreifer könnte die Session beliebig lange offen halten.<br />
<br />
<br/><br />
<br />
== JWT Tokens ==<br />
<br />
* [https://auth0.com/learn/token-based-authentication-made-easy/ Token Based Authentication Made Easy (Auth0)]<br />
<br />
<br/><br />
<br />
== JWT Tokens in Self-Contained Systems und Microservices Architekturen ==<br />
<br />
Die folgenden Artikel beschäftigen sich mit der Verwendung von JWT Tokens in verteilten Service Architekturen.<br />
<br />
=== Blog Beiträge ===<br />
<br />
* [https://stormpath.com/blog/microservices-jwt-spring-boot Tutorial: Establish Trust Between Microservices with JWT and Spring Boot]<br />
* [https://medium.com/tech-tajawal/microservice-authentication-and-authorization-solutions-e0e5e74b248a Microservices Authentication and Authorization Solutions]<br />
* [http://alexander.holbreich.org/jwt/ JSON Web Tokens are made for Microservices]<br />
* [http://proficientblog.com/microservices-security/ Microservices Security – OAuth2 and OpenID Connect]<br />
<br />
<br/><br />
<br />
=== Stack Overflow ===<br />
<br />
* [https://stackoverflow.com/a/56149939 Use JWT to authenticate separate API Microservice]<br />
* [https://stackoverflow.com/a/26834685 JWT (JSON Web Token) automatic prolongation of expiration]<br />
<br />
<br/><br />
<br />
= Cookies =<br />
<br />
== SameSite Cookies ==<br />
<br />
Die folgenden Artikel beschreiben SameSite Cookies, sowie die Bestimmung einer Same Site.<br />
<br />
* [https://web.dev/samesite-cookies-explained/ SameSite cookies explained]<br />
* [https://tools.ietf.org/html/draft-ietf-httpbis-rfc6265bis RFC 6265bis: Cookies: HTTP State Management Mechanism (draft)]<br />
* [https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Set-Cookie/SameSite MDN: SameSite cookies]<br />
* [https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Set-Cookie MDN: Set-Cookie]<br />
* [https://developer.mozilla.org/en-US/docs/Glossary/Site MDN: Site]<br />
* [https://html.spec.whatwg.org/multipage/origin.html#sites HTML - Living Standard: Sites]<br />
* [https://url.spec.whatwg.org/#host-miscellaneous URL - Living Standard: Host miscellaneous (public suffix, registrable domain)]<br />
* [https://publicsuffix.org/list/ Public Suffix List]<br />
<br />
<br/></div>
Jochen
https://wiki.fam-hammann.de/index.php?title=Web_Development&diff=558
Web Development
2020-08-13T14:55:29Z
<p>Jochen: </p>
<hr />
<div>__TOC__<br />
<br />
<br />
= Cross-Origin Resource Sharing (CORS) =<br />
<br />
== CORS in Tomcat aktivieren ==<br />
<br />
Für den Tomcat wird CORS in der jeweiligen <code>web.xml</code> Datei mit Hilfe eines Filters aktiviert.<br />
<br />
<syntaxhighlight lang='xml'><br />
<filter><br />
<filter-name>CorsFilter</filter-name><br />
<filter-class>org.apache.catalina.filters.CorsFilter</filter-class><br />
<async-supported>true</async-supported><br />
<init-param><br />
<param-name>cors.allowed.origins</param-name><br />
<param-value>*</param-value><br />
</init-param><br />
<init-param><br />
<param-name>cors.allowed.methods</param-name><br />
<param-value>GET,POST,HEAD,OPTIONS,PUT,PATCH</param-value><br />
</init-param><br />
<init-param><br />
<param-name>cors.allowed.headers</param-name><br />
<param-value>Origin, Accept, X-Requested-With, X-Requested-By, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers, authorization, x-customer<br />
</param-value><br />
</init-param><br />
</filter><br />
<filter-mapping><br />
<filter-name>CorsFilter</filter-name><br />
<url-pattern>/*</url-pattern><br />
</filter-mapping><br />
<br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
== CORS in IIS aktivieren ==<br />
<br />
Die folgenden Schritte wurden [https://stackoverflow.com/a/20126603 hier] entnommen und zeigen die Aktivierung von Cross Origin Resource Sharing (CORS) in den Microsoft Internet Informations Services.<br />
<br />
# First, configure the ''OPTIONSVerbHandler'' to execute before .Net handlers.<br/>In IIS console, select "Handler Mappings". (Do this either on server level or site level. On site level it will redefine all the handlers for your site and ignore any change done on server level after that. And of course on server level, this could break other sites if they need their own handling of options verb.)<br/>In Action pane, select "View ordered list...". Seek ''OPTIONSVerbHandler'', and move it up (lots of clicks...).<br/>You can also do this in web.config by redefining all handlers under <system.webServer><handlers>. (<clear> then <add ...> them back, this is what does the IIS console for you. By the way, there is no need to ask for "read" permission on this handler.)<br />
# Second, configure custom http headers for your cors needs, such as<br />
<syntaxhighlight lang='xml'><br />
<system.webServer><br />
<httpProtocol><br />
<customHeaders><br />
<add name="Access-Control-Allow-Origin" value="*"/><br />
<add name="Access-Control-Allow-Headers" value="Content-Type, Authorization, x-customer"/><br />
<add name="Access-Control-Allow-Methods" value="GET, POST, PUT, PATCH, DELETE, OPTIONS"/><br />
</customHeaders><br />
</httpProtocol><br />
</system.webServer><br />
</syntaxhighlight><br />
<br />
<br />
Eine sehr einfache web.config kann hier eingesehen werden.<br />
<syntaxhighlight lang='xml'><br />
<?xml version="1.0" encoding="UTF-8"?><br />
<configuration><br />
<system.webServer><br />
<httpProtocol><br />
<customHeaders><br />
<add name="Access-Control-Allow-Origin" value="*"/><br />
<add name="Access-Control-Allow-Headers" value="Content-Type, Authorization, x-customer"/><br />
<add name="Access-Control-Allow-Methods" value="GET, POST, PUT, PATCH, DELETE, OPTIONS"/><br />
</customHeaders><br />
</httpProtocol><br />
<handlers><br />
<clear /><br />
<add name="OPTIONSVerbHandler" path="*" verb="OPTIONS" type="" modules="ProtocolSupportModule" scriptProcessor="" resourceType="Unspecified" requireAccess="None" allowPathInfo="false" preCondition="" responseBufferLimit="4194304" /><br />
<add name="xamlx-ISAPI-4.0_64bit" path="*.xamlx" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="4194304" /><br />
<add name="xamlx-ISAPI-4.0_32bit" path="*.xamlx" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="4194304" /><br />
<add name="xamlx-Integrated-4.0" path="*.xamlx" verb="GET,HEAD,POST,DEBUG" type="System.Xaml.Hosting.XamlHttpHandlerFactory, System.Xaml.Hosting, Version=4.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="rules-ISAPI-4.0_64bit" path="*.rules" verb="*" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="4194304" /><br />
<add name="rules-ISAPI-4.0_32bit" path="*.rules" verb="*" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="4194304" /><br />
<add name="rules-Integrated-4.0" path="*.rules" verb="*" type="System.ServiceModel.Activation.ServiceHttpHandlerFactory, System.ServiceModel.Activation, Version=4.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="xoml-ISAPI-4.0_64bit" path="*.xoml" verb="*" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="4194304" /><br />
<add name="xoml-ISAPI-4.0_32bit" path="*.xoml" verb="*" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="4194304" /><br />
<add name="xoml-Integrated-4.0" path="*.xoml" verb="*" type="System.ServiceModel.Activation.ServiceHttpHandlerFactory, System.ServiceModel.Activation, Version=4.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="svc-ISAPI-4.0_64bit" path="*.svc" verb="*" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="4194304" /><br />
<add name="svc-ISAPI-4.0_32bit" path="*.svc" verb="*" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="4194304" /><br />
<add name="svc-Integrated-4.0" path="*.svc" verb="*" type="System.ServiceModel.Activation.ServiceHttpHandlerFactory, System.ServiceModel.Activation, Version=4.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="rules-64-ISAPI-2.0" path="*.rules" verb="*" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness64" responseBufferLimit="4194304" /><br />
<add name="rules-ISAPI-2.0" path="*.rules" verb="*" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness32" responseBufferLimit="4194304" /><br />
<add name="rules-Integrated" path="*.rules" verb="*" type="System.ServiceModel.Activation.HttpHandler, System.ServiceModel, Version=3.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv2.0" responseBufferLimit="4194304" /><br />
<add name="xoml-64-ISAPI-2.0" path="*.xoml" verb="*" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness64" responseBufferLimit="4194304" /><br />
<add name="xoml-ISAPI-2.0" path="*.xoml" verb="*" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness32" responseBufferLimit="4194304" /><br />
<add name="xoml-Integrated" path="*.xoml" verb="*" type="System.ServiceModel.Activation.HttpHandler, System.ServiceModel, Version=3.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv2.0" responseBufferLimit="4194304" /><br />
<add name="svc-ISAPI-2.0-64" path="*.svc" verb="*" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness64" responseBufferLimit="4194304" /><br />
<add name="svc-ISAPI-2.0" path="*.svc" verb="*" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness32" responseBufferLimit="4194304" /><br />
<add name="svc-Integrated" path="*.svc" verb="*" type="System.ServiceModel.Activation.HttpHandler, System.ServiceModel, Version=3.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv2.0" responseBufferLimit="4194304" /><br />
<add name="ASPClassic" path="*.asp" verb="GET,HEAD,POST" type="" modules="IsapiModule" scriptProcessor="%windir%\system32\inetsrv\asp.dll" resourceType="File" requireAccess="Script" allowPathInfo="false" preCondition="" responseBufferLimit="4194304" /><br />
<add name="SecurityCertificate" path="*.cer" verb="GET,HEAD,POST" type="" modules="IsapiModule" scriptProcessor="%windir%\system32\inetsrv\asp.dll" resourceType="File" requireAccess="Script" allowPathInfo="false" preCondition="" responseBufferLimit="4194304" /><br />
<add name="ISAPI-dll" path="*.dll" verb="*" type="" modules="IsapiModule" scriptProcessor="" resourceType="File" requireAccess="Execute" allowPathInfo="true" preCondition="" responseBufferLimit="4194304" /><br />
<add name="AXD-ISAPI-4.0_64bit" path="*.axd" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="0" /><br />
<add name="PageHandlerFactory-ISAPI-4.0_64bit" path="*.aspx" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="0" /><br />
<add name="SimpleHandlerFactory-ISAPI-4.0_64bit" path="*.ashx" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="0" /><br />
<add name="WebServiceHandlerFactory-ISAPI-4.0_64bit" path="*.asmx" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="0" /><br />
<add name="HttpRemotingHandlerFactory-rem-ISAPI-4.0_64bit" path="*.rem" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="0" /><br />
<add name="HttpRemotingHandlerFactory-soap-ISAPI-4.0_64bit" path="*.soap" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="0" /><br />
<add name="aspq-ISAPI-4.0_64bit" path="*.aspq" verb="*" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="0" /><br />
<add name="cshtm-ISAPI-4.0_64bit" path="*.cshtm" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="0" /><br />
<add name="cshtml-ISAPI-4.0_64bit" path="*.cshtml" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="0" /><br />
<add name="vbhtm-ISAPI-4.0_64bit" path="*.vbhtm" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="0" /><br />
<add name="vbhtml-ISAPI-4.0_64bit" path="*.vbhtml" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="0" /><br />
<add name="TraceHandler-Integrated-4.0" path="trace.axd" verb="GET,HEAD,POST,DEBUG" type="System.Web.Handlers.TraceHandler" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="WebAdminHandler-Integrated-4.0" path="WebAdmin.axd" verb="GET,DEBUG" type="System.Web.Handlers.WebAdminHandler" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="AssemblyResourceLoader-Integrated-4.0" path="WebResource.axd" verb="GET,DEBUG" type="System.Web.Handlers.AssemblyResourceLoader" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="PageHandlerFactory-Integrated-4.0" path="*.aspx" verb="GET,HEAD,POST,DEBUG" type="System.Web.UI.PageHandlerFactory" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="SimpleHandlerFactory-Integrated-4.0" path="*.ashx" verb="GET,HEAD,POST,DEBUG" type="System.Web.UI.SimpleHandlerFactory" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="WebServiceHandlerFactory-Integrated-4.0" path="*.asmx" verb="GET,HEAD,POST,DEBUG" type="System.Web.Script.Services.ScriptHandlerFactory, System.Web.Extensions, Version=4.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="HttpRemotingHandlerFactory-rem-Integrated-4.0" path="*.rem" verb="GET,HEAD,POST,DEBUG" type="System.Runtime.Remoting.Channels.Http.HttpRemotingHandlerFactory, System.Runtime.Remoting, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="HttpRemotingHandlerFactory-soap-Integrated-4.0" path="*.soap" verb="GET,HEAD,POST,DEBUG" type="System.Runtime.Remoting.Channels.Http.HttpRemotingHandlerFactory, System.Runtime.Remoting, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="aspq-Integrated-4.0" path="*.aspq" verb="GET,HEAD,POST,DEBUG" type="System.Web.HttpForbiddenHandler" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="cshtm-Integrated-4.0" path="*.cshtm" verb="GET,HEAD,POST,DEBUG" type="System.Web.HttpForbiddenHandler" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="cshtml-Integrated-4.0" path="*.cshtml" verb="GET,HEAD,POST,DEBUG" type="System.Web.HttpForbiddenHandler" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="vbhtm-Integrated-4.0" path="*.vbhtm" verb="GET,HEAD,POST,DEBUG" type="System.Web.HttpForbiddenHandler" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="vbhtml-Integrated-4.0" path="*.vbhtml" verb="GET,HEAD,POST,DEBUG" type="System.Web.HttpForbiddenHandler" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="ScriptHandlerFactoryAppServices-Integrated-4.0" path="*_AppService.axd" verb="*" type="System.Web.Script.Services.ScriptHandlerFactory, System.Web.Extensions, Version=4.0.0.0, Culture=neutral, PublicKeyToken=31BF3856AD364E35" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="ScriptResourceIntegrated-4.0" path="*ScriptResource.axd" verb="GET,HEAD" type="System.Web.Handlers.ScriptResourceHandler, System.Web.Extensions, Version=4.0.0.0, Culture=neutral, PublicKeyToken=31BF3856AD364E35" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="4194304" /><br />
<add name="AXD-ISAPI-4.0_32bit" path="*.axd" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="0" /><br />
<add name="PageHandlerFactory-ISAPI-4.0_32bit" path="*.aspx" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="0" /><br />
<add name="SimpleHandlerFactory-ISAPI-4.0_32bit" path="*.ashx" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="0" /><br />
<add name="WebServiceHandlerFactory-ISAPI-4.0_32bit" path="*.asmx" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="0" /><br />
<add name="HttpRemotingHandlerFactory-rem-ISAPI-4.0_32bit" path="*.rem" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="0" /><br />
<add name="HttpRemotingHandlerFactory-soap-ISAPI-4.0_32bit" path="*.soap" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="0" /><br />
<add name="aspq-ISAPI-4.0_32bit" path="*.aspq" verb="*" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="0" /><br />
<add name="cshtm-ISAPI-4.0_32bit" path="*.cshtm" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="0" /><br />
<add name="cshtml-ISAPI-4.0_32bit" path="*.cshtml" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="0" /><br />
<add name="vbhtm-ISAPI-4.0_32bit" path="*.vbhtm" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="0" /><br />
<add name="vbhtml-ISAPI-4.0_32bit" path="*.vbhtml" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="0" /><br />
<add name="TraceHandler-Integrated" path="trace.axd" verb="GET,HEAD,POST,DEBUG" type="System.Web.Handlers.TraceHandler" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv2.0" responseBufferLimit="4194304" /><br />
<add name="WebAdminHandler-Integrated" path="WebAdmin.axd" verb="GET,DEBUG" type="System.Web.Handlers.WebAdminHandler" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv2.0" responseBufferLimit="4194304" /><br />
<add name="AssemblyResourceLoader-Integrated" path="WebResource.axd" verb="GET,DEBUG" type="System.Web.Handlers.AssemblyResourceLoader" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv2.0" responseBufferLimit="4194304" /><br />
<add name="PageHandlerFactory-Integrated" path="*.aspx" verb="GET,HEAD,POST,DEBUG" type="System.Web.UI.PageHandlerFactory" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv2.0" responseBufferLimit="4194304" /><br />
<add name="SimpleHandlerFactory-Integrated" path="*.ashx" verb="GET,HEAD,POST,DEBUG" type="System.Web.UI.SimpleHandlerFactory" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv2.0" responseBufferLimit="4194304" /><br />
<add name="WebServiceHandlerFactory-Integrated" path="*.asmx" verb="GET,HEAD,POST,DEBUG" type="System.Web.Services.Protocols.WebServiceHandlerFactory, System.Web.Services, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv2.0" responseBufferLimit="4194304" /><br />
<add name="HttpRemotingHandlerFactory-rem-Integrated" path="*.rem" verb="GET,HEAD,POST,DEBUG" type="System.Runtime.Remoting.Channels.Http.HttpRemotingHandlerFactory, System.Runtime.Remoting, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv2.0" responseBufferLimit="4194304" /><br />
<add name="HttpRemotingHandlerFactory-soap-Integrated" path="*.soap" verb="GET,HEAD,POST,DEBUG" type="System.Runtime.Remoting.Channels.Http.HttpRemotingHandlerFactory, System.Runtime.Remoting, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv2.0" responseBufferLimit="4194304" /><br />
<add name="AXD-ISAPI-2.0" path="*.axd" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness32" responseBufferLimit="0" /><br />
<add name="PageHandlerFactory-ISAPI-2.0" path="*.aspx" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness32" responseBufferLimit="0" /><br />
<add name="SimpleHandlerFactory-ISAPI-2.0" path="*.ashx" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness32" responseBufferLimit="0" /><br />
<add name="WebServiceHandlerFactory-ISAPI-2.0" path="*.asmx" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness32" responseBufferLimit="0" /><br />
<add name="HttpRemotingHandlerFactory-rem-ISAPI-2.0" path="*.rem" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness32" responseBufferLimit="0" /><br />
<add name="HttpRemotingHandlerFactory-soap-ISAPI-2.0" path="*.soap" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness32" responseBufferLimit="0" /><br />
<add name="AXD-ISAPI-2.0-64" path="*.axd" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness64" responseBufferLimit="0" /><br />
<add name="PageHandlerFactory-ISAPI-2.0-64" path="*.aspx" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness64" responseBufferLimit="0" /><br />
<add name="SimpleHandlerFactory-ISAPI-2.0-64" path="*.ashx" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness64" responseBufferLimit="0" /><br />
<add name="WebServiceHandlerFactory-ISAPI-2.0-64" path="*.asmx" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness64" responseBufferLimit="0" /><br />
<add name="HttpRemotingHandlerFactory-rem-ISAPI-2.0-64" path="*.rem" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness64" responseBufferLimit="0" /><br />
<add name="HttpRemotingHandlerFactory-soap-ISAPI-2.0-64" path="*.soap" verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv2.0,bitness64" responseBufferLimit="0" /><br />
<add name="TRACEVerbHandler" path="*" verb="TRACE" type="" modules="ProtocolSupportModule" scriptProcessor="" resourceType="Unspecified" requireAccess="None" allowPathInfo="false" preCondition="" responseBufferLimit="4194304" /><br />
<add name="ExtensionlessUrlHandler-ISAPI-4.0_32bit" path="*." verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness32" responseBufferLimit="0" /><br />
<add name="ExtensionlessUrlHandler-ISAPI-4.0_64bit" path="*." verb="GET,HEAD,POST,DEBUG" type="" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v4.0.30319\aspnet_isapi.dll" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="classicMode,runtimeVersionv4.0,bitness64" responseBufferLimit="0" /><br />
<add name="ExtensionlessUrlHandler-Integrated-4.0" path="*." verb="GET,HEAD,POST,DEBUG" type="System.Web.Handlers.TransferRequestHandler" modules="ManagedPipelineHandler" scriptProcessor="" resourceType="Unspecified" requireAccess="Script" allowPathInfo="false" preCondition="integratedMode,runtimeVersionv4.0" responseBufferLimit="0" /><br />
<add name="StaticFile" path="*" verb="*" type="" modules="StaticFileModule,DefaultDocumentModule,DirectoryListingModule" scriptProcessor="" resourceType="Either" requireAccess="Read" allowPathInfo="false" preCondition="" responseBufferLimit="4194304" /><br />
</handlers><br />
</system.webServer><br />
</configuration><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
= Custom (OS) Protocol Handler =<br />
<br />
Custom Protocol Handler im Allgemeinen ermöglichen die Verwendung eigener Protokolle in Web Browser - z.B. stweb://my.web. Diese Custom Protocol Handler gibt es in zwei Ausprägungen: web-basiert und Betriebssystem-spezifisch.<br />
<br />
<br/><br />
<br />
== Custom Web Protocol Handler ==<br />
<br />
Diese werden mit Hilfe der JavaScript Funktion <code>navigator.registerProtocolHandler()</code> registriert.<br />
<br />
Beispiel:<br />
<br />
<syntaxhighlight lang="javascript"><br />
navigator.registerProtocolHandler("burger",<br />
"http://www.google.co.uk/?uri=%s",<br />
"Burger handler");<br />
<br />
<a href="burger:cheeseburger">link</a><br />
</syntaxhighlight><br />
<br />
Links:<br />
* [https://developer.mozilla.org/de/docs/Web-based_protocol_handlers MDN, ''Web-based protocol handlers'']<br />
<br />
<br/><br />
<br />
== Custom OS Protocol Handler ==<br />
<br />
=== Custom Windows Protocol Handler ===<br />
<br />
Diese werden in der Windows Registry registriert.<br />
<br />
Beispiel (stweb) - .reg File:<br />
<br />
<syntaxhighlight lang="text"><br />
Windows Registry Editor Version 5.00<br />
[HKEY_CLASSES_ROOT\stweb]<br />
"URL Protocol"=""<br />
[HKEY_CLASSES_ROOT\stweb\Shell]<br />
[HKEY_CLASSES_ROOT\stweb\Shell\Open]<br />
[HKEY_CLASSES_ROOT\stweb\Shell\Open\Command]<br />
@="\"C:\\Temp\\customProtocolHandler.exe\" \"%1\""<br />
</syntaxhighlight><br />
<br />
<br />
'''Achtung:''' URLs, welche ein Custom Protocol enthalten (z.B. stweb:foo.bar) können in Google Chrome nicht im URL Eingabefeld verwendet werden, da diese dort nicht verarbeitet werden. Ist eine URL mit Custom Protocol Handler jedoch innerhalb einer HTML Seite als href Attribut eines Anchors (<a> Tag) enthalten, wird der Custom Windows Protocol Handler verarbeitet und die externe Applikation nach einer Sicherheitsabfrage gestartet bzw. geöffnet.<br />
<br />
Links:<br />
* [https://msdn.microsoft.com/de-de/en_us/library/aa767914(VS.85).aspx MSDN, “Registering an Application to a URI Scheme”]<br />
* [https://blogs.msdn.com/b/noahc/archive/2006/10/19/register-a-custom-url-protocol-handler.aspx Noah Coad, “Register a Custom URL Protocol Handler”]<br />
* [https://support.shotgunsoftware.com/entries/86754-How-to-launch-external-applications-using-custom-protocols-rock-instead-of-http- Don Parker, “How to launch external applications using custom protocols (rock:// instead of http://)]”<br />
<br />
<br/><br />
<br />
=== Custom Linux Protocol Handler ===<br />
<br />
Links:<br />
* [https://support.shotgunsoftware.com/entries/86754-How-to-launch-external-applications-using-custom-protocols-rock-instead-of-http- Don Parker, “How to launch external applications using custom protocols (rock:// instead of http://)”]<br />
<br />
<br/><br />
<br />
= Session Management =<br />
<br />
== Access / Refresh Token ==<br />
<br />
An dieser Stelle sollen Eigenschaften von Refresh Token festgehalten werden, die in einer Recherche von JHA am 19.09.2019 eruiert wurden. Die folgende Liste beschreibt interessante Links zum Thema ''Refresh Token''.<br />
<br />
* [https://auth0.com/learn/refresh-tokens/ Understanding Refresh Tokens (Auth0)]<br />
* [https://auth0.com/docs/tokens/refresh-token/current Refresh Tokens (Auth0)]<br />
* [https://auth0.com/blog/refresh-tokens-what-are-they-and-when-to-use-them/ Refresh Tokens: When to Use Them and How They Interact with JWTs (Auth0)]<br />
* [https://auth0.com/docs/api-auth/tutorials/silent-authentication Silent Authentication (Auth0)]<br />
* [https://auth0.com/blog/5-steps-to-add-modern-authentication-to-legacy-apps-using-jwts/ 5 Steps to Add Modern Authentication to Legacy Apps Using JWTs (Auth0)]<br />
* [https://auth0.com/docs/security/store-tokens Where to Store Tokens (Auth0)]<br />
<br />
<br/><br />
<br />
== Speicherort von Refresh Token ==<br />
<br />
Entsprechend der [https://auth0.com/ Auth0] Spezifikation von [https://auth0.com/docs/tokens/refresh-token/current Refresh Tokens] dürfen Refresh Token nicht in einem Browser gespeichert werden.<br />
<br />
<blockquote><br />
''A Single-Page Application (normally implementing Implicit Flow) should not ever receive a Refresh Token. A Refresh Token is essentially a user credential that allows a user to remain authenticated indefinitely. '''This sensitive information should be stored securely and not exposed client-side in a browser'''.''<br />
<br />
''If you are implementing an SPA using Implicit Flow and you need to renew a token, the only secure option for doing so is to use [https://auth0.com/docs/api-auth/tutorials/silent-authentication Silent Authentication].''<br />
</blockquote><br />
<br />
<br/><br />
<br />
== Silent Authentication für Single Page Applications (SPA) ==<br />
<br />
Wie bereits im vorhergehenden Kapitel erwähnt, bietet sich für eine Single Page Application (SPA) eine [https://auth0.com/docs/api-auth/tutorials/silent-authentication Silent Authentication] an.<br />
<br />
Hier wird aus einer noch nicht abgelaufenen Session ein neues Session/Access Token (z.B. JWT) erzeugt. Beispielsweise mit Hilfe eines Parameter ''expires_in'' (Minuten, Stunden, Tage, etc.). Dieser wird dem Web Client nach eines erfolgreichen Logins mitgeteilt. Der Web Client konfiguriert einen Timer vor diesen Wert. Nach Ablauf des Timers ist die Session also noch kurze Zeit gültig. Mit dieser gültigen Session führt der Web Client nun eine ''Silent Authentication'' durch und erhält eine neues Session/Access Token (z.B. JWT).<br />
<br />
Ein Problem hierbei ist die Erneuerung der Session mit dem aktuellen Session/Access Token. Ein Angreifer könnte dies nutzen, das Session/Access Token immer wieder zu erneuern. Um diesem Problem entgegen zu wirken, muss die Web Application die Möglichkeit bieten, Sessions via Web GUI einzusehen und zu beenden.<br />
<br />
<br/><br />
<br />
== Sliding Sessions ==<br />
<br />
Ein weiterer Ansatz, eine Session gültig zu halten sind Sliding Sessions (beschrieben in diesem [https://auth0.com/blog/refresh-tokens-what-are-they-and-when-to-use-them/ Artikel]). Hierbei wird bei jedem Request am Web Service ein neues Session/Access Token (z.B. JWT) erstellt. Dieses ersetzt jeweils das aktuelle Session/Access Token. Hier ist dann allerdings dasselbe Problem zu erwarten, das auch die ''Silent Authentication'' besitzt: Ein Angreifer könnte die Session beliebig lange offen halten.<br />
<br />
<br/><br />
<br />
== JWT Tokens ==<br />
<br />
* [https://auth0.com/learn/token-based-authentication-made-easy/ Token Based Authentication Made Easy (Auth0)]<br />
<br />
<br/><br />
<br />
== JWT Tokens in Self-Contained Systems und Microservices Architekturen ==<br />
<br />
Die folgenden Artikel beschäftigen sich mit der Verwendung von JWT Tokens in verteilten Service Architekturen.<br />
<br />
=== Blog Beiträge ===<br />
<br />
* [https://stormpath.com/blog/microservices-jwt-spring-boot Tutorial: Establish Trust Between Microservices with JWT and Spring Boot]<br />
* [https://medium.com/tech-tajawal/microservice-authentication-and-authorization-solutions-e0e5e74b248a Microservices Authentication and Authorization Solutions]<br />
* [http://alexander.holbreich.org/jwt/ JSON Web Tokens are made for Microservices]<br />
* [http://proficientblog.com/microservices-security/ Microservices Security – OAuth2 and OpenID Connect]<br />
<br />
<br/><br />
<br />
=== Stack Overflow ===<br />
<br />
* [https://stackoverflow.com/a/56149939 Use JWT to authenticate separate API Microservice]<br />
* [https://stackoverflow.com/a/26834685 JWT (JSON Web Token) automatic prolongation of expiration]<br />
<br />
<br/><br />
<br />
= Cookies =<br />
<br />
== SameSite Cookies ==<br />
<br />
Die folgenden Artikel beschreiben SameSite Cookies, sowie die Bestimmung einer Same Site.<br />
<br />
* [https://web.dev/samesite-cookies-explained/ SameSite cookies explained]<br />
* [https://tools.ietf.org/html/draft-ietf-httpbis-rfc6265bis RFC 6265bis: Cookies: HTTP State Management Mechanism (draft)]<br />
* [https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Set-Cookie/SameSite MDN: SameSite cookies]<br />
* [https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Set-Cookie MDN: Set-Cookie]<br />
* [https://developer.mozilla.org/en-US/docs/Glossary/Site MDN: Site]<br />
* [https://html.spec.whatwg.org/multipage/origin.html#sites HTML Living Standard: Sites]<br />
* [https://url.spec.whatwg.org/#host-miscellaneous URL Living Standard: Host miscellaneous (public suffix, registrable domain)]<br />
* [https://publicsuffix.org/list/ Public Suffix List]<br />
<br />
<br/></div>
Jochen
https://wiki.fam-hammann.de/index.php?title=Maven&diff=557
Maven
2020-07-30T07:05:27Z
<p>Jochen: /* Signle-Module Build */</p>
<hr />
<div>__TOC__<br />
<br />
<br />
= Plugins =<br />
<br />
== OWASP Dependency Track ==<br />
<br />
[https://owasp.org/www-project-dependency-track/ OWASP Dependency Track]<br />
<br />
<br/><br />
<br />
=== CycloneDX Plugin ===<br />
<br />
[https://github.com/CycloneDX/cyclonedx-maven-plugin OWASP Dependency Track - CycloneDX Plugin]<br />
<br />
==== Single-Module Build ====<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [OWASP Dependency Track - CycloneDX Plugin] ++++++++++ --><br />
<br />
<!-- CLI: mvn org.cyclonedx:cyclonedx-maven-plugin:makeBom --><br />
<!-- CLI: mvn cyclonedx:makeBom --><br />
<!-- CLI: mvn org.cyclonedx:cyclonedx-maven-plugin:makeAggregateBom --><br />
<!-- CLI: mvn cyclonedx:makeAggregateBom --><br />
<plugin><br />
<groupId>org.cyclonedx</groupId><br />
<artifactId>cyclonedx-maven-plugin</artifactId><br />
<version>1.6.4</version><br />
<executions><br />
<execution><br />
<phase>verify</phase><br />
<goals><br />
<goal>makeBom</goal><br />
</goals><br />
</execution><br />
</executions><br />
<configuration><br />
<schemaVersion>1.1</schemaVersion><br />
<includeBomSerialNumber>true</includeBomSerialNumber><br />
<includeCompileScope>true</includeCompileScope><br />
<includeProvidedScope>true</includeProvidedScope><br />
<includeRuntimeScope>true</includeRuntimeScope><br />
<includeSystemScope>true</includeSystemScope><br />
<includeTestScope>false</includeTestScope><br />
<includeLicenseText>true</includeLicenseText><br />
<includeDependencyGraph>true</includeDependencyGraph><br />
</configuration><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
==== Multi-Module Build ====<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [OWASP Dependency Track - CycloneDX Plugin] ++++++++++ --><br />
<br />
<!-- CLI: mvn org.cyclonedx:cyclonedx-maven-plugin:makeBom --><br />
<!-- CLI: mvn cyclonedx:makeBom --><br />
<!-- CLI: mvn org.cyclonedx:cyclonedx-maven-plugin:makeAggregateBom --><br />
<!-- CLI: mvn cyclonedx:makeAggregateBom --><br />
<plugin><br />
<groupId>org.cyclonedx</groupId><br />
<artifactId>cyclonedx-maven-plugin</artifactId><br />
<version>1.6.4</version><br />
<executions><br />
<execution><br />
<phase>verify</phase><br />
<goals><br />
<goal>makeAggregateBom</goal><br />
</goals><br />
</execution><br />
</executions><br />
<configuration><br />
<schemaVersion>1.1</schemaVersion><br />
<includeBomSerialNumber>true</includeBomSerialNumber><br />
<includeCompileScope>true</includeCompileScope><br />
<includeProvidedScope>true</includeProvidedScope><br />
<includeRuntimeScope>true</includeRuntimeScope><br />
<includeSystemScope>true</includeSystemScope><br />
<includeTestScope>false</includeTestScope><br />
<includeLicenseText>true</includeLicenseText><br />
<includeDependencyGraph>true</includeDependencyGraph><br />
</configuration><br />
<inherited>false</inherited><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
=== Upload Plugin ===<br />
<br />
[https://github.com/pmckeown/dependency-track-maven-plugin OWASP Dependency Track - Upload Plugin]<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [OWASP Dependency Track - Upload Plugin] ++++++++++ --><br />
<br />
<!-- Caution: The dependency-track-maven-plugin must be specified after the cyclonedx-maven-plugin.<br />
Because both plugins are processed in the phase 'verify'. --><br />
<br />
<!-- CLI: mvn dependency-track:upload-bom --><br />
<plugin><br />
<groupId>io.github.pmckeown</groupId><br />
<artifactId>dependency-track-maven-plugin</artifactId><br />
<version>0.8.1</version><br />
<executions><br />
<execution><br />
<phase>verify</phase><br />
<goals><br />
<goal>upload-bom</goal><br />
</goals><br />
</execution><br />
</executions><br />
<configuration><br />
<dependencyTrackBaseUrl>http://...</dependencyTrackBaseUrl><br />
<apiKey>${dependencytrack.apikey}</apiKey><br />
</configuration><br />
<inherited>false</inherited><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
== OWASP Dependency Check ==<br />
<br />
[https://owasp.org/www-project-dependency-check/ OWASP Dependency Check]<br />
<br />
=== Signle-Module Build ===<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [OWASP Dependency Check Plugin] ++++++++++ --><br />
<br />
<!-- CLI: mvn org.owasp:dependency-check-maven:check --><br />
<!-- CLI: mvn dependency-check:check --><br />
<!-- CLI: mvn org.owasp:dependency-check-maven:aggregate --><br />
<!-- CLI: dependency-check:aggregate --><br />
<plugin><br />
<groupId>org.owasp</groupId><br />
<artifactId>dependency-check-maven</artifactId><br />
<version>5.3.2</version><br />
<configuration><br />
<skipProvidedScope>false</skipProvidedScope><br />
<skipRuntimeScope>false</skipRuntimeScope><br />
<retireJsAnalyzerEnabled>false</retireJsAnalyzerEnabled><br />
</configuration><br />
<executions><br />
<execution><br />
<goals><br />
<goal>check</goal><br />
</goals><br />
</execution><br />
</executions><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
=== Multi-Module Build ===<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [OWASP Dependency Check Plugin] ++++++++++ --><br />
<br />
<!-- CLI: mvn org.owasp:dependency-check-maven:check --><br />
<!-- CLI: mvn dependency-check:check --><br />
<!-- CLI: mvn org.owasp:dependency-check-maven:aggregate --><br />
<!-- CLI: dependency-check:aggregate --><br />
<!-- Caution: This plugin configuration (aggregated and not inherited) requires, that the project have been installed --><br />
<!-- (mvn install) at least once. Otherwise the OWASP Dependency Check creates a virtual dependency tree. --><br />
<plugin><br />
<groupId>org.owasp</groupId><br />
<artifactId>dependency-check-maven</artifactId><br />
<version>5.3.2</version><br />
<configuration><br />
<skipProvidedScope>false</skipProvidedScope><br />
<skipRuntimeScope>false</skipRuntimeScope><br />
<retireJsAnalyzerEnabled>false</retireJsAnalyzerEnabled><br />
</configuration><br />
<executions><br />
<execution><br />
<goals><br />
<goal>aggregate</goal><br />
</goals><br />
</execution><br />
</executions><br />
<inherited>false</inherited><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
== Sonatype OSS Index ==<br />
<br />
[https://sonatype.github.io/ossindex-maven/maven-plugin/ Sonatype OSS Index]<br />
<br />
=== Multi-Module Build ===<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [Sonatype OSS Index Plugin] ++++++++++ --><br />
<br />
<!-- CLI: mvn org.sonatype.ossindex.maven:ossindex-maven-plugin:audit --><br />
<!-- CLI: mvn ossindex:audit --><br />
<!-- CLI: mvn org.sonatype.ossindex.maven:ossindex-maven-plugin:audit-aggregate --><br />
<!-- CLI: mvn ossindex:audit-aggregate --><br />
<!-- Caution: This plugin configuration (aggregated and non-inherited) requires, that the project have been installed --><br />
<!-- (mvn install) at least once. Otherwise the OWASP Dependency Check creates a virtual dependency tree. --><br />
<plugin><br />
<groupId>org.sonatype.ossindex.maven</groupId><br />
<artifactId>ossindex-maven-plugin</artifactId><br />
<version>3.1.0</version><br />
<executions><br />
<execution><br />
<id>audit-dependencies</id><br />
<phase>validate</phase><br />
<goals><br />
<goal>audit-aggregate</goal><br />
</goals><br />
</execution><br />
</executions><br />
<configuration><br />
<fail>false</fail><br />
<excludeCoordinates><br />
<exclude><br />
<groupId>de.servicetrace.gxt</groupId><br />
<artifactId>inspinia</artifactId><br />
<version>1.1.0</version><br />
</exclude><br />
</excludeCoordinates><br />
</configuration><br />
<inherited>false</inherited><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
== Echo Plugin ==<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [Echo Plugin] ++++++++++ --><br />
<br />
<plugin><br />
<groupId>com.soebes.maven.plugins</groupId><br />
<artifactId>echo-maven-plugin</artifactId><br />
<version>0.4.0</version><br />
<executions><br />
<execution><br />
<id>echo-first-time</id><br />
<phase>validate</phase><br />
<goals><br />
<goal>echo</goal><br />
</goals><br />
<configuration><br />
<echos><br />
<echo>Project Version: ${project.version}</echo><br />
</echos><br />
</configuration><br />
</execution><br />
</executions><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br />
<br/><br />
<br />
== Antrun Plugin ==<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [Ant Run Plugin] ++++++++++ --><br />
<br />
<plugin><br />
<groupId>org.apache.maven.plugins</groupId><br />
<artifactId>maven-antrun-plugin</artifactId><br />
<version>3.0.0</version><br />
<executions><br />
<execution><br />
<phase>validate</phase><br />
<goals><br />
<goal>run</goal><br />
</goals><br />
<configuration><br />
<exportAntProperties>true</exportAntProperties><br />
<target><br />
<condition property="projectVersion" value="develop" else="${project.version}"><br />
<contains string="${project.version}" substring="-SNAPSHOT" /><br />
</condition><br />
<echo message="${projectVersion}"/><br />
</target><br />
</configuration><br />
</execution><br />
</executions><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/></div>
Jochen
https://wiki.fam-hammann.de/index.php?title=Maven&diff=556
Maven
2020-07-30T07:04:23Z
<p>Jochen: /* Multi-Module Build */</p>
<hr />
<div>__TOC__<br />
<br />
<br />
= Plugins =<br />
<br />
== OWASP Dependency Track ==<br />
<br />
[https://owasp.org/www-project-dependency-track/ OWASP Dependency Track]<br />
<br />
<br/><br />
<br />
=== CycloneDX Plugin ===<br />
<br />
[https://github.com/CycloneDX/cyclonedx-maven-plugin OWASP Dependency Track - CycloneDX Plugin]<br />
<br />
==== Single-Module Build ====<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [OWASP Dependency Track - CycloneDX Plugin] ++++++++++ --><br />
<br />
<!-- CLI: mvn org.cyclonedx:cyclonedx-maven-plugin:makeBom --><br />
<!-- CLI: mvn cyclonedx:makeBom --><br />
<!-- CLI: mvn org.cyclonedx:cyclonedx-maven-plugin:makeAggregateBom --><br />
<!-- CLI: mvn cyclonedx:makeAggregateBom --><br />
<plugin><br />
<groupId>org.cyclonedx</groupId><br />
<artifactId>cyclonedx-maven-plugin</artifactId><br />
<version>1.6.4</version><br />
<executions><br />
<execution><br />
<phase>verify</phase><br />
<goals><br />
<goal>makeBom</goal><br />
</goals><br />
</execution><br />
</executions><br />
<configuration><br />
<schemaVersion>1.1</schemaVersion><br />
<includeBomSerialNumber>true</includeBomSerialNumber><br />
<includeCompileScope>true</includeCompileScope><br />
<includeProvidedScope>true</includeProvidedScope><br />
<includeRuntimeScope>true</includeRuntimeScope><br />
<includeSystemScope>true</includeSystemScope><br />
<includeTestScope>false</includeTestScope><br />
<includeLicenseText>true</includeLicenseText><br />
<includeDependencyGraph>true</includeDependencyGraph><br />
</configuration><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
==== Multi-Module Build ====<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [OWASP Dependency Track - CycloneDX Plugin] ++++++++++ --><br />
<br />
<!-- CLI: mvn org.cyclonedx:cyclonedx-maven-plugin:makeBom --><br />
<!-- CLI: mvn cyclonedx:makeBom --><br />
<!-- CLI: mvn org.cyclonedx:cyclonedx-maven-plugin:makeAggregateBom --><br />
<!-- CLI: mvn cyclonedx:makeAggregateBom --><br />
<plugin><br />
<groupId>org.cyclonedx</groupId><br />
<artifactId>cyclonedx-maven-plugin</artifactId><br />
<version>1.6.4</version><br />
<executions><br />
<execution><br />
<phase>verify</phase><br />
<goals><br />
<goal>makeAggregateBom</goal><br />
</goals><br />
</execution><br />
</executions><br />
<configuration><br />
<schemaVersion>1.1</schemaVersion><br />
<includeBomSerialNumber>true</includeBomSerialNumber><br />
<includeCompileScope>true</includeCompileScope><br />
<includeProvidedScope>true</includeProvidedScope><br />
<includeRuntimeScope>true</includeRuntimeScope><br />
<includeSystemScope>true</includeSystemScope><br />
<includeTestScope>false</includeTestScope><br />
<includeLicenseText>true</includeLicenseText><br />
<includeDependencyGraph>true</includeDependencyGraph><br />
</configuration><br />
<inherited>false</inherited><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
=== Upload Plugin ===<br />
<br />
[https://github.com/pmckeown/dependency-track-maven-plugin OWASP Dependency Track - Upload Plugin]<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [OWASP Dependency Track - Upload Plugin] ++++++++++ --><br />
<br />
<!-- Caution: The dependency-track-maven-plugin must be specified after the cyclonedx-maven-plugin.<br />
Because both plugins are processed in the phase 'verify'. --><br />
<br />
<!-- CLI: mvn dependency-track:upload-bom --><br />
<plugin><br />
<groupId>io.github.pmckeown</groupId><br />
<artifactId>dependency-track-maven-plugin</artifactId><br />
<version>0.8.1</version><br />
<executions><br />
<execution><br />
<phase>verify</phase><br />
<goals><br />
<goal>upload-bom</goal><br />
</goals><br />
</execution><br />
</executions><br />
<configuration><br />
<dependencyTrackBaseUrl>http://...</dependencyTrackBaseUrl><br />
<apiKey>${dependencytrack.apikey}</apiKey><br />
</configuration><br />
<inherited>false</inherited><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
== OWASP Dependency Check ==<br />
<br />
[https://owasp.org/www-project-dependency-check/ OWASP Dependency Check]<br />
<br />
=== Signle-Module Build ===<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [OWASP Dependency Check Plugin] ++++++++++ --><br />
<br />
<!-- CLI: mvn org.owasp:dependency-check-maven:check --><br />
<!-- CLI: mvn dependency-check:check --><br />
<!-- CLI: mvn org.owasp:dependency-check-maven:aggregate --><br />
<!-- CLI: dependency-check:aggregate --><br />
<!-- Caution: This plugin configuration (aggregated and not inherited) requires, that the project have been installed --><br />
<!-- (mvn install) at least once. Otherwise the OWASP Dependency Check creates a virtual dependency tree. --><br />
<plugin><br />
<groupId>org.owasp</groupId><br />
<artifactId>dependency-check-maven</artifactId><br />
<version>5.3.2</version><br />
<configuration><br />
<skipProvidedScope>false</skipProvidedScope><br />
<skipRuntimeScope>false</skipRuntimeScope><br />
<retireJsAnalyzerEnabled>false</retireJsAnalyzerEnabled><br />
</configuration><br />
<executions><br />
<execution><br />
<goals><br />
<goal>aggregate</goal><br />
</goals><br />
</execution><br />
</executions><br />
<inherited>false</inherited><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
=== Multi-Module Build ===<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [OWASP Dependency Check Plugin] ++++++++++ --><br />
<br />
<!-- CLI: mvn org.owasp:dependency-check-maven:check --><br />
<!-- CLI: mvn dependency-check:check --><br />
<!-- CLI: mvn org.owasp:dependency-check-maven:aggregate --><br />
<!-- CLI: dependency-check:aggregate --><br />
<!-- Caution: This plugin configuration (aggregated and not inherited) requires, that the project have been installed --><br />
<!-- (mvn install) at least once. Otherwise the OWASP Dependency Check creates a virtual dependency tree. --><br />
<plugin><br />
<groupId>org.owasp</groupId><br />
<artifactId>dependency-check-maven</artifactId><br />
<version>5.3.2</version><br />
<configuration><br />
<skipProvidedScope>false</skipProvidedScope><br />
<skipRuntimeScope>false</skipRuntimeScope><br />
<retireJsAnalyzerEnabled>false</retireJsAnalyzerEnabled><br />
</configuration><br />
<executions><br />
<execution><br />
<goals><br />
<goal>aggregate</goal><br />
</goals><br />
</execution><br />
</executions><br />
<inherited>false</inherited><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
== Sonatype OSS Index ==<br />
<br />
[https://sonatype.github.io/ossindex-maven/maven-plugin/ Sonatype OSS Index]<br />
<br />
=== Multi-Module Build ===<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [Sonatype OSS Index Plugin] ++++++++++ --><br />
<br />
<!-- CLI: mvn org.sonatype.ossindex.maven:ossindex-maven-plugin:audit --><br />
<!-- CLI: mvn ossindex:audit --><br />
<!-- CLI: mvn org.sonatype.ossindex.maven:ossindex-maven-plugin:audit-aggregate --><br />
<!-- CLI: mvn ossindex:audit-aggregate --><br />
<!-- Caution: This plugin configuration (aggregated and non-inherited) requires, that the project have been installed --><br />
<!-- (mvn install) at least once. Otherwise the OWASP Dependency Check creates a virtual dependency tree. --><br />
<plugin><br />
<groupId>org.sonatype.ossindex.maven</groupId><br />
<artifactId>ossindex-maven-plugin</artifactId><br />
<version>3.1.0</version><br />
<executions><br />
<execution><br />
<id>audit-dependencies</id><br />
<phase>validate</phase><br />
<goals><br />
<goal>audit-aggregate</goal><br />
</goals><br />
</execution><br />
</executions><br />
<configuration><br />
<fail>false</fail><br />
<excludeCoordinates><br />
<exclude><br />
<groupId>de.servicetrace.gxt</groupId><br />
<artifactId>inspinia</artifactId><br />
<version>1.1.0</version><br />
</exclude><br />
</excludeCoordinates><br />
</configuration><br />
<inherited>false</inherited><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
== Echo Plugin ==<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [Echo Plugin] ++++++++++ --><br />
<br />
<plugin><br />
<groupId>com.soebes.maven.plugins</groupId><br />
<artifactId>echo-maven-plugin</artifactId><br />
<version>0.4.0</version><br />
<executions><br />
<execution><br />
<id>echo-first-time</id><br />
<phase>validate</phase><br />
<goals><br />
<goal>echo</goal><br />
</goals><br />
<configuration><br />
<echos><br />
<echo>Project Version: ${project.version}</echo><br />
</echos><br />
</configuration><br />
</execution><br />
</executions><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br />
<br/><br />
<br />
== Antrun Plugin ==<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [Ant Run Plugin] ++++++++++ --><br />
<br />
<plugin><br />
<groupId>org.apache.maven.plugins</groupId><br />
<artifactId>maven-antrun-plugin</artifactId><br />
<version>3.0.0</version><br />
<executions><br />
<execution><br />
<phase>validate</phase><br />
<goals><br />
<goal>run</goal><br />
</goals><br />
<configuration><br />
<exportAntProperties>true</exportAntProperties><br />
<target><br />
<condition property="projectVersion" value="develop" else="${project.version}"><br />
<contains string="${project.version}" substring="-SNAPSHOT" /><br />
</condition><br />
<echo message="${projectVersion}"/><br />
</target><br />
</configuration><br />
</execution><br />
</executions><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/></div>
Jochen
https://wiki.fam-hammann.de/index.php?title=Maven&diff=555
Maven
2020-07-30T06:48:45Z
<p>Jochen: /* Multi-Module Build */</p>
<hr />
<div>__TOC__<br />
<br />
<br />
= Plugins =<br />
<br />
== OWASP Dependency Track ==<br />
<br />
[https://owasp.org/www-project-dependency-track/ OWASP Dependency Track]<br />
<br />
<br/><br />
<br />
=== CycloneDX Plugin ===<br />
<br />
[https://github.com/CycloneDX/cyclonedx-maven-plugin OWASP Dependency Track - CycloneDX Plugin]<br />
<br />
==== Multi-Module Build ====<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [OWASP Dependency Track - CycloneDX Plugin] ++++++++++ --><br />
<br />
<!-- CLI: mvn org.cyclonedx:cyclonedx-maven-plugin:makeBom --><br />
<!-- CLI: mvn cyclonedx:makeBom --><br />
<!-- CLI: mvn org.cyclonedx:cyclonedx-maven-plugin:makeAggregateBom --><br />
<!-- CLI: mvn cyclonedx:makeAggregateBom --><br />
<plugin><br />
<groupId>org.cyclonedx</groupId><br />
<artifactId>cyclonedx-maven-plugin</artifactId><br />
<version>1.6.4</version><br />
<executions><br />
<execution><br />
<phase>verify</phase><br />
<goals><br />
<goal>makeAggregateBom</goal><br />
</goals><br />
</execution><br />
</executions><br />
<configuration><br />
<schemaVersion>1.1</schemaVersion><br />
<includeBomSerialNumber>true</includeBomSerialNumber><br />
<includeCompileScope>true</includeCompileScope><br />
<includeProvidedScope>true</includeProvidedScope><br />
<includeRuntimeScope>true</includeRuntimeScope><br />
<includeSystemScope>true</includeSystemScope><br />
<includeTestScope>false</includeTestScope><br />
<includeLicenseText>true</includeLicenseText><br />
<includeDependencyGraph>true</includeDependencyGraph><br />
</configuration><br />
<inherited>false</inherited><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
=== Upload Plugin ===<br />
<br />
[https://github.com/pmckeown/dependency-track-maven-plugin OWASP Dependency Track - Upload Plugin]<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [OWASP Dependency Track - Upload Plugin] ++++++++++ --><br />
<br />
<!-- Caution: The dependency-track-maven-plugin must be specified after the cyclonedx-maven-plugin.<br />
Because both plugins are processed in the phase 'verify'. --><br />
<br />
<!-- CLI: mvn dependency-track:upload-bom --><br />
<plugin><br />
<groupId>io.github.pmckeown</groupId><br />
<artifactId>dependency-track-maven-plugin</artifactId><br />
<version>0.8.1</version><br />
<executions><br />
<execution><br />
<phase>verify</phase><br />
<goals><br />
<goal>upload-bom</goal><br />
</goals><br />
</execution><br />
</executions><br />
<configuration><br />
<dependencyTrackBaseUrl>http://...</dependencyTrackBaseUrl><br />
<apiKey>${dependencytrack.apikey}</apiKey><br />
</configuration><br />
<inherited>false</inherited><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
== OWASP Dependency Check ==<br />
<br />
[https://owasp.org/www-project-dependency-check/ OWASP Dependency Check]<br />
<br />
=== Signle-Module Build ===<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [OWASP Dependency Check Plugin] ++++++++++ --><br />
<br />
<!-- CLI: mvn org.owasp:dependency-check-maven:check --><br />
<!-- CLI: mvn dependency-check:check --><br />
<!-- CLI: mvn org.owasp:dependency-check-maven:aggregate --><br />
<!-- CLI: dependency-check:aggregate --><br />
<!-- Caution: This plugin configuration (aggregated and not inherited) requires, that the project have been installed --><br />
<!-- (mvn install) at least once. Otherwise the OWASP Dependency Check creates a virtual dependency tree. --><br />
<plugin><br />
<groupId>org.owasp</groupId><br />
<artifactId>dependency-check-maven</artifactId><br />
<version>5.3.2</version><br />
<configuration><br />
<skipProvidedScope>false</skipProvidedScope><br />
<skipRuntimeScope>false</skipRuntimeScope><br />
<retireJsAnalyzerEnabled>false</retireJsAnalyzerEnabled><br />
</configuration><br />
<executions><br />
<execution><br />
<goals><br />
<goal>aggregate</goal><br />
</goals><br />
</execution><br />
</executions><br />
<inherited>false</inherited><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
=== Multi-Module Build ===<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [OWASP Dependency Check Plugin] ++++++++++ --><br />
<br />
<!-- CLI: mvn org.owasp:dependency-check-maven:check --><br />
<!-- CLI: mvn dependency-check:check --><br />
<!-- CLI: mvn org.owasp:dependency-check-maven:aggregate --><br />
<!-- CLI: dependency-check:aggregate --><br />
<!-- Caution: This plugin configuration (aggregated and not inherited) requires, that the project have been installed --><br />
<!-- (mvn install) at least once. Otherwise the OWASP Dependency Check creates a virtual dependency tree. --><br />
<plugin><br />
<groupId>org.owasp</groupId><br />
<artifactId>dependency-check-maven</artifactId><br />
<version>5.3.2</version><br />
<configuration><br />
<skipProvidedScope>false</skipProvidedScope><br />
<skipRuntimeScope>false</skipRuntimeScope><br />
<retireJsAnalyzerEnabled>false</retireJsAnalyzerEnabled><br />
</configuration><br />
<executions><br />
<execution><br />
<goals><br />
<goal>aggregate</goal><br />
</goals><br />
</execution><br />
</executions><br />
<inherited>false</inherited><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
== Sonatype OSS Index ==<br />
<br />
[https://sonatype.github.io/ossindex-maven/maven-plugin/ Sonatype OSS Index]<br />
<br />
=== Multi-Module Build ===<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [Sonatype OSS Index Plugin] ++++++++++ --><br />
<br />
<!-- CLI: mvn org.sonatype.ossindex.maven:ossindex-maven-plugin:audit --><br />
<!-- CLI: mvn ossindex:audit --><br />
<!-- CLI: mvn org.sonatype.ossindex.maven:ossindex-maven-plugin:audit-aggregate --><br />
<!-- CLI: mvn ossindex:audit-aggregate --><br />
<!-- Caution: This plugin configuration (aggregated and non-inherited) requires, that the project have been installed --><br />
<!-- (mvn install) at least once. Otherwise the OWASP Dependency Check creates a virtual dependency tree. --><br />
<plugin><br />
<groupId>org.sonatype.ossindex.maven</groupId><br />
<artifactId>ossindex-maven-plugin</artifactId><br />
<version>3.1.0</version><br />
<executions><br />
<execution><br />
<id>audit-dependencies</id><br />
<phase>validate</phase><br />
<goals><br />
<goal>audit-aggregate</goal><br />
</goals><br />
</execution><br />
</executions><br />
<configuration><br />
<fail>false</fail><br />
<excludeCoordinates><br />
<exclude><br />
<groupId>de.servicetrace.gxt</groupId><br />
<artifactId>inspinia</artifactId><br />
<version>1.1.0</version><br />
</exclude><br />
</excludeCoordinates><br />
</configuration><br />
<inherited>false</inherited><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
== Echo Plugin ==<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [Echo Plugin] ++++++++++ --><br />
<br />
<plugin><br />
<groupId>com.soebes.maven.plugins</groupId><br />
<artifactId>echo-maven-plugin</artifactId><br />
<version>0.4.0</version><br />
<executions><br />
<execution><br />
<id>echo-first-time</id><br />
<phase>validate</phase><br />
<goals><br />
<goal>echo</goal><br />
</goals><br />
<configuration><br />
<echos><br />
<echo>Project Version: ${project.version}</echo><br />
</echos><br />
</configuration><br />
</execution><br />
</executions><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br />
<br/><br />
<br />
== Antrun Plugin ==<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [Ant Run Plugin] ++++++++++ --><br />
<br />
<plugin><br />
<groupId>org.apache.maven.plugins</groupId><br />
<artifactId>maven-antrun-plugin</artifactId><br />
<version>3.0.0</version><br />
<executions><br />
<execution><br />
<phase>validate</phase><br />
<goals><br />
<goal>run</goal><br />
</goals><br />
<configuration><br />
<exportAntProperties>true</exportAntProperties><br />
<target><br />
<condition property="projectVersion" value="develop" else="${project.version}"><br />
<contains string="${project.version}" substring="-SNAPSHOT" /><br />
</condition><br />
<echo message="${projectVersion}"/><br />
</target><br />
</configuration><br />
</execution><br />
</executions><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/></div>
Jochen
https://wiki.fam-hammann.de/index.php?title=Maven&diff=554
Maven
2020-07-28T14:30:17Z
<p>Jochen: </p>
<hr />
<div>__TOC__<br />
<br />
<br />
= Plugins =<br />
<br />
== OWASP Dependency Track ==<br />
<br />
[https://owasp.org/www-project-dependency-track/ OWASP Dependency Track]<br />
<br />
<br/><br />
<br />
=== CycloneDX Plugin ===<br />
<br />
[https://github.com/CycloneDX/cyclonedx-maven-plugin OWASP Dependency Track - CycloneDX Plugin]<br />
<br />
==== Multi-Module Build ====<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [OWASP Dependency Track - CycloneDX Plugin] ++++++++++ --><br />
<br />
<!-- CLI: mvn org.cyclonedx:cyclonedx-maven-plugin:makeBom --><br />
<!-- CLI: mvn cyclonedx:makeBom --><br />
<!-- CLI: mvn org.cyclonedx:cyclonedx-maven-plugin:makeAggregateBom --><br />
<!-- CLI: mvn cyclonedx:makeAggregateBom --><br />
<plugin><br />
<groupId>org.cyclonedx</groupId><br />
<artifactId>cyclonedx-maven-plugin</artifactId><br />
<version>1.6.4</version><br />
<executions><br />
<execution><br />
<phase>verify</phase><br />
<goals><br />
<goal>makeAggregateBom</goal><br />
</goals><br />
</execution><br />
</executions><br />
<configuration><br />
<schemaVersion>1.1</schemaVersion><br />
<includeBomSerialNumber>true</includeBomSerialNumber><br />
<includeCompileScope>true</includeCompileScope><br />
<includeProvidedScope>true</includeProvidedScope><br />
<includeRuntimeScope>true</includeRuntimeScope><br />
<includeSystemScope>true</includeSystemScope><br />
<includeTestScope>false</includeTestScope><br />
<includeLicenseText>true</includeLicenseText><br />
<includeDependencyGraph>true</includeDependencyGraph><br />
</configuration><br />
<inherited>false</inherited><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
=== Upload Plugin ===<br />
<br />
[https://github.com/pmckeown/dependency-track-maven-plugin OWASP Dependency Track - Upload Plugin]<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [OWASP Dependency Track - Upload Plugin] ++++++++++ --><br />
<br />
<!-- Caution: The dependency-track-maven-plugin must be specified after the cyclonedx-maven-plugin.<br />
Because both plugins are processed in the phase 'verify'. --><br />
<br />
<!-- CLI: mvn dependency-track:upload-bom --><br />
<plugin><br />
<groupId>io.github.pmckeown</groupId><br />
<artifactId>dependency-track-maven-plugin</artifactId><br />
<version>0.8.1</version><br />
<executions><br />
<execution><br />
<phase>verify</phase><br />
<goals><br />
<goal>upload-bom</goal><br />
</goals><br />
</execution><br />
</executions><br />
<configuration><br />
<dependencyTrackBaseUrl>http://...</dependencyTrackBaseUrl><br />
<apiKey>${dependencytrack.apikey}</apiKey><br />
</configuration><br />
<inherited>false</inherited><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
== OWASP Dependency Check ==<br />
<br />
[https://owasp.org/www-project-dependency-check/ OWASP Dependency Check]<br />
<br />
=== Multi-Module Build ===<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [OWASP Dependency Check Plugin] ++++++++++ --><br />
<br />
<!-- CLI: mvn org.owasp:dependency-check-maven:check --><br />
<!-- CLI: mvn dependency-check:check --><br />
<!-- CLI: mvn org.owasp:dependency-check-maven:aggregate --><br />
<!-- CLI: dependency-check:aggregate --><br />
<!-- Caution: This plugin configuration (aggregated and non-inherited) requires, that the project have been installed --><br />
<!-- (mvn install) at least once. Otherwise the OWASP Dependency Check creates a virtual dependency tree. --><br />
<plugin><br />
<groupId>org.owasp</groupId><br />
<artifactId>dependency-check-maven</artifactId><br />
<version>5.3.2</version><br />
<configuration><br />
<skipProvidedScope>false</skipProvidedScope><br />
<skipRuntimeScope>false</skipRuntimeScope><br />
<retireJsAnalyzerEnabled>false</retireJsAnalyzerEnabled><br />
</configuration><br />
<executions><br />
<execution><br />
<goals><br />
<goal>aggregate</goal><br />
</goals><br />
</execution><br />
</executions><br />
<inherited>false</inherited><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
== Sonatype OSS Index ==<br />
<br />
[https://sonatype.github.io/ossindex-maven/maven-plugin/ Sonatype OSS Index]<br />
<br />
=== Multi-Module Build ===<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [Sonatype OSS Index Plugin] ++++++++++ --><br />
<br />
<!-- CLI: mvn org.sonatype.ossindex.maven:ossindex-maven-plugin:audit --><br />
<!-- CLI: mvn ossindex:audit --><br />
<!-- CLI: mvn org.sonatype.ossindex.maven:ossindex-maven-plugin:audit-aggregate --><br />
<!-- CLI: mvn ossindex:audit-aggregate --><br />
<!-- Caution: This plugin configuration (aggregated and non-inherited) requires, that the project have been installed --><br />
<!-- (mvn install) at least once. Otherwise the OWASP Dependency Check creates a virtual dependency tree. --><br />
<plugin><br />
<groupId>org.sonatype.ossindex.maven</groupId><br />
<artifactId>ossindex-maven-plugin</artifactId><br />
<version>3.1.0</version><br />
<executions><br />
<execution><br />
<id>audit-dependencies</id><br />
<phase>validate</phase><br />
<goals><br />
<goal>audit-aggregate</goal><br />
</goals><br />
</execution><br />
</executions><br />
<configuration><br />
<fail>false</fail><br />
<excludeCoordinates><br />
<exclude><br />
<groupId>de.servicetrace.gxt</groupId><br />
<artifactId>inspinia</artifactId><br />
<version>1.1.0</version><br />
</exclude><br />
</excludeCoordinates><br />
</configuration><br />
<inherited>false</inherited><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
== Echo Plugin ==<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [Echo Plugin] ++++++++++ --><br />
<br />
<plugin><br />
<groupId>com.soebes.maven.plugins</groupId><br />
<artifactId>echo-maven-plugin</artifactId><br />
<version>0.4.0</version><br />
<executions><br />
<execution><br />
<id>echo-first-time</id><br />
<phase>validate</phase><br />
<goals><br />
<goal>echo</goal><br />
</goals><br />
<configuration><br />
<echos><br />
<echo>Project Version: ${project.version}</echo><br />
</echos><br />
</configuration><br />
</execution><br />
</executions><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br />
<br/><br />
<br />
== Antrun Plugin ==<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [Ant Run Plugin] ++++++++++ --><br />
<br />
<plugin><br />
<groupId>org.apache.maven.plugins</groupId><br />
<artifactId>maven-antrun-plugin</artifactId><br />
<version>3.0.0</version><br />
<executions><br />
<execution><br />
<phase>validate</phase><br />
<goals><br />
<goal>run</goal><br />
</goals><br />
<configuration><br />
<exportAntProperties>true</exportAntProperties><br />
<target><br />
<condition property="projectVersion" value="develop" else="${project.version}"><br />
<contains string="${project.version}" substring="-SNAPSHOT" /><br />
</condition><br />
<echo message="${projectVersion}"/><br />
</target><br />
</configuration><br />
</execution><br />
</executions><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/></div>
Jochen
https://wiki.fam-hammann.de/index.php?title=Maven&diff=553
Maven
2020-07-28T09:39:32Z
<p>Jochen: </p>
<hr />
<div>__TOC__<br />
<br />
<br />
= Plugins =<br />
<br />
== Security ==<br />
<br />
=== OWASP Dependency Track ===<br />
<br />
[https://owasp.org/www-project-dependency-track/ OWASP Dependency Track]<br />
<br />
<br/><br />
<br />
==== CycloneDX Plugin ====<br />
<br />
[https://github.com/CycloneDX/cyclonedx-maven-plugin OWASP Dependency Track - CycloneDX Plugin]<br />
<br />
===== Multi-Module Build =====<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [OWASP Dependency Track - CycloneDX Plugin] ++++++++++ --><br />
<br />
<!-- CLI: mvn org.cyclonedx:cyclonedx-maven-plugin:makeBom --><br />
<!-- CLI: mvn cyclonedx:makeBom --><br />
<!-- CLI: mvn org.cyclonedx:cyclonedx-maven-plugin:makeAggregateBom --><br />
<!-- CLI: mvn cyclonedx:makeAggregateBom --><br />
<plugin><br />
<groupId>org.cyclonedx</groupId><br />
<artifactId>cyclonedx-maven-plugin</artifactId><br />
<version>1.6.4</version><br />
<executions><br />
<execution><br />
<phase>verify</phase><br />
<goals><br />
<goal>makeAggregateBom</goal><br />
</goals><br />
</execution><br />
</executions><br />
<configuration><br />
<schemaVersion>1.1</schemaVersion><br />
<includeBomSerialNumber>true</includeBomSerialNumber><br />
<includeCompileScope>true</includeCompileScope><br />
<includeProvidedScope>true</includeProvidedScope><br />
<includeRuntimeScope>true</includeRuntimeScope><br />
<includeSystemScope>true</includeSystemScope><br />
<includeTestScope>false</includeTestScope><br />
<includeLicenseText>true</includeLicenseText><br />
<includeDependencyGraph>true</includeDependencyGraph><br />
</configuration><br />
<inherited>false</inherited><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
==== Upload Plugin ====<br />
<br />
[https://github.com/pmckeown/dependency-track-maven-plugin OWASP Dependency Track - Upload Plugin]<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [OWASP Dependency Track - Upload Plugin] ++++++++++ --><br />
<br />
<!-- Caution: The dependency-track-maven-plugin must be specified after the cyclonedx-maven-plugin.<br />
Because both plugins are processed in the phase 'verify'. --><br />
<br />
<!-- CLI: mvn dependency-track:upload-bom --><br />
<plugin><br />
<groupId>io.github.pmckeown</groupId><br />
<artifactId>dependency-track-maven-plugin</artifactId><br />
<version>0.8.1</version><br />
<executions><br />
<execution><br />
<phase>verify</phase><br />
<goals><br />
<goal>upload-bom</goal><br />
</goals><br />
</execution><br />
</executions><br />
<configuration><br />
<dependencyTrackBaseUrl>http://...</dependencyTrackBaseUrl><br />
<apiKey>${dependencytrack.apikey}</apiKey><br />
</configuration><br />
<inherited>false</inherited><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
=== OWASP Dependency Check ===<br />
<br />
[https://owasp.org/www-project-dependency-check/ OWASP Dependency Check]<br />
<br />
==== Multi-Module Build ====<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [OWASP Dependency Check Plugin] ++++++++++ --><br />
<br />
<!-- CLI: mvn org.owasp:dependency-check-maven:check --><br />
<!-- CLI: mvn dependency-check:check --><br />
<!-- CLI: mvn org.owasp:dependency-check-maven:aggregate --><br />
<!-- CLI: dependency-check:aggregate --><br />
<!-- Caution: This plugin configuration (aggregated and non-inherited) requires, that the project have been installed --><br />
<!-- (mvn install) at least once. Otherwise the OWASP Dependency Check creates a virtual dependency tree. --><br />
<plugin><br />
<groupId>org.owasp</groupId><br />
<artifactId>dependency-check-maven</artifactId><br />
<version>5.3.2</version><br />
<configuration><br />
<skipProvidedScope>false</skipProvidedScope><br />
<skipRuntimeScope>false</skipRuntimeScope><br />
<retireJsAnalyzerEnabled>false</retireJsAnalyzerEnabled><br />
</configuration><br />
<executions><br />
<execution><br />
<goals><br />
<goal>aggregate</goal><br />
</goals><br />
</execution><br />
</executions><br />
<inherited>false</inherited><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
=== Sonatype OSS Index ===<br />
<br />
[https://sonatype.github.io/ossindex-maven/maven-plugin/ Sonatype OSS Index]<br />
<br />
==== Multi-Module Build ====<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [Sonatype OSS Index Plugin] ++++++++++ --><br />
<br />
<!-- CLI: mvn org.sonatype.ossindex.maven:ossindex-maven-plugin:audit --><br />
<!-- CLI: mvn ossindex:audit --><br />
<!-- CLI: mvn org.sonatype.ossindex.maven:ossindex-maven-plugin:audit-aggregate --><br />
<!-- CLI: mvn ossindex:audit-aggregate --><br />
<!-- Caution: This plugin configuration (aggregated and non-inherited) requires, that the project have been installed --><br />
<!-- (mvn install) at least once. Otherwise the OWASP Dependency Check creates a virtual dependency tree. --><br />
<plugin><br />
<groupId>org.sonatype.ossindex.maven</groupId><br />
<artifactId>ossindex-maven-plugin</artifactId><br />
<version>3.1.0</version><br />
<executions><br />
<execution><br />
<id>audit-dependencies</id><br />
<phase>validate</phase><br />
<goals><br />
<goal>audit-aggregate</goal><br />
</goals><br />
</execution><br />
</executions><br />
<configuration><br />
<fail>false</fail><br />
<excludeCoordinates><br />
<exclude><br />
<groupId>de.servicetrace.gxt</groupId><br />
<artifactId>inspinia</artifactId><br />
<version>1.1.0</version><br />
</exclude><br />
</excludeCoordinates><br />
</configuration><br />
<inherited>false</inherited><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/></div>
Jochen
https://wiki.fam-hammann.de/index.php?title=Maven&diff=552
Maven
2020-07-28T09:38:50Z
<p>Jochen: </p>
<hr />
<div>__TOC__<br />
<br />
<br />
= Plugins =<br />
<br />
== Security ==<br />
<br />
=== OWASP Dependency Track ===<br />
<br />
[https://owasp.org/www-project-dependency-track/ OWASP Dependency Track]<br />
<br />
<br/><br />
<br />
==== CycloneDX Plugin ====<br />
<br />
[https://github.com/CycloneDX/cyclonedx-maven-plugin OWASP Dependency Track - CycloneDX Plugin]<br />
<br />
===== Multi-Module Build =====<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [OWASP Dependency Track - CycloneDX Plugin] ++++++++++ --><br />
<br />
<!-- CLI: mvn org.cyclonedx:cyclonedx-maven-plugin:makeBom --><br />
<!-- CLI: mvn cyclonedx:makeBom --><br />
<!-- CLI: mvn org.cyclonedx:cyclonedx-maven-plugin:makeAggregateBom --><br />
<!-- CLI: mvn cyclonedx:makeAggregateBom --><br />
<plugin><br />
<groupId>org.cyclonedx</groupId><br />
<artifactId>cyclonedx-maven-plugin</artifactId><br />
<version>1.6.4</version><br />
<executions><br />
<execution><br />
<phase>verify</phase><br />
<goals><br />
<goal>makeAggregateBom</goal><br />
</goals><br />
</execution><br />
</executions><br />
<configuration><br />
<schemaVersion>1.1</schemaVersion><br />
<includeBomSerialNumber>true</includeBomSerialNumber><br />
<includeCompileScope>true</includeCompileScope><br />
<includeProvidedScope>true</includeProvidedScope><br />
<includeRuntimeScope>true</includeRuntimeScope><br />
<includeSystemScope>true</includeSystemScope><br />
<includeTestScope>false</includeTestScope><br />
<includeLicenseText>true</includeLicenseText><br />
<includeDependencyGraph>true</includeDependencyGraph><br />
</configuration><br />
<inherited>false</inherited><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
==== Upload Plugin ====<br />
<br />
* [https://github.com/pmckeown/dependency-track-maven-plugin OWASP Dependency Track - Upload Plugin]<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [OWASP Dependency Track - Upload Plugin] ++++++++++ --><br />
<br />
<!-- Caution: The dependency-track-maven-plugin must be specified after the cyclonedx-maven-plugin.<br />
Because both plugins are processed in the phase 'verify'. --><br />
<br />
<!-- CLI: mvn dependency-track:upload-bom --><br />
<plugin><br />
<groupId>io.github.pmckeown</groupId><br />
<artifactId>dependency-track-maven-plugin</artifactId><br />
<version>0.8.1</version><br />
<executions><br />
<execution><br />
<phase>verify</phase><br />
<goals><br />
<goal>upload-bom</goal><br />
</goals><br />
</execution><br />
</executions><br />
<configuration><br />
<dependencyTrackBaseUrl>http://...</dependencyTrackBaseUrl><br />
<apiKey>${dependencytrack.apikey}</apiKey><br />
</configuration><br />
<inherited>false</inherited><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
=== OWASP Dependency Check ===<br />
<br />
* [https://owasp.org/www-project-dependency-check/ OWASP Dependency Check]<br />
<br />
==== Multi-Module Build ====<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [OWASP Dependency Check Plugin] ++++++++++ --><br />
<br />
<!-- CLI: mvn org.owasp:dependency-check-maven:check --><br />
<!-- CLI: mvn dependency-check:check --><br />
<!-- CLI: mvn org.owasp:dependency-check-maven:aggregate --><br />
<!-- CLI: dependency-check:aggregate --><br />
<!-- Caution: This plugin configuration (aggregated and non-inherited) requires, that the project have been installed --><br />
<!-- (mvn install) at least once. Otherwise the OWASP Dependency Check creates a virtual dependency tree. --><br />
<plugin><br />
<groupId>org.owasp</groupId><br />
<artifactId>dependency-check-maven</artifactId><br />
<version>5.3.2</version><br />
<configuration><br />
<skipProvidedScope>false</skipProvidedScope><br />
<skipRuntimeScope>false</skipRuntimeScope><br />
<retireJsAnalyzerEnabled>false</retireJsAnalyzerEnabled><br />
</configuration><br />
<executions><br />
<execution><br />
<goals><br />
<goal>aggregate</goal><br />
</goals><br />
</execution><br />
</executions><br />
<inherited>false</inherited><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
=== Sonatype OSS Index ===<br />
<br />
* [https://sonatype.github.io/ossindex-maven/maven-plugin/ Sonatype OSS Index]<br />
<br />
==== Multi-Module Build ====<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [Sonatype OSS Index Plugin] ++++++++++ --><br />
<br />
<!-- CLI: mvn org.sonatype.ossindex.maven:ossindex-maven-plugin:audit --><br />
<!-- CLI: mvn ossindex:audit --><br />
<!-- CLI: mvn org.sonatype.ossindex.maven:ossindex-maven-plugin:audit-aggregate --><br />
<!-- CLI: mvn ossindex:audit-aggregate --><br />
<!-- Caution: This plugin configuration (aggregated and non-inherited) requires, that the project have been installed --><br />
<!-- (mvn install) at least once. Otherwise the OWASP Dependency Check creates a virtual dependency tree. --><br />
<plugin><br />
<groupId>org.sonatype.ossindex.maven</groupId><br />
<artifactId>ossindex-maven-plugin</artifactId><br />
<version>3.1.0</version><br />
<executions><br />
<execution><br />
<id>audit-dependencies</id><br />
<phase>validate</phase><br />
<goals><br />
<goal>audit-aggregate</goal><br />
</goals><br />
</execution><br />
</executions><br />
<configuration><br />
<fail>false</fail><br />
<excludeCoordinates><br />
<exclude><br />
<groupId>de.servicetrace.gxt</groupId><br />
<artifactId>inspinia</artifactId><br />
<version>1.1.0</version><br />
</exclude><br />
</excludeCoordinates><br />
</configuration><br />
<inherited>false</inherited><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/></div>
Jochen
https://wiki.fam-hammann.de/index.php?title=Maven&diff=551
Maven
2020-07-28T09:36:33Z
<p>Jochen: </p>
<hr />
<div>__TOC__<br />
<br />
<br />
= Plugins =<br />
<br />
== Security ==<br />
<br />
=== OWASP Dependency Track ===<br />
<br />
[https://owasp.org/www-project-dependency-track/ OWASP Dependency Track]<br />
<br />
<br/><br />
<br />
==== CycloneDX Plugin ====<br />
<br />
[https://github.com/CycloneDX/cyclonedx-maven-plugin OWASP Dependency Track - CycloneDX Plugin]<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [OWASP Dependency Track - CycloneDX Plugin] ++++++++++ --><br />
<br />
<!-- CLI: mvn org.cyclonedx:cyclonedx-maven-plugin:makeBom --><br />
<!-- CLI: mvn cyclonedx:makeBom --><br />
<!-- CLI: mvn org.cyclonedx:cyclonedx-maven-plugin:makeAggregateBom --><br />
<!-- CLI: mvn cyclonedx:makeAggregateBom --><br />
<plugin><br />
<groupId>org.cyclonedx</groupId><br />
<artifactId>cyclonedx-maven-plugin</artifactId><br />
<version>1.6.4</version><br />
<executions><br />
<execution><br />
<phase>verify</phase><br />
<goals><br />
<goal>makeAggregateBom</goal><br />
</goals><br />
</execution><br />
</executions><br />
<configuration><br />
<schemaVersion>1.1</schemaVersion><br />
<includeBomSerialNumber>true</includeBomSerialNumber><br />
<includeCompileScope>true</includeCompileScope><br />
<includeProvidedScope>true</includeProvidedScope><br />
<includeRuntimeScope>true</includeRuntimeScope><br />
<includeSystemScope>true</includeSystemScope><br />
<includeTestScope>false</includeTestScope><br />
<includeLicenseText>true</includeLicenseText><br />
<includeDependencyGraph>true</includeDependencyGraph><br />
</configuration><br />
<inherited>false</inherited><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
==== Upload Plugin ====<br />
<br />
* [https://github.com/pmckeown/dependency-track-maven-plugin OWASP Dependency Track - Upload Plugin]<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [OWASP Dependency Track - Upload Plugin] ++++++++++ --><br />
<br />
<!-- Caution: The dependency-track-maven-plugin must be specified after the cyclonedx-maven-plugin.<br />
Because both plugins are processed in the phase 'verify'. --><br />
<br />
<!-- CLI: mvn dependency-track:upload-bom --><br />
<plugin><br />
<groupId>io.github.pmckeown</groupId><br />
<artifactId>dependency-track-maven-plugin</artifactId><br />
<version>0.8.1</version><br />
<executions><br />
<execution><br />
<phase>verify</phase><br />
<goals><br />
<goal>upload-bom</goal><br />
</goals><br />
</execution><br />
</executions><br />
<configuration><br />
<dependencyTrackBaseUrl>http://...</dependencyTrackBaseUrl><br />
<apiKey>${dependencytrack.apikey}</apiKey><br />
</configuration><br />
<inherited>false</inherited><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
=== OWASP Dependency Check ===<br />
<br />
* [https://owasp.org/www-project-dependency-check/ OWASP Dependency Check]<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [OWASP Dependency Check Plugin] ++++++++++ --><br />
<br />
<!-- CLI: mvn org.owasp:dependency-check-maven:check --><br />
<!-- CLI: mvn dependency-check:check --><br />
<!-- CLI: mvn org.owasp:dependency-check-maven:aggregate --><br />
<!-- CLI: dependency-check:aggregate --><br />
<!-- Caution: This plugin configuration (aggregated and non-inherited) requires, that the project have been installed --><br />
<!-- (mvn install) at least once. Otherwise the OWASP Dependency Check creates a virtual dependency tree. --><br />
<plugin><br />
<groupId>org.owasp</groupId><br />
<artifactId>dependency-check-maven</artifactId><br />
<version>5.3.2</version><br />
<configuration><br />
<skipProvidedScope>false</skipProvidedScope><br />
<skipRuntimeScope>false</skipRuntimeScope><br />
<retireJsAnalyzerEnabled>false</retireJsAnalyzerEnabled><br />
</configuration><br />
<executions><br />
<execution><br />
<goals><br />
<goal>aggregate</goal><br />
</goals><br />
</execution><br />
</executions><br />
<inherited>false</inherited><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
=== Sonatype OSS Index ===<br />
<br />
* [https://sonatype.github.io/ossindex-maven/maven-plugin/ Sonatype OSS Index]<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [Sonatype OSS Index Plugin] ++++++++++ --><br />
<br />
<!-- CLI: mvn org.sonatype.ossindex.maven:ossindex-maven-plugin:audit --><br />
<!-- CLI: mvn ossindex:audit --><br />
<!-- CLI: mvn org.sonatype.ossindex.maven:ossindex-maven-plugin:audit-aggregate --><br />
<!-- CLI: mvn ossindex:audit-aggregate --><br />
<!-- Caution: This plugin configuration (aggregated and non-inherited) requires, that the project have been installed --><br />
<!-- (mvn install) at least once. Otherwise the OWASP Dependency Check creates a virtual dependency tree. --><br />
<plugin><br />
<groupId>org.sonatype.ossindex.maven</groupId><br />
<artifactId>ossindex-maven-plugin</artifactId><br />
<version>3.1.0</version><br />
<executions><br />
<execution><br />
<id>audit-dependencies</id><br />
<phase>validate</phase><br />
<goals><br />
<goal>audit-aggregate</goal><br />
</goals><br />
</execution><br />
</executions><br />
<configuration><br />
<fail>false</fail><br />
<excludeCoordinates><br />
<exclude><br />
<groupId>de.servicetrace.gxt</groupId><br />
<artifactId>inspinia</artifactId><br />
<version>1.1.0</version><br />
</exclude><br />
</excludeCoordinates><br />
</configuration><br />
<inherited>false</inherited><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/></div>
Jochen
https://wiki.fam-hammann.de/index.php?title=MediaWiki&diff=550
MediaWiki
2020-07-02T14:26:11Z
<p>Jochen: </p>
<hr />
<div>__TOC__<br />
<br />
<br />
== Session Timeout ==<br />
<br />
Dieser kann in der LocalSettings.php konfiguriert werden. Hierzu muss folgender Eintrag ergänzt werden.<br />
<br />
<syntaxhighlight lang="text"><br />
# The expiry time to use for session storage, in seconds.<br />
$wgObjectCacheSessionExpiry=86400;<br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
== LibreOffice to MediaWiki ==<br />
<br />
Die folgende Doku wurde [https://en.wikipedia.org/wiki/Help:WordToWiki#OpenOffice_or_LibreOffice hier] entnommen.<br />
<br />
[[LibreOffice]] can send Word documents directly: go file/export/save as type Mediawiki. (for Linux user it can be necessary to install the library '''libreoffice-wiki-publisher''')<br />
<br />
[[OpenOffice.org Writer|OpenOffice]] versions 3.3 and later can send Word documents directly to a MediaWiki but this does not seem to work under windows 7. (At least for the German version of [[OpenOffice]] 3.3.0 you need to install the ‘[http://extensions.services.openoffice.org/de/project/wikipublisher Sun Wiki Publisher]’-extension first! Server url: http://en.wikipedia.org/w/ )<br />
<br />
Once you have added the MediaWiki-server of your choice, future submissions can happen automatically.<br />
<br />
#Open the Word document in OpenOffice or LibreOffice Writer.<br />
#Go to File > Send-To > To MediaWiki or File > Export > Save file as: Mediawiki<br />
#Select your MediaWiki-server (or click on the button "Add..." to add a new site).<br />
#Select a title and summary for your article, check the box if it's a minor revision.<br />
#Click the send button.<br />
<br />
Alternatively you can use the manual ‘export-function’ as well: File -> Export -> choose ‘MediaWiki (.txt)’-format.</div>
Jochen
https://wiki.fam-hammann.de/index.php?title=Maven&diff=549
Maven
2020-06-25T16:01:08Z
<p>Jochen: /* Sonatype OSS Index */</p>
<hr />
<div>__TOC__<br />
<br />
<br />
= Plugins =<br />
<br />
== Security ==<br />
<br />
=== OWASP Dependency Track ===<br />
<br />
[https://owasp.org/www-project-dependency-track/ OWASP Dependency Track]<br />
<br />
<br/><br />
<br />
==== CycloneDX Plugin ====<br />
<br />
[https://github.com/CycloneDX/cyclonedx-maven-plugin OWASP Dependency Track - CycloneDX Plugin]<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [OWASP Dependency Track - CycloneDX Plugin] ++++++++++ --><br />
<br />
<!-- CLI: mvn org.cyclonedx:cyclonedx-maven-plugin:makeBom --><br />
<!-- CLI: mvn cyclonedx:makeBom --><br />
<!-- CLI: mvn org.cyclonedx:cyclonedx-maven-plugin:makeAggregateBom --><br />
<!-- CLI: mvn cyclonedx:makeAggregateBom --><br />
<plugin><br />
<groupId>org.cyclonedx</groupId><br />
<artifactId>cyclonedx-maven-plugin</artifactId><br />
<version>1.6.4</version><br />
<executions><br />
<execution><br />
<phase>verify</phase><br />
<goals><br />
<goal>makeAggregateBom</goal><br />
</goals><br />
</execution><br />
</executions><br />
<configuration><br />
<schemaVersion>1.1</schemaVersion><br />
<includeBomSerialNumber>true</includeBomSerialNumber><br />
<includeCompileScope>true</includeCompileScope><br />
<includeProvidedScope>true</includeProvidedScope><br />
<includeRuntimeScope>true</includeRuntimeScope><br />
<includeSystemScope>true</includeSystemScope><br />
<includeTestScope>false</includeTestScope><br />
<includeLicenseText>true</includeLicenseText><br />
<includeDependencyGraph>true</includeDependencyGraph><br />
</configuration><br />
<inherited>false</inherited><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
==== Upload Plugin ====<br />
<br />
* [https://github.com/pmckeown/dependency-track-maven-plugin OWASP Dependency Track - Upload Plugin]<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [OWASP Dependency Track - Upload Plugin] ++++++++++ --><br />
<br />
<!-- Caution: The dependency-track-maven-plugin must be specified after the cyclonedx-maven-plugin.<br />
Because both plugins are processed in the phase 'verify'. --><br />
<br />
<!-- CLI: mvn dependency-track:upload-bom --><br />
<plugin><br />
<groupId>io.github.pmckeown</groupId><br />
<artifactId>dependency-track-maven-plugin</artifactId><br />
<version>0.8.1</version><br />
<executions><br />
<execution><br />
<phase>verify</phase><br />
<goals><br />
<goal>upload-bom</goal><br />
</goals><br />
</execution><br />
</executions><br />
<configuration><br />
<dependencyTrackBaseUrl>http://...</dependencyTrackBaseUrl><br />
<apiKey>${dependencytrack.apikey}</apiKey><br />
</configuration><br />
<inherited>false</inherited><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
=== OWASP Dependency Check ===<br />
<br />
* [https://owasp.org/www-project-dependency-check/ OWASP Dependency Check]<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [OWASP Dependency Check Plugin] ++++++++++ --><br />
<br />
<!-- CLI: mvn org.owasp:dependency-check-maven:check --><br />
<!-- CLI: mvn org.owasp:dependency-check-maven:aggregate --><br />
<plugin><br />
<groupId>org.owasp</groupId><br />
<artifactId>dependency-check-maven</artifactId><br />
<version>5.3.2</version><br />
<configuration><br />
<skipProvidedScope>false</skipProvidedScope><br />
<skipRuntimeScope>false</skipRuntimeScope><br />
<retireJsAnalyzerEnabled>false</retireJsAnalyzerEnabled><br />
</configuration><br />
<executions><br />
<execution><br />
<goals><br />
<goal>aggregate</goal><br />
</goals><br />
</execution><br />
</executions><br />
<inherited>false</inherited><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
=== Sonatype OSS Index ===<br />
<br />
* [https://sonatype.github.io/ossindex-maven/maven-plugin/ Sonatype OSS Index]<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [Sonatype OSS Index Plugin] ++++++++++ --><br />
<br />
<!-- CLI: mvn org.sonatype.ossindex.maven:ossindex-maven-plugin:audit --><br />
<!-- CLI: mvn ossindex:audit --><br />
<!-- CLI: mvn org.sonatype.ossindex.maven:ossindex-maven-plugin:audit-aggregate --><br />
<!-- CLI: mvn ossindex:audit-aggregate --><br />
<plugin><br />
<groupId>org.sonatype.ossindex.maven</groupId><br />
<artifactId>ossindex-maven-plugin</artifactId><br />
<executions><br />
<execution><br />
<id>audit-dependencies</id><br />
<phase>validate</phase><br />
<goals><br />
<goal>audit-aggregate</goal><br />
</goals><br />
</execution><br />
</executions><br />
<inherited>false</inherited><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/></div>
Jochen
https://wiki.fam-hammann.de/index.php?title=Maven&diff=548
Maven
2020-06-25T16:00:57Z
<p>Jochen: /* OWASP Dependency Check */</p>
<hr />
<div>__TOC__<br />
<br />
<br />
= Plugins =<br />
<br />
== Security ==<br />
<br />
=== OWASP Dependency Track ===<br />
<br />
[https://owasp.org/www-project-dependency-track/ OWASP Dependency Track]<br />
<br />
<br/><br />
<br />
==== CycloneDX Plugin ====<br />
<br />
[https://github.com/CycloneDX/cyclonedx-maven-plugin OWASP Dependency Track - CycloneDX Plugin]<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [OWASP Dependency Track - CycloneDX Plugin] ++++++++++ --><br />
<br />
<!-- CLI: mvn org.cyclonedx:cyclonedx-maven-plugin:makeBom --><br />
<!-- CLI: mvn cyclonedx:makeBom --><br />
<!-- CLI: mvn org.cyclonedx:cyclonedx-maven-plugin:makeAggregateBom --><br />
<!-- CLI: mvn cyclonedx:makeAggregateBom --><br />
<plugin><br />
<groupId>org.cyclonedx</groupId><br />
<artifactId>cyclonedx-maven-plugin</artifactId><br />
<version>1.6.4</version><br />
<executions><br />
<execution><br />
<phase>verify</phase><br />
<goals><br />
<goal>makeAggregateBom</goal><br />
</goals><br />
</execution><br />
</executions><br />
<configuration><br />
<schemaVersion>1.1</schemaVersion><br />
<includeBomSerialNumber>true</includeBomSerialNumber><br />
<includeCompileScope>true</includeCompileScope><br />
<includeProvidedScope>true</includeProvidedScope><br />
<includeRuntimeScope>true</includeRuntimeScope><br />
<includeSystemScope>true</includeSystemScope><br />
<includeTestScope>false</includeTestScope><br />
<includeLicenseText>true</includeLicenseText><br />
<includeDependencyGraph>true</includeDependencyGraph><br />
</configuration><br />
<inherited>false</inherited><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
==== Upload Plugin ====<br />
<br />
* [https://github.com/pmckeown/dependency-track-maven-plugin OWASP Dependency Track - Upload Plugin]<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [OWASP Dependency Track - Upload Plugin] ++++++++++ --><br />
<br />
<!-- Caution: The dependency-track-maven-plugin must be specified after the cyclonedx-maven-plugin.<br />
Because both plugins are processed in the phase 'verify'. --><br />
<br />
<!-- CLI: mvn dependency-track:upload-bom --><br />
<plugin><br />
<groupId>io.github.pmckeown</groupId><br />
<artifactId>dependency-track-maven-plugin</artifactId><br />
<version>0.8.1</version><br />
<executions><br />
<execution><br />
<phase>verify</phase><br />
<goals><br />
<goal>upload-bom</goal><br />
</goals><br />
</execution><br />
</executions><br />
<configuration><br />
<dependencyTrackBaseUrl>http://...</dependencyTrackBaseUrl><br />
<apiKey>${dependencytrack.apikey}</apiKey><br />
</configuration><br />
<inherited>false</inherited><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
=== OWASP Dependency Check ===<br />
<br />
* [https://owasp.org/www-project-dependency-check/ OWASP Dependency Check]<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [OWASP Dependency Check Plugin] ++++++++++ --><br />
<br />
<!-- CLI: mvn org.owasp:dependency-check-maven:check --><br />
<!-- CLI: mvn org.owasp:dependency-check-maven:aggregate --><br />
<plugin><br />
<groupId>org.owasp</groupId><br />
<artifactId>dependency-check-maven</artifactId><br />
<version>5.3.2</version><br />
<configuration><br />
<skipProvidedScope>false</skipProvidedScope><br />
<skipRuntimeScope>false</skipRuntimeScope><br />
<retireJsAnalyzerEnabled>false</retireJsAnalyzerEnabled><br />
</configuration><br />
<executions><br />
<execution><br />
<goals><br />
<goal>aggregate</goal><br />
</goals><br />
</execution><br />
</executions><br />
<inherited>false</inherited><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
=== Sonatype OSS Index ===<br />
<br />
* [https://sonatype.github.io/ossindex-maven/maven-plugin/ Sonatype OSS Index]<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [Sonatype OSS Index] ++++++++++ --><br />
<br />
<!-- CLI: mvn org.sonatype.ossindex.maven:ossindex-maven-plugin:audit --><br />
<!-- CLI: mvn ossindex:audit --><br />
<!-- CLI: mvn org.sonatype.ossindex.maven:ossindex-maven-plugin:audit-aggregate --><br />
<!-- CLI: mvn ossindex:audit-aggregate --><br />
<plugin><br />
<groupId>org.sonatype.ossindex.maven</groupId><br />
<artifactId>ossindex-maven-plugin</artifactId><br />
<executions><br />
<execution><br />
<id>audit-dependencies</id><br />
<phase>validate</phase><br />
<goals><br />
<goal>audit-aggregate</goal><br />
</goals><br />
</execution><br />
</executions><br />
<inherited>false</inherited><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/></div>
Jochen
https://wiki.fam-hammann.de/index.php?title=Maven&diff=547
Maven
2020-06-24T10:55:58Z
<p>Jochen: /* Sonatype OSS Index */</p>
<hr />
<div>__TOC__<br />
<br />
<br />
= Plugins =<br />
<br />
== Security ==<br />
<br />
=== OWASP Dependency Track ===<br />
<br />
[https://owasp.org/www-project-dependency-track/ OWASP Dependency Track]<br />
<br />
<br/><br />
<br />
==== CycloneDX Plugin ====<br />
<br />
[https://github.com/CycloneDX/cyclonedx-maven-plugin OWASP Dependency Track - CycloneDX Plugin]<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [OWASP Dependency Track - CycloneDX Plugin] ++++++++++ --><br />
<br />
<!-- CLI: mvn org.cyclonedx:cyclonedx-maven-plugin:makeBom --><br />
<!-- CLI: mvn cyclonedx:makeBom --><br />
<!-- CLI: mvn org.cyclonedx:cyclonedx-maven-plugin:makeAggregateBom --><br />
<!-- CLI: mvn cyclonedx:makeAggregateBom --><br />
<plugin><br />
<groupId>org.cyclonedx</groupId><br />
<artifactId>cyclonedx-maven-plugin</artifactId><br />
<version>1.6.4</version><br />
<executions><br />
<execution><br />
<phase>verify</phase><br />
<goals><br />
<goal>makeAggregateBom</goal><br />
</goals><br />
</execution><br />
</executions><br />
<configuration><br />
<schemaVersion>1.1</schemaVersion><br />
<includeBomSerialNumber>true</includeBomSerialNumber><br />
<includeCompileScope>true</includeCompileScope><br />
<includeProvidedScope>true</includeProvidedScope><br />
<includeRuntimeScope>true</includeRuntimeScope><br />
<includeSystemScope>true</includeSystemScope><br />
<includeTestScope>false</includeTestScope><br />
<includeLicenseText>true</includeLicenseText><br />
<includeDependencyGraph>true</includeDependencyGraph><br />
</configuration><br />
<inherited>false</inherited><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
==== Upload Plugin ====<br />
<br />
* [https://github.com/pmckeown/dependency-track-maven-plugin OWASP Dependency Track - Upload Plugin]<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [OWASP Dependency Track - Upload Plugin] ++++++++++ --><br />
<br />
<!-- Caution: The dependency-track-maven-plugin must be specified after the cyclonedx-maven-plugin.<br />
Because both plugins are processed in the phase 'verify'. --><br />
<br />
<!-- CLI: mvn dependency-track:upload-bom --><br />
<plugin><br />
<groupId>io.github.pmckeown</groupId><br />
<artifactId>dependency-track-maven-plugin</artifactId><br />
<version>0.8.1</version><br />
<executions><br />
<execution><br />
<phase>verify</phase><br />
<goals><br />
<goal>upload-bom</goal><br />
</goals><br />
</execution><br />
</executions><br />
<configuration><br />
<dependencyTrackBaseUrl>http://...</dependencyTrackBaseUrl><br />
<apiKey>${dependencytrack.apikey}</apiKey><br />
</configuration><br />
<inherited>false</inherited><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
=== OWASP Dependency Check ===<br />
<br />
* [https://owasp.org/www-project-dependency-check/ OWASP Dependency Check]<br />
<br />
<syntaxhighlight lang="xml"><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
=== Sonatype OSS Index ===<br />
<br />
* [https://sonatype.github.io/ossindex-maven/maven-plugin/ Sonatype OSS Index]<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [Sonatype OSS Index] ++++++++++ --><br />
<br />
<!-- CLI: mvn org.sonatype.ossindex.maven:ossindex-maven-plugin:audit --><br />
<!-- CLI: mvn ossindex:audit --><br />
<!-- CLI: mvn org.sonatype.ossindex.maven:ossindex-maven-plugin:audit-aggregate --><br />
<!-- CLI: mvn ossindex:audit-aggregate --><br />
<plugin><br />
<groupId>org.sonatype.ossindex.maven</groupId><br />
<artifactId>ossindex-maven-plugin</artifactId><br />
<executions><br />
<execution><br />
<id>audit-dependencies</id><br />
<phase>validate</phase><br />
<goals><br />
<goal>audit-aggregate</goal><br />
</goals><br />
</execution><br />
</executions><br />
<inherited>false</inherited><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/></div>
Jochen
https://wiki.fam-hammann.de/index.php?title=Maven&diff=546
Maven
2020-06-24T10:52:09Z
<p>Jochen: Die Seite wurde neu angelegt: „__TOC__ = Plugins = == Security == === OWASP Dependency Track === [https://owasp.org/www-project-dependency-track/ OWASP Dependency Track] <br/> ==== Cy…“</p>
<hr />
<div>__TOC__<br />
<br />
<br />
= Plugins =<br />
<br />
== Security ==<br />
<br />
=== OWASP Dependency Track ===<br />
<br />
[https://owasp.org/www-project-dependency-track/ OWASP Dependency Track]<br />
<br />
<br/><br />
<br />
==== CycloneDX Plugin ====<br />
<br />
[https://github.com/CycloneDX/cyclonedx-maven-plugin OWASP Dependency Track - CycloneDX Plugin]<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [OWASP Dependency Track - CycloneDX Plugin] ++++++++++ --><br />
<br />
<!-- CLI: mvn org.cyclonedx:cyclonedx-maven-plugin:makeBom --><br />
<!-- CLI: mvn cyclonedx:makeBom --><br />
<!-- CLI: mvn org.cyclonedx:cyclonedx-maven-plugin:makeAggregateBom --><br />
<!-- CLI: mvn cyclonedx:makeAggregateBom --><br />
<plugin><br />
<groupId>org.cyclonedx</groupId><br />
<artifactId>cyclonedx-maven-plugin</artifactId><br />
<version>1.6.4</version><br />
<executions><br />
<execution><br />
<phase>verify</phase><br />
<goals><br />
<goal>makeAggregateBom</goal><br />
</goals><br />
</execution><br />
</executions><br />
<configuration><br />
<schemaVersion>1.1</schemaVersion><br />
<includeBomSerialNumber>true</includeBomSerialNumber><br />
<includeCompileScope>true</includeCompileScope><br />
<includeProvidedScope>true</includeProvidedScope><br />
<includeRuntimeScope>true</includeRuntimeScope><br />
<includeSystemScope>true</includeSystemScope><br />
<includeTestScope>false</includeTestScope><br />
<includeLicenseText>true</includeLicenseText><br />
<includeDependencyGraph>true</includeDependencyGraph><br />
</configuration><br />
<inherited>false</inherited><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
==== Upload Plugin ====<br />
<br />
* [https://github.com/pmckeown/dependency-track-maven-plugin OWASP Dependency Track - Upload Plugin]<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [OWASP Dependency Track - Upload Plugin] ++++++++++ --><br />
<br />
<!-- Caution: The dependency-track-maven-plugin must be specified after the cyclonedx-maven-plugin.<br />
Because both plugins are processed in the phase 'verify'. --><br />
<br />
<!-- CLI: mvn dependency-track:upload-bom --><br />
<plugin><br />
<groupId>io.github.pmckeown</groupId><br />
<artifactId>dependency-track-maven-plugin</artifactId><br />
<version>0.8.1</version><br />
<executions><br />
<execution><br />
<phase>verify</phase><br />
<goals><br />
<goal>upload-bom</goal><br />
</goals><br />
</execution><br />
</executions><br />
<configuration><br />
<dependencyTrackBaseUrl>http://...</dependencyTrackBaseUrl><br />
<apiKey>${dependencytrack.apikey}</apiKey><br />
</configuration><br />
<inherited>false</inherited><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
=== OWASP Dependency Check ===<br />
<br />
* [https://owasp.org/www-project-dependency-check/ OWASP Dependency Check]<br />
<br />
<syntaxhighlight lang="xml"><br />
</syntaxhighlight><br />
<br />
<br/><br />
<br />
=== Sonatype OSS Index ===<br />
<br />
* [https://sonatype.github.io/ossindex-maven/maven-plugin/ Sonatype OSS Index]<br />
<br />
<syntaxhighlight lang="xml"><br />
<!-- ++++++++++ [Sonatype OSS Index] ++++++++++ --><br />
<br />
<!-- CLI: mvn org.sonatype.ossindex.maven:ossindex-maven-plugin:audit-aggregate --><br />
<plugin><br />
<groupId>org.sonatype.ossindex.maven</groupId><br />
<artifactId>ossindex-maven-plugin</artifactId><br />
<executions><br />
<execution><br />
<id>audit-dependencies</id><br />
<phase>validate</phase><br />
<goals><br />
<goal>audit-aggregate</goal><br />
</goals><br />
</execution><br />
</executions><br />
<inherited>false</inherited><br />
</plugin><br />
</syntaxhighlight><br />
<br />
<br/></div>
Jochen
https://wiki.fam-hammann.de/index.php?title=Java&diff=545
Java
2020-06-24T10:39:06Z
<p>Jochen: </p>
<hr />
<div>* [[Date Time]]<br />
* [[Dozer]]<br />
* [[GWT Project]]<br />
* [[GXT]]<br />
* [[JasperReports]]<br />
* [[JavaLang|Java]]<br />
* [[Maven]]<br />
* [[Out of Memory]]<br />
* [[Security & Cryptography]]</div>
Jochen
https://wiki.fam-hammann.de/index.php?title=Cryptography_%26_Security&diff=544
Cryptography & Security
2020-05-27T07:32:51Z
<p>Jochen: /* Einweg-Hashfunktionen */</p>
<hr />
<div>__TOC__<br />
<br />
<br />
= OAuth =<br />
<br />
== OAuth 2.0 ==<br />
<br />
* [https://oauth.net/2/ Homepage]<br />
<br />
=== Core ===<br />
<br />
* [https://tools.ietf.org/html/rfc6749 RFC 6749: The OAuth 2.0 Authorization Framework]<br />
* [https://tools.ietf.org/html/rfc6750 RFC 6750: The OAuth 2.0 Authorization Framework: Bearer Token Usage]<br />
* [https://tools.ietf.org/html/rfc6819 RFC 6819: OAuth 2.0 Threat Model and Security Considerations]<br />
* [https://tools.ietf.org/html/rfc7636 RFC 7636: Proof Key for Code Exchange by OAuth Public Clients]<br />
* [https://tools.ietf.org/html/draft-ietf-oauth-security-topics RFC Draft: OAuth 2.0 Security Best Current Practice]<br />
<br />
=== Mobile and Other Devices ===<br />
<br />
* [https://tools.ietf.org/html/rfc8252 RFC 8252: OAuth 2.0 for Native Apps]<br />
* [https://tools.ietf.org/html/rfc8628 RFC 8628: OAuth 2.0 Device Authorization Grant]<br />
* [https://tools.ietf.org/html/draft-ietf-oauth-browser-based-apps RFC Draft: OAuth 2.0 for Browser-Based Apps]<br />
<br />
=== Token and Token Management ===<br />
<br />
* [https://tools.ietf.org/html/rfc7662 RFC 7662: OAuth 2.0 Token Introspection]<br />
* [https://tools.ietf.org/html/rfc7009 RFC 7009: OAuth 2.0 Token Revocation]<br />
* [https://tools.ietf.org/html/rfc7519 RFC 7519: JSON Web Token (JWT)]<br />
<br />
=== Discovery and Registration ===<br />
<br />
* [https://tools.ietf.org/html/rfc8414 RFC 8414: OAuth 2.0 Authorization Server Metadata]<br />
* [https://tools.ietf.org/html/rfc7591 RFC 7591: OAuth 2.0 Dynamic Client Registration Protocol]<br />
* [https://tools.ietf.org/html/rfc7592 RFC 7592: OAuth 2.0 Dynamic Client Registration Management Protocol]<br />
<br />
== OAuth 2.1 ==<br />
<br />
* [https://tools.ietf.org/html/draft-parecki-oauth-v2-1 RFC Draft: The OAuth 2.1 Authorization Framework]<br />
<br />
== OAuth Development ==<br />
<br />
* [https://developers.google.com/oauthplayground/ Google OAuth 2.0 Playground]<br />
* [https://developers.google.com/identity/protocols/OAuth2 Using OAuth 2.0 to Access Google APIs]<br />
<br />
== Articles ==<br />
<br />
* [https://pragmaticwebsecurity.com/articles/oauthoidc/localstorage-xss.html Dr. Philippe De Ryck, ''Why avoiding LocalStorage for tokens is the wrong solution'']<br />
<br />
<br/><br />
<br />
= OpenID Connect =<br />
<br />
* [http://openid.net/connect/ Homepage]<br />
* [http://openid.net/specs/openid-connect-core-1_0.html OpenID Connect Core 1.0 incorporating errata set 1]<br />
* [http://openid.net/specs/openid-connect-discovery-1_0.html OpenID Connect Discovery 1.0 incorporating errata set 1]<br />
* [http://openid.net/specs/openid-connect-registration-1_0.html OpenID Connect Dynamic Client Registration 1.0 incorporating errata set 1]<br />
* [http://openid.net/specs/oauth-v2-multiple-response-types-1_0.html OAuth 2.0 Multiple Response Type Encoding Practices]<br />
* [http://openid.net/specs/oauth-v2-form-post-response-mode-1_0.html OAuth 2.0 Form Post Response Mode]<br />
* [http://openid.net/specs/openid-connect-session-1_0.html OpenID Connect Session Management 1.0 - draft 27]<br />
* [http://openid.net/specs/openid-connect-frontchannel-1_0.html OpenID Connect Front-Channel Logout 1.0 - draft 01]<br />
* [http://openid.net/specs/openid-connect-backchannel-1_0.html OpenID Connect Back-Channel Logout 1.0 - draft 03]<br />
<br />
<br/><br />
<br />
= Access / Refresh Token =<br />
<br />
* [https://auth0.com/docs/tokens/refresh-token/current Refresh Tokens]<br />
* [https://auth0.com/blog/refresh-tokens-what-are-they-and-when-to-use-them/ OAuth0 - Refresh Tokens: When to Use Them and How They Interact with JWTs]<br />
* [https://auth0.com/docs/api-auth/tutorials/silent-authentication Silent Authentication]<br />
* [https://auth0.com/blog/5-steps-to-add-modern-authentication-to-legacy-apps-using-jwts/ 5 Steps to Add Modern Authentication to Legacy Apps Using JWTs]<br />
* [https://auth0.com/docs/security/store-tokens Where to Store Tokens]<br />
<br />
<br/><br />
<br />
= Fast Identity Online (FIDO) =<br />
<br />
* [https://fidoalliance.org/ FIDO Allianz]<br />
* [https://fidoalliance.org/specifications/download/ Universal Authentication Framework (UAF) / U2F (Universal Second Factor) Specifications]<br />
<br />
<br/><br />
<br />
= Security Assertion Markup Language 2.0 (SAML 2.0) =<br />
<br />
* [https://wiki.oasis-open.org/security/FrontPage Homepage]<br />
* [http://www.oasis-open.org/committees/download.php/56776/sstc-saml-core-errata-2.0-wd-07.pdf Core Specification]<br />
* [http://www.oasis-open.org/committees/download.php/56779/sstc-saml-bindings-errata-2.0-wd-06.pdf Bindings Specification]<br />
* [http://www.oasis-open.org/committees/download.php/56782/sstc-saml-profiles-errata-2.0-wd-07.pdf Profiles Specification]<br />
* [http://www.oasis-open.org/committees/download.php/56785/sstc-saml-metadata-errata-2.0-wd-05.pdf Metadata Specification]<br />
<br />
<br/><br />
<br />
= JSON Web Token (JWT) =<br />
<br />
* [https://tools.ietf.org/html/rfc7515 RFC 7515: JSON Web Signature (JWS)]<br />
* [https://tools.ietf.org/html/rfc7516 RFC 7516: JSON Web Encryption (JWE)]<br />
* [https://tools.ietf.org/html/rfc7517 RFC 7517: JSON Web Key (JWK)]<br />
* [https://tools.ietf.org/html/rfc7518 RFC 7518: JSON Web Algorithms (JWA)]<br />
* [https://tools.ietf.org/html/rfc7519 RFC 7519: JSON Web Token (JWT)]<br />
* [https://tools.ietf.org/html/rfc8725 RFC 8725: JSON Web Token Best Current Practices]<br />
<br />
<br/><br />
<br />
= One Time Passwords =<br />
* [https://tools.ietf.org/html/rfc2289 RFC 2289: A One-Time Password System]<br />
* [https://tools.ietf.org/html/rfc4226 RFC 4226: HOTP: An HMAC-Based One-Time Password Algorithm]<br />
* [https://tools.ietf.org/html/rfc4793 RFC 4793: The EAP Protected One-Time Password Protocol (EAP-POTP)]<br />
* [https://tools.ietf.org/html/rfc6238 RFC 6238: TOTP: Time-Based One-Time Password Algorithm]<br />
* [https://tools.ietf.org/html/rfc6560 RFC 6560: One-Time Password (OTP) Pre-Authentication]<br />
<br />
<br/><br />
<br />
= Einweg-Hashfunktionen =<br />
<br />
* [https://tools.ietf.org/html/rfc1321 RFC 1321: The MD5 Message-Digest Algorithm]<br />
* [https://tools.ietf.org/html/rfc2104 RFC 2104: HMAC: Keyed-Hashing for Message Authentication]<br />
* [https://tools.ietf.org/html/rfc6151 RFC 6151: Updated Security Considerations for the MD5 Message-Digest and the HMAC-MD5 Algorithms]<br />
* [https://tools.ietf.org/html/rfc6234 RFC 6234: US Secure Hash Algorithms (SHA and SHA-based HMAC and HKDF)]<br />
* [http://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.180-4.pdf FIPS PUB 180-4: Secure Hash Standard (SHS)]<br />
* [https://tools.ietf.org/html/draft-irtf-cfrg-argon2 RFC Draft: The memory-hard Argon2 password hash and proof-of-work function]<br />
<br />
<br/><br />
<br />
= Authentifizierung =<br />
<br />
* [http://davenport.sourceforge.net/ntlm.html The NTLM Authentication Protocol] [[Media:The NTLM Authentication Protocol and Security Support Provider.pdf|(PDF)]]<br />
* [https://tools.ietf.org/html/rfc4120 RFC 4120: The Kerberos Network Authentication Service (V5)]<br />
* [https://tools.ietf.org/html/rfc4121 RFC 4120: The Kerberos Version 5 Generic Security Service Application Program Interface (GSS-API) Mechanism: Version 2]<br />
<br />
<br/><br />
<br />
= Challenge Response =<br />
<br />
* [https://tools.ietf.org/html/rfc5802 RFC 5802: Salted Challenge Response Authentication Mechanism (SCRAM) SASL and GSS-API Mechanisms (Updated by RFC 7677)]<br />
* [https://tools.ietf.org/html/rfc7677 RFC 7677: SCRAM-SHA-256 and SCRAM-SHA-256-PLUS Simple Authentication and Security Layer (SASL) Mechanisms]<br />
<br />
<br/><br />
<br />
= Symmetrische Verschlüsselung =<br />
<br />
* [http://csrc.nist.gov/publications/fips/fips46-3/fips46-3.pdf FIPS PUB 46-3: Data Encryption Standard (DES), National Institute of Standards and Technology, October 25, 1999]<br />
* [http://csrc.nist.gov/publications/fips/fips197/fips-197.pdf FIPS PUB 197: Advanced Encryption Standard (AES), National Institute of Standards and Technology, November 26, 2001]<br />
<br />
<br/><br />
<br />
= Public-Key Cryptography Standards (PKCS) - RSA Laboratories =<br />
<br />
* [https://tools.ietf.org/html/rfc3447 PKCS #1: RSA Cryptography Specifications Version 2.1 (RFC 2313)]<br />
* [https://tools.ietf.org/html/draft-moriarty-pkcs1-03 PKCS #1: RSA Cryptography Specifications Version 2.2 (RFC draft-moriarty-pkcs1-03)]<br />
* [ftp://ftp.rsasecurity.com/pub/pkcs/ascii/pkcs-3.asc PKCS #3: Diffie-Hellman Key Agreement Standard, Version 1.4]<br />
* [https://tools.ietf.org/html/rfc2898 PKCS #5: Password-Based Cryptography Standard, Version 2.0 (RFC 2898)]<br />
* [https://tools.ietf.org/html/draft-moriarty-pkcs5-v2dot1-04 PKCS #5: Password-Based Cryptography Standard, Version 2.1 (RFC draft-moriarty-pkcs5-v2dot1-04)]<br />
* [ftp://ftp.rsasecurity.com/pub/pkcs/ascii/pkcs-6.asc PKCS #6: Extended-Certificate Syntax Standard, Version 1.5]<br />
* [https://tools.ietf.org/html/rfc2315 PKCS #7: Cryptographic Message Syntax Standard, Version 1.5 (2315)]<br />
* [https://tools.ietf.org/html/rfc5208 PKCS #8: Private-Key Information Syntax Standard, Version 1.2 (RFC 5208)]<br />
* [https://tools.ietf.org/html/draft-seantek-pkcs8-encrypted-01 PKCS #8: EncryptedPrivateKeyInfo Media Type (RFC draft-seantek-pkcs8-encrypted-01)]<br />
* [https://tools.ietf.org/html/rfc2985 PKCS #9: Selected Object Classes and Attribute Types Version 2.0 (RFC 2985)]<br />
* [https://tools.ietf.org/html/rfc2986 PKCS #10: Certification Request Syntax Specification Version 1.7 (RFC 2986)]<br />
* [https://tools.ietf.org/html/rfc7512 PKCS #11: URI Scheme (RFC 7512)]<br />
* [https://tools.ietf.org/html/rfc7292 PKCS #12: Personal Information Exchange Syntax Version 1.1 (RFC 7292)]<br />
<br />
<br/><br />
<br />
= Generic Security Service API (GSS-API) =<br />
<br />
* [https://tools.ietf.org/html/rfc2743 RFC 2743: Generic Security Service Application Program Interface Version 2, Update 1]<br />
* [https://tools.ietf.org/html/rfc5554 RFC 5554: Clarifications and Extensions to the Generic Security Service Application Program Interface (GSS-API) for the Use of Channel Bindings]<br />
* [https://tools.ietf.org/html/rfc2479 RFC 2479: Independent Data Unit Protection Generic Security Service Application Program Interface (IDUP-GSS-API)]<br />
* [https://tools.ietf.org/html/rfc2744 RFC 2744: Generic Security Service API Version 2 : C-bindings]<br />
* [https://tools.ietf.org/html/rfc5653 RFC 5653: Generic Security Service API Version 2: Java Bindings Update]<br />
<br />
<br/><br />
<br />
= Pretty Good Privacy (PGP) =<br />
<br />
* [https://tools.ietf.org/html/rfc4880 RFC 4880: OpenPGP Message Format]<br />
* [https://tools.ietf.org/html/rfc5581 RFC 5581: The Camellia Cipher in OpenPGP]<br />
<br />
<br/><br />
<br />
= Secure / Multipurpose Internet Mail Extensions (S/MIME) =<br />
<br />
* [https://tools.ietf.org/html/rfc1847 RFC 1847: Security Multiparts for MIME: Multipart/Signed and Multipart/Encrypted]<br />
* [https://tools.ietf.org/html/rfc5751 RFC 5751: Secure/Multipurpose Internet Mail Extensions (S/MIME) Version 3.2 - Message Specification]<br />
<br />
<br/><br />
<br />
= X.509 Public Key Infrastructure =<br />
<br />
* [https://tools.ietf.org/html/rfc4158 RFC 4158: Internet X.509 Public Key Infrastructure: Certification Path Building]<br />
* [https://tools.ietf.org/html/rfc5280 RFC 5280: Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile]<br />
* [https://tools.ietf.org/html/rfc6818 RFC 6818: Updates to the Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile]<br />
<br />
<br/><br />
<br />
= Transport Layer Security (TLS) =<br />
<br />
* [https://tools.ietf.org/html/rfc5246 RFC 5246: The Transport Layer Security (TLS) Protocol Version 1.2]<br />
<br />
<br/><br />
<br />
= Misc =<br />
* [https://tools.ietf.org/html/rfc4648 RFC 4648: The Base16, Base32, and Base64 Data Encodings]<br />
* [https://tools.ietf.org/html/rfc4422 RFC 4422: Simple Authentication and Security Layer (SASL)]<br />
<br />
<br/><br />
<br />
= Fun =<br />
* [https://de.wikipedia.org/wiki/Internet_Protocol_over_Avian_Carriers Internet Protocol over Avian Carriers]<br />
* [https://tools.ietf.org/html/rfc1149 RFC 1149: A Standard for the Transmission of IP Datagrams on Avian Carriers]<br />
* [https://tools.ietf.org/html/rfc2549 RFC 2549: IP over Avian Carriers with Quality of Service]<br />
* [https://tools.ietf.org/html/rfc6214 RFC 6214: Adaptation of RFC 1149 for IPv6]<br />
<br />
<br/></div>
Jochen
https://wiki.fam-hammann.de/index.php?title=Cryptography_%26_Security&diff=543
Cryptography & Security
2020-05-20T06:40:56Z
<p>Jochen: /* OAuth */</p>
<hr />
<div>__TOC__<br />
<br />
<br />
= OAuth =<br />
<br />
== OAuth 2.0 ==<br />
<br />
* [https://oauth.net/2/ Homepage]<br />
<br />
=== Core ===<br />
<br />
* [https://tools.ietf.org/html/rfc6749 RFC 6749: The OAuth 2.0 Authorization Framework]<br />
* [https://tools.ietf.org/html/rfc6750 RFC 6750: The OAuth 2.0 Authorization Framework: Bearer Token Usage]<br />
* [https://tools.ietf.org/html/rfc6819 RFC 6819: OAuth 2.0 Threat Model and Security Considerations]<br />
* [https://tools.ietf.org/html/rfc7636 RFC 7636: Proof Key for Code Exchange by OAuth Public Clients]<br />
* [https://tools.ietf.org/html/draft-ietf-oauth-security-topics RFC Draft: OAuth 2.0 Security Best Current Practice]<br />
<br />
=== Mobile and Other Devices ===<br />
<br />
* [https://tools.ietf.org/html/rfc8252 RFC 8252: OAuth 2.0 for Native Apps]<br />
* [https://tools.ietf.org/html/rfc8628 RFC 8628: OAuth 2.0 Device Authorization Grant]<br />
* [https://tools.ietf.org/html/draft-ietf-oauth-browser-based-apps RFC Draft: OAuth 2.0 for Browser-Based Apps]<br />
<br />
=== Token and Token Management ===<br />
<br />
* [https://tools.ietf.org/html/rfc7662 RFC 7662: OAuth 2.0 Token Introspection]<br />
* [https://tools.ietf.org/html/rfc7009 RFC 7009: OAuth 2.0 Token Revocation]<br />
* [https://tools.ietf.org/html/rfc7519 RFC 7519: JSON Web Token (JWT)]<br />
<br />
=== Discovery and Registration ===<br />
<br />
* [https://tools.ietf.org/html/rfc8414 RFC 8414: OAuth 2.0 Authorization Server Metadata]<br />
* [https://tools.ietf.org/html/rfc7591 RFC 7591: OAuth 2.0 Dynamic Client Registration Protocol]<br />
* [https://tools.ietf.org/html/rfc7592 RFC 7592: OAuth 2.0 Dynamic Client Registration Management Protocol]<br />
<br />
== OAuth 2.1 ==<br />
<br />
* [https://tools.ietf.org/html/draft-parecki-oauth-v2-1 RFC Draft: The OAuth 2.1 Authorization Framework]<br />
<br />
== OAuth Development ==<br />
<br />
* [https://developers.google.com/oauthplayground/ Google OAuth 2.0 Playground]<br />
* [https://developers.google.com/identity/protocols/OAuth2 Using OAuth 2.0 to Access Google APIs]<br />
<br />
== Articles ==<br />
<br />
* [https://pragmaticwebsecurity.com/articles/oauthoidc/localstorage-xss.html Dr. Philippe De Ryck, ''Why avoiding LocalStorage for tokens is the wrong solution'']<br />
<br />
<br/><br />
<br />
= OpenID Connect =<br />
<br />
* [http://openid.net/connect/ Homepage]<br />
* [http://openid.net/specs/openid-connect-core-1_0.html OpenID Connect Core 1.0 incorporating errata set 1]<br />
* [http://openid.net/specs/openid-connect-discovery-1_0.html OpenID Connect Discovery 1.0 incorporating errata set 1]<br />
* [http://openid.net/specs/openid-connect-registration-1_0.html OpenID Connect Dynamic Client Registration 1.0 incorporating errata set 1]<br />
* [http://openid.net/specs/oauth-v2-multiple-response-types-1_0.html OAuth 2.0 Multiple Response Type Encoding Practices]<br />
* [http://openid.net/specs/oauth-v2-form-post-response-mode-1_0.html OAuth 2.0 Form Post Response Mode]<br />
* [http://openid.net/specs/openid-connect-session-1_0.html OpenID Connect Session Management 1.0 - draft 27]<br />
* [http://openid.net/specs/openid-connect-frontchannel-1_0.html OpenID Connect Front-Channel Logout 1.0 - draft 01]<br />
* [http://openid.net/specs/openid-connect-backchannel-1_0.html OpenID Connect Back-Channel Logout 1.0 - draft 03]<br />
<br />
<br/><br />
<br />
= Access / Refresh Token =<br />
<br />
* [https://auth0.com/docs/tokens/refresh-token/current Refresh Tokens]<br />
* [https://auth0.com/blog/refresh-tokens-what-are-they-and-when-to-use-them/ OAuth0 - Refresh Tokens: When to Use Them and How They Interact with JWTs]<br />
* [https://auth0.com/docs/api-auth/tutorials/silent-authentication Silent Authentication]<br />
* [https://auth0.com/blog/5-steps-to-add-modern-authentication-to-legacy-apps-using-jwts/ 5 Steps to Add Modern Authentication to Legacy Apps Using JWTs]<br />
* [https://auth0.com/docs/security/store-tokens Where to Store Tokens]<br />
<br />
<br/><br />
<br />
= Fast Identity Online (FIDO) =<br />
<br />
* [https://fidoalliance.org/ FIDO Allianz]<br />
* [https://fidoalliance.org/specifications/download/ Universal Authentication Framework (UAF) / U2F (Universal Second Factor) Specifications]<br />
<br />
<br/><br />
<br />
= Security Assertion Markup Language 2.0 (SAML 2.0) =<br />
<br />
* [https://wiki.oasis-open.org/security/FrontPage Homepage]<br />
* [http://www.oasis-open.org/committees/download.php/56776/sstc-saml-core-errata-2.0-wd-07.pdf Core Specification]<br />
* [http://www.oasis-open.org/committees/download.php/56779/sstc-saml-bindings-errata-2.0-wd-06.pdf Bindings Specification]<br />
* [http://www.oasis-open.org/committees/download.php/56782/sstc-saml-profiles-errata-2.0-wd-07.pdf Profiles Specification]<br />
* [http://www.oasis-open.org/committees/download.php/56785/sstc-saml-metadata-errata-2.0-wd-05.pdf Metadata Specification]<br />
<br />
<br/><br />
<br />
= JSON Web Token (JWT) =<br />
<br />
* [https://tools.ietf.org/html/rfc7515 RFC 7515: JSON Web Signature (JWS)]<br />
* [https://tools.ietf.org/html/rfc7516 RFC 7516: JSON Web Encryption (JWE)]<br />
* [https://tools.ietf.org/html/rfc7517 RFC 7517: JSON Web Key (JWK)]<br />
* [https://tools.ietf.org/html/rfc7518 RFC 7518: JSON Web Algorithms (JWA)]<br />
* [https://tools.ietf.org/html/rfc7519 RFC 7519: JSON Web Token (JWT)]<br />
* [https://tools.ietf.org/html/rfc8725 RFC 8725: JSON Web Token Best Current Practices]<br />
<br />
<br/><br />
<br />
= One Time Passwords =<br />
* [https://tools.ietf.org/html/rfc2289 RFC 2289: A One-Time Password System]<br />
* [https://tools.ietf.org/html/rfc4226 RFC 4226: HOTP: An HMAC-Based One-Time Password Algorithm]<br />
* [https://tools.ietf.org/html/rfc4793 RFC 4793: The EAP Protected One-Time Password Protocol (EAP-POTP)]<br />
* [https://tools.ietf.org/html/rfc6238 RFC 6238: TOTP: Time-Based One-Time Password Algorithm]<br />
* [https://tools.ietf.org/html/rfc6560 RFC 6560: One-Time Password (OTP) Pre-Authentication]<br />
<br />
<br/><br />
<br />
= Einweg-Hashfunktionen =<br />
<br />
* [https://tools.ietf.org/html/rfc1321 RFC 1321: The MD5 Message-Digest Algorithm]<br />
* [https://tools.ietf.org/html/rfc2104 RFC 2104: HMAC: Keyed-Hashing for Message Authentication]<br />
* [https://tools.ietf.org/html/rfc6151 RFC 6151: Updated Security Considerations for the MD5 Message-Digest and the HMAC-MD5 Algorithms]<br />
* [https://tools.ietf.org/html/rfc6234 RFC 6234: US Secure Hash Algorithms (SHA and SHA-based HMAC and HKDF)]<br />
* [http://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.180-4.pdf FIPS PUB 180-4: Secure Hash Standard (SHS)]<br />
<br />
<br/><br />
<br />
= Authentifizierung =<br />
<br />
* [http://davenport.sourceforge.net/ntlm.html The NTLM Authentication Protocol] [[Media:The NTLM Authentication Protocol and Security Support Provider.pdf|(PDF)]]<br />
* [https://tools.ietf.org/html/rfc4120 RFC 4120: The Kerberos Network Authentication Service (V5)]<br />
* [https://tools.ietf.org/html/rfc4121 RFC 4120: The Kerberos Version 5 Generic Security Service Application Program Interface (GSS-API) Mechanism: Version 2]<br />
<br />
<br/><br />
<br />
= Challenge Response =<br />
<br />
* [https://tools.ietf.org/html/rfc5802 RFC 5802: Salted Challenge Response Authentication Mechanism (SCRAM) SASL and GSS-API Mechanisms (Updated by RFC 7677)]<br />
* [https://tools.ietf.org/html/rfc7677 RFC 7677: SCRAM-SHA-256 and SCRAM-SHA-256-PLUS Simple Authentication and Security Layer (SASL) Mechanisms]<br />
<br />
<br/><br />
<br />
= Symmetrische Verschlüsselung =<br />
<br />
* [http://csrc.nist.gov/publications/fips/fips46-3/fips46-3.pdf FIPS PUB 46-3: Data Encryption Standard (DES), National Institute of Standards and Technology, October 25, 1999]<br />
* [http://csrc.nist.gov/publications/fips/fips197/fips-197.pdf FIPS PUB 197: Advanced Encryption Standard (AES), National Institute of Standards and Technology, November 26, 2001]<br />
<br />
<br/><br />
<br />
= Public-Key Cryptography Standards (PKCS) - RSA Laboratories =<br />
<br />
* [https://tools.ietf.org/html/rfc3447 PKCS #1: RSA Cryptography Specifications Version 2.1 (RFC 2313)]<br />
* [https://tools.ietf.org/html/draft-moriarty-pkcs1-03 PKCS #1: RSA Cryptography Specifications Version 2.2 (RFC draft-moriarty-pkcs1-03)]<br />
* [ftp://ftp.rsasecurity.com/pub/pkcs/ascii/pkcs-3.asc PKCS #3: Diffie-Hellman Key Agreement Standard, Version 1.4]<br />
* [https://tools.ietf.org/html/rfc2898 PKCS #5: Password-Based Cryptography Standard, Version 2.0 (RFC 2898)]<br />
* [https://tools.ietf.org/html/draft-moriarty-pkcs5-v2dot1-04 PKCS #5: Password-Based Cryptography Standard, Version 2.1 (RFC draft-moriarty-pkcs5-v2dot1-04)]<br />
* [ftp://ftp.rsasecurity.com/pub/pkcs/ascii/pkcs-6.asc PKCS #6: Extended-Certificate Syntax Standard, Version 1.5]<br />
* [https://tools.ietf.org/html/rfc2315 PKCS #7: Cryptographic Message Syntax Standard, Version 1.5 (2315)]<br />
* [https://tools.ietf.org/html/rfc5208 PKCS #8: Private-Key Information Syntax Standard, Version 1.2 (RFC 5208)]<br />
* [https://tools.ietf.org/html/draft-seantek-pkcs8-encrypted-01 PKCS #8: EncryptedPrivateKeyInfo Media Type (RFC draft-seantek-pkcs8-encrypted-01)]<br />
* [https://tools.ietf.org/html/rfc2985 PKCS #9: Selected Object Classes and Attribute Types Version 2.0 (RFC 2985)]<br />
* [https://tools.ietf.org/html/rfc2986 PKCS #10: Certification Request Syntax Specification Version 1.7 (RFC 2986)]<br />
* [https://tools.ietf.org/html/rfc7512 PKCS #11: URI Scheme (RFC 7512)]<br />
* [https://tools.ietf.org/html/rfc7292 PKCS #12: Personal Information Exchange Syntax Version 1.1 (RFC 7292)]<br />
<br />
<br/><br />
<br />
= Generic Security Service API (GSS-API) =<br />
<br />
* [https://tools.ietf.org/html/rfc2743 RFC 2743: Generic Security Service Application Program Interface Version 2, Update 1]<br />
* [https://tools.ietf.org/html/rfc5554 RFC 5554: Clarifications and Extensions to the Generic Security Service Application Program Interface (GSS-API) for the Use of Channel Bindings]<br />
* [https://tools.ietf.org/html/rfc2479 RFC 2479: Independent Data Unit Protection Generic Security Service Application Program Interface (IDUP-GSS-API)]<br />
* [https://tools.ietf.org/html/rfc2744 RFC 2744: Generic Security Service API Version 2 : C-bindings]<br />
* [https://tools.ietf.org/html/rfc5653 RFC 5653: Generic Security Service API Version 2: Java Bindings Update]<br />
<br />
<br/><br />
<br />
= Pretty Good Privacy (PGP) =<br />
<br />
* [https://tools.ietf.org/html/rfc4880 RFC 4880: OpenPGP Message Format]<br />
* [https://tools.ietf.org/html/rfc5581 RFC 5581: The Camellia Cipher in OpenPGP]<br />
<br />
<br/><br />
<br />
= Secure / Multipurpose Internet Mail Extensions (S/MIME) =<br />
<br />
* [https://tools.ietf.org/html/rfc1847 RFC 1847: Security Multiparts for MIME: Multipart/Signed and Multipart/Encrypted]<br />
* [https://tools.ietf.org/html/rfc5751 RFC 5751: Secure/Multipurpose Internet Mail Extensions (S/MIME) Version 3.2 - Message Specification]<br />
<br />
<br/><br />
<br />
= X.509 Public Key Infrastructure =<br />
<br />
* [https://tools.ietf.org/html/rfc4158 RFC 4158: Internet X.509 Public Key Infrastructure: Certification Path Building]<br />
* [https://tools.ietf.org/html/rfc5280 RFC 5280: Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile]<br />
* [https://tools.ietf.org/html/rfc6818 RFC 6818: Updates to the Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile]<br />
<br />
<br/><br />
<br />
= Transport Layer Security (TLS) =<br />
<br />
* [https://tools.ietf.org/html/rfc5246 RFC 5246: The Transport Layer Security (TLS) Protocol Version 1.2]<br />
<br />
<br/><br />
<br />
= Misc =<br />
* [https://tools.ietf.org/html/rfc4648 RFC 4648: The Base16, Base32, and Base64 Data Encodings]<br />
* [https://tools.ietf.org/html/rfc4422 RFC 4422: Simple Authentication and Security Layer (SASL)]<br />
<br />
<br/><br />
<br />
= Fun =<br />
* [https://de.wikipedia.org/wiki/Internet_Protocol_over_Avian_Carriers Internet Protocol over Avian Carriers]<br />
* [https://tools.ietf.org/html/rfc1149 RFC 1149: A Standard for the Transmission of IP Datagrams on Avian Carriers]<br />
* [https://tools.ietf.org/html/rfc2549 RFC 2549: IP over Avian Carriers with Quality of Service]<br />
* [https://tools.ietf.org/html/rfc6214 RFC 6214: Adaptation of RFC 1149 for IPv6]<br />
<br />
<br/></div>
Jochen
https://wiki.fam-hammann.de/index.php?title=Cryptography_%26_Security&diff=542
Cryptography & Security
2020-05-20T06:38:59Z
<p>Jochen: /* OAuth */</p>
<hr />
<div>__TOC__<br />
<br />
<br />
= OAuth =<br />
<br />
== OAuth 2.0 ==<br />
<br />
=== Core ===<br />
<br />
* [https://oauth.net/2/ Homepage]<br />
* [https://tools.ietf.org/html/rfc6749 RFC 6749: The OAuth 2.0 Authorization Framework]<br />
* [https://tools.ietf.org/html/rfc6750 RFC 6750: The OAuth 2.0 Authorization Framework: Bearer Token Usage]<br />
* [https://tools.ietf.org/html/rfc6819 RFC 6819: OAuth 2.0 Threat Model and Security Considerations]<br />
* [https://tools.ietf.org/html/rfc7636 RFC 7636: Proof Key for Code Exchange by OAuth Public Clients]<br />
* [https://tools.ietf.org/html/draft-ietf-oauth-security-topics RFC Draft: OAuth 2.0 Security Best Current Practice]<br />
<br />
=== Mobile and Other Devices ===<br />
<br />
* [https://tools.ietf.org/html/rfc8252 RFC 8252: OAuth 2.0 for Native Apps]<br />
* [https://tools.ietf.org/html/rfc8628 RFC 8628: OAuth 2.0 Device Authorization Grant]<br />
* [https://tools.ietf.org/html/draft-ietf-oauth-browser-based-apps RFC Draft: OAuth 2.0 for Browser-Based Apps]<br />
<br />
=== Token and Token Management ===<br />
<br />
* [https://tools.ietf.org/html/rfc7662 RFC 7662: OAuth 2.0 Token Introspection]<br />
* [https://tools.ietf.org/html/rfc7009 RFC 7009: OAuth 2.0 Token Revocation]<br />
* [https://tools.ietf.org/html/rfc7519 RFC 7519: JSON Web Token (JWT)]<br />
<br />
=== Discovery and Registration ===<br />
<br />
* [https://tools.ietf.org/html/rfc8414 RFC 8414: OAuth 2.0 Authorization Server Metadata]<br />
* [https://tools.ietf.org/html/rfc7591 RFC 7591: OAuth 2.0 Dynamic Client Registration Protocol]<br />
* [https://tools.ietf.org/html/rfc7592 RFC 7592: OAuth 2.0 Dynamic Client Registration Management Protocol]<br />
<br />
== OAuth 2.1 ==<br />
<br />
* [https://tools.ietf.org/html/draft-parecki-oauth-v2-1 RFC Draft: The OAuth 2.1 Authorization Framework]<br />
<br />
== OAuth Development ==<br />
<br />
* [https://developers.google.com/oauthplayground/ Google OAuth 2.0 Playground]<br />
* [https://developers.google.com/identity/protocols/OAuth2 Using OAuth 2.0 to Access Google APIs]<br />
<br />
== Articles ==<br />
<br />
* [https://pragmaticwebsecurity.com/articles/oauthoidc/localstorage-xss.html Dr. Philippe De Ryck, ''Why avoiding LocalStorage for tokens is the wrong solution'']<br />
<br />
<br/><br />
<br />
= OpenID Connect =<br />
<br />
* [http://openid.net/connect/ Homepage]<br />
* [http://openid.net/specs/openid-connect-core-1_0.html OpenID Connect Core 1.0 incorporating errata set 1]<br />
* [http://openid.net/specs/openid-connect-discovery-1_0.html OpenID Connect Discovery 1.0 incorporating errata set 1]<br />
* [http://openid.net/specs/openid-connect-registration-1_0.html OpenID Connect Dynamic Client Registration 1.0 incorporating errata set 1]<br />
* [http://openid.net/specs/oauth-v2-multiple-response-types-1_0.html OAuth 2.0 Multiple Response Type Encoding Practices]<br />
* [http://openid.net/specs/oauth-v2-form-post-response-mode-1_0.html OAuth 2.0 Form Post Response Mode]<br />
* [http://openid.net/specs/openid-connect-session-1_0.html OpenID Connect Session Management 1.0 - draft 27]<br />
* [http://openid.net/specs/openid-connect-frontchannel-1_0.html OpenID Connect Front-Channel Logout 1.0 - draft 01]<br />
* [http://openid.net/specs/openid-connect-backchannel-1_0.html OpenID Connect Back-Channel Logout 1.0 - draft 03]<br />
<br />
<br/><br />
<br />
= Access / Refresh Token =<br />
<br />
* [https://auth0.com/docs/tokens/refresh-token/current Refresh Tokens]<br />
* [https://auth0.com/blog/refresh-tokens-what-are-they-and-when-to-use-them/ OAuth0 - Refresh Tokens: When to Use Them and How They Interact with JWTs]<br />
* [https://auth0.com/docs/api-auth/tutorials/silent-authentication Silent Authentication]<br />
* [https://auth0.com/blog/5-steps-to-add-modern-authentication-to-legacy-apps-using-jwts/ 5 Steps to Add Modern Authentication to Legacy Apps Using JWTs]<br />
* [https://auth0.com/docs/security/store-tokens Where to Store Tokens]<br />
<br />
<br/><br />
<br />
= Fast Identity Online (FIDO) =<br />
<br />
* [https://fidoalliance.org/ FIDO Allianz]<br />
* [https://fidoalliance.org/specifications/download/ Universal Authentication Framework (UAF) / U2F (Universal Second Factor) Specifications]<br />
<br />
<br/><br />
<br />
= Security Assertion Markup Language 2.0 (SAML 2.0) =<br />
<br />
* [https://wiki.oasis-open.org/security/FrontPage Homepage]<br />
* [http://www.oasis-open.org/committees/download.php/56776/sstc-saml-core-errata-2.0-wd-07.pdf Core Specification]<br />
* [http://www.oasis-open.org/committees/download.php/56779/sstc-saml-bindings-errata-2.0-wd-06.pdf Bindings Specification]<br />
* [http://www.oasis-open.org/committees/download.php/56782/sstc-saml-profiles-errata-2.0-wd-07.pdf Profiles Specification]<br />
* [http://www.oasis-open.org/committees/download.php/56785/sstc-saml-metadata-errata-2.0-wd-05.pdf Metadata Specification]<br />
<br />
<br/><br />
<br />
= JSON Web Token (JWT) =<br />
<br />
* [https://tools.ietf.org/html/rfc7515 RFC 7515: JSON Web Signature (JWS)]<br />
* [https://tools.ietf.org/html/rfc7516 RFC 7516: JSON Web Encryption (JWE)]<br />
* [https://tools.ietf.org/html/rfc7517 RFC 7517: JSON Web Key (JWK)]<br />
* [https://tools.ietf.org/html/rfc7518 RFC 7518: JSON Web Algorithms (JWA)]<br />
* [https://tools.ietf.org/html/rfc7519 RFC 7519: JSON Web Token (JWT)]<br />
* [https://tools.ietf.org/html/rfc8725 RFC 8725: JSON Web Token Best Current Practices]<br />
<br />
<br/><br />
<br />
= One Time Passwords =<br />
* [https://tools.ietf.org/html/rfc2289 RFC 2289: A One-Time Password System]<br />
* [https://tools.ietf.org/html/rfc4226 RFC 4226: HOTP: An HMAC-Based One-Time Password Algorithm]<br />
* [https://tools.ietf.org/html/rfc4793 RFC 4793: The EAP Protected One-Time Password Protocol (EAP-POTP)]<br />
* [https://tools.ietf.org/html/rfc6238 RFC 6238: TOTP: Time-Based One-Time Password Algorithm]<br />
* [https://tools.ietf.org/html/rfc6560 RFC 6560: One-Time Password (OTP) Pre-Authentication]<br />
<br />
<br/><br />
<br />
= Einweg-Hashfunktionen =<br />
<br />
* [https://tools.ietf.org/html/rfc1321 RFC 1321: The MD5 Message-Digest Algorithm]<br />
* [https://tools.ietf.org/html/rfc2104 RFC 2104: HMAC: Keyed-Hashing for Message Authentication]<br />
* [https://tools.ietf.org/html/rfc6151 RFC 6151: Updated Security Considerations for the MD5 Message-Digest and the HMAC-MD5 Algorithms]<br />
* [https://tools.ietf.org/html/rfc6234 RFC 6234: US Secure Hash Algorithms (SHA and SHA-based HMAC and HKDF)]<br />
* [http://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.180-4.pdf FIPS PUB 180-4: Secure Hash Standard (SHS)]<br />
<br />
<br/><br />
<br />
= Authentifizierung =<br />
<br />
* [http://davenport.sourceforge.net/ntlm.html The NTLM Authentication Protocol] [[Media:The NTLM Authentication Protocol and Security Support Provider.pdf|(PDF)]]<br />
* [https://tools.ietf.org/html/rfc4120 RFC 4120: The Kerberos Network Authentication Service (V5)]<br />
* [https://tools.ietf.org/html/rfc4121 RFC 4120: The Kerberos Version 5 Generic Security Service Application Program Interface (GSS-API) Mechanism: Version 2]<br />
<br />
<br/><br />
<br />
= Challenge Response =<br />
<br />
* [https://tools.ietf.org/html/rfc5802 RFC 5802: Salted Challenge Response Authentication Mechanism (SCRAM) SASL and GSS-API Mechanisms (Updated by RFC 7677)]<br />
* [https://tools.ietf.org/html/rfc7677 RFC 7677: SCRAM-SHA-256 and SCRAM-SHA-256-PLUS Simple Authentication and Security Layer (SASL) Mechanisms]<br />
<br />
<br/><br />
<br />
= Symmetrische Verschlüsselung =<br />
<br />
* [http://csrc.nist.gov/publications/fips/fips46-3/fips46-3.pdf FIPS PUB 46-3: Data Encryption Standard (DES), National Institute of Standards and Technology, October 25, 1999]<br />
* [http://csrc.nist.gov/publications/fips/fips197/fips-197.pdf FIPS PUB 197: Advanced Encryption Standard (AES), National Institute of Standards and Technology, November 26, 2001]<br />
<br />
<br/><br />
<br />
= Public-Key Cryptography Standards (PKCS) - RSA Laboratories =<br />
<br />
* [https://tools.ietf.org/html/rfc3447 PKCS #1: RSA Cryptography Specifications Version 2.1 (RFC 2313)]<br />
* [https://tools.ietf.org/html/draft-moriarty-pkcs1-03 PKCS #1: RSA Cryptography Specifications Version 2.2 (RFC draft-moriarty-pkcs1-03)]<br />
* [ftp://ftp.rsasecurity.com/pub/pkcs/ascii/pkcs-3.asc PKCS #3: Diffie-Hellman Key Agreement Standard, Version 1.4]<br />
* [https://tools.ietf.org/html/rfc2898 PKCS #5: Password-Based Cryptography Standard, Version 2.0 (RFC 2898)]<br />
* [https://tools.ietf.org/html/draft-moriarty-pkcs5-v2dot1-04 PKCS #5: Password-Based Cryptography Standard, Version 2.1 (RFC draft-moriarty-pkcs5-v2dot1-04)]<br />
* [ftp://ftp.rsasecurity.com/pub/pkcs/ascii/pkcs-6.asc PKCS #6: Extended-Certificate Syntax Standard, Version 1.5]<br />
* [https://tools.ietf.org/html/rfc2315 PKCS #7: Cryptographic Message Syntax Standard, Version 1.5 (2315)]<br />
* [https://tools.ietf.org/html/rfc5208 PKCS #8: Private-Key Information Syntax Standard, Version 1.2 (RFC 5208)]<br />
* [https://tools.ietf.org/html/draft-seantek-pkcs8-encrypted-01 PKCS #8: EncryptedPrivateKeyInfo Media Type (RFC draft-seantek-pkcs8-encrypted-01)]<br />
* [https://tools.ietf.org/html/rfc2985 PKCS #9: Selected Object Classes and Attribute Types Version 2.0 (RFC 2985)]<br />
* [https://tools.ietf.org/html/rfc2986 PKCS #10: Certification Request Syntax Specification Version 1.7 (RFC 2986)]<br />
* [https://tools.ietf.org/html/rfc7512 PKCS #11: URI Scheme (RFC 7512)]<br />
* [https://tools.ietf.org/html/rfc7292 PKCS #12: Personal Information Exchange Syntax Version 1.1 (RFC 7292)]<br />
<br />
<br/><br />
<br />
= Generic Security Service API (GSS-API) =<br />
<br />
* [https://tools.ietf.org/html/rfc2743 RFC 2743: Generic Security Service Application Program Interface Version 2, Update 1]<br />
* [https://tools.ietf.org/html/rfc5554 RFC 5554: Clarifications and Extensions to the Generic Security Service Application Program Interface (GSS-API) for the Use of Channel Bindings]<br />
* [https://tools.ietf.org/html/rfc2479 RFC 2479: Independent Data Unit Protection Generic Security Service Application Program Interface (IDUP-GSS-API)]<br />
* [https://tools.ietf.org/html/rfc2744 RFC 2744: Generic Security Service API Version 2 : C-bindings]<br />
* [https://tools.ietf.org/html/rfc5653 RFC 5653: Generic Security Service API Version 2: Java Bindings Update]<br />
<br />
<br/><br />
<br />
= Pretty Good Privacy (PGP) =<br />
<br />
* [https://tools.ietf.org/html/rfc4880 RFC 4880: OpenPGP Message Format]<br />
* [https://tools.ietf.org/html/rfc5581 RFC 5581: The Camellia Cipher in OpenPGP]<br />
<br />
<br/><br />
<br />
= Secure / Multipurpose Internet Mail Extensions (S/MIME) =<br />
<br />
* [https://tools.ietf.org/html/rfc1847 RFC 1847: Security Multiparts for MIME: Multipart/Signed and Multipart/Encrypted]<br />
* [https://tools.ietf.org/html/rfc5751 RFC 5751: Secure/Multipurpose Internet Mail Extensions (S/MIME) Version 3.2 - Message Specification]<br />
<br />
<br/><br />
<br />
= X.509 Public Key Infrastructure =<br />
<br />
* [https://tools.ietf.org/html/rfc4158 RFC 4158: Internet X.509 Public Key Infrastructure: Certification Path Building]<br />
* [https://tools.ietf.org/html/rfc5280 RFC 5280: Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile]<br />
* [https://tools.ietf.org/html/rfc6818 RFC 6818: Updates to the Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile]<br />
<br />
<br/><br />
<br />
= Transport Layer Security (TLS) =<br />
<br />
* [https://tools.ietf.org/html/rfc5246 RFC 5246: The Transport Layer Security (TLS) Protocol Version 1.2]<br />
<br />
<br/><br />
<br />
= Misc =<br />
* [https://tools.ietf.org/html/rfc4648 RFC 4648: The Base16, Base32, and Base64 Data Encodings]<br />
* [https://tools.ietf.org/html/rfc4422 RFC 4422: Simple Authentication and Security Layer (SASL)]<br />
<br />
<br/><br />
<br />
= Fun =<br />
* [https://de.wikipedia.org/wiki/Internet_Protocol_over_Avian_Carriers Internet Protocol over Avian Carriers]<br />
* [https://tools.ietf.org/html/rfc1149 RFC 1149: A Standard for the Transmission of IP Datagrams on Avian Carriers]<br />
* [https://tools.ietf.org/html/rfc2549 RFC 2549: IP over Avian Carriers with Quality of Service]<br />
* [https://tools.ietf.org/html/rfc6214 RFC 6214: Adaptation of RFC 1149 for IPv6]<br />
<br />
<br/></div>
Jochen
https://wiki.fam-hammann.de/index.php?title=Cryptography_%26_Security&diff=541
Cryptography & Security
2020-05-20T06:36:22Z
<p>Jochen: /* OAuth */</p>
<hr />
<div>__TOC__<br />
<br />
<br />
= OAuth =<br />
<br />
== OAuth 2.0 ==<br />
<br />
=== Core ===<br />
<br />
* [https://oauth.net/2/ Homepage]<br />
* [https://tools.ietf.org/html/rfc6749 RFC 6749: The OAuth 2.0 Authorization Framework]<br />
* [https://tools.ietf.org/html/rfc6750 RFC 6750: The OAuth 2.0 Authorization Framework: Bearer Token Usage]<br />
* [https://tools.ietf.org/html/rfc6819 RFC 6819: OAuth 2.0 Threat Model and Security Considerations]<br />
* [https://tools.ietf.org/html/rfc7636 RFC 7636: Proof Key for Code Exchange by OAuth Public Clients]<br />
* [https://tools.ietf.org/html/draft-ietf-oauth-security-topics RFC Draft: OAuth 2.0 Security Best Current Practice]<br />
<br />
=== Mobile and Other Devices ===<br />
<br />
* [https://tools.ietf.org/html/rfc8252 RFC 8252: OAuth 2.0 for Native Apps]<br />
* [https://tools.ietf.org/html/rfc8628 RFC 8628: OAuth 2.0 Device Authorization Grant]<br />
* [https://tools.ietf.org/html/draft-ietf-oauth-browser-based-apps RFC Draft: OAuth 2.0 for Browser-Based Apps]<br />
<br />
=== Token and Token Management ===<br />
<br />
* [https://tools.ietf.org/html/rfc7662 RFC 7662: OAuth 2.0 Token Introspection]<br />
* [https://tools.ietf.org/html/rfc7009 RFC 7009: OAuth 2.0 Token Revocation]<br />
* [https://tools.ietf.org/html/rfc7519 RFC 7519: JSON Web Token (JWT)]<br />
<br />
=== Discovery and Registration ===<br />
<br />
* [https://tools.ietf.org/html/rfc8414 RFC 8414: OAuth 2.0 Authorization Server Metadata]<br />
* [https://tools.ietf.org/html/rfc7591 RFC 7591: OAuth 2.0 Dynamic Client Registration Protocol]<br />
* [https://tools.ietf.org/html/rfc7592 RFC 7592: OAuth 2.0 Dynamic Client Registration Management Protocol]<br />
<br />
== OAuth 2.1 ==<br />
<br />
* [https://tools.ietf.org/html/draft-parecki-oauth-v2-1 RFC Draft: The OAuth 2.1 Authorization Framework]<br />
<br />
== OAuth Development ==<br />
<br />
* [https://developers.google.com/oauthplayground/ Google OAuth 2.0 Playground]<br />
* [https://developers.google.com/identity/protocols/OAuth2 Using OAuth 2.0 to Access Google APIs]<br />
<br />
<br/><br />
<br />
= OpenID Connect =<br />
<br />
* [http://openid.net/connect/ Homepage]<br />
* [http://openid.net/specs/openid-connect-core-1_0.html OpenID Connect Core 1.0 incorporating errata set 1]<br />
* [http://openid.net/specs/openid-connect-discovery-1_0.html OpenID Connect Discovery 1.0 incorporating errata set 1]<br />
* [http://openid.net/specs/openid-connect-registration-1_0.html OpenID Connect Dynamic Client Registration 1.0 incorporating errata set 1]<br />
* [http://openid.net/specs/oauth-v2-multiple-response-types-1_0.html OAuth 2.0 Multiple Response Type Encoding Practices]<br />
* [http://openid.net/specs/oauth-v2-form-post-response-mode-1_0.html OAuth 2.0 Form Post Response Mode]<br />
* [http://openid.net/specs/openid-connect-session-1_0.html OpenID Connect Session Management 1.0 - draft 27]<br />
* [http://openid.net/specs/openid-connect-frontchannel-1_0.html OpenID Connect Front-Channel Logout 1.0 - draft 01]<br />
* [http://openid.net/specs/openid-connect-backchannel-1_0.html OpenID Connect Back-Channel Logout 1.0 - draft 03]<br />
<br />
<br/><br />
<br />
= Access / Refresh Token =<br />
<br />
* [https://auth0.com/docs/tokens/refresh-token/current Refresh Tokens]<br />
* [https://auth0.com/blog/refresh-tokens-what-are-they-and-when-to-use-them/ OAuth0 - Refresh Tokens: When to Use Them and How They Interact with JWTs]<br />
* [https://auth0.com/docs/api-auth/tutorials/silent-authentication Silent Authentication]<br />
* [https://auth0.com/blog/5-steps-to-add-modern-authentication-to-legacy-apps-using-jwts/ 5 Steps to Add Modern Authentication to Legacy Apps Using JWTs]<br />
* [https://auth0.com/docs/security/store-tokens Where to Store Tokens]<br />
<br />
<br/><br />
<br />
= Fast Identity Online (FIDO) =<br />
<br />
* [https://fidoalliance.org/ FIDO Allianz]<br />
* [https://fidoalliance.org/specifications/download/ Universal Authentication Framework (UAF) / U2F (Universal Second Factor) Specifications]<br />
<br />
<br/><br />
<br />
= Security Assertion Markup Language 2.0 (SAML 2.0) =<br />
<br />
* [https://wiki.oasis-open.org/security/FrontPage Homepage]<br />
* [http://www.oasis-open.org/committees/download.php/56776/sstc-saml-core-errata-2.0-wd-07.pdf Core Specification]<br />
* [http://www.oasis-open.org/committees/download.php/56779/sstc-saml-bindings-errata-2.0-wd-06.pdf Bindings Specification]<br />
* [http://www.oasis-open.org/committees/download.php/56782/sstc-saml-profiles-errata-2.0-wd-07.pdf Profiles Specification]<br />
* [http://www.oasis-open.org/committees/download.php/56785/sstc-saml-metadata-errata-2.0-wd-05.pdf Metadata Specification]<br />
<br />
<br/><br />
<br />
= JSON Web Token (JWT) =<br />
<br />
* [https://tools.ietf.org/html/rfc7515 RFC 7515: JSON Web Signature (JWS)]<br />
* [https://tools.ietf.org/html/rfc7516 RFC 7516: JSON Web Encryption (JWE)]<br />
* [https://tools.ietf.org/html/rfc7517 RFC 7517: JSON Web Key (JWK)]<br />
* [https://tools.ietf.org/html/rfc7518 RFC 7518: JSON Web Algorithms (JWA)]<br />
* [https://tools.ietf.org/html/rfc7519 RFC 7519: JSON Web Token (JWT)]<br />
* [https://tools.ietf.org/html/rfc8725 RFC 8725: JSON Web Token Best Current Practices]<br />
<br />
<br/><br />
<br />
= One Time Passwords =<br />
* [https://tools.ietf.org/html/rfc2289 RFC 2289: A One-Time Password System]<br />
* [https://tools.ietf.org/html/rfc4226 RFC 4226: HOTP: An HMAC-Based One-Time Password Algorithm]<br />
* [https://tools.ietf.org/html/rfc4793 RFC 4793: The EAP Protected One-Time Password Protocol (EAP-POTP)]<br />
* [https://tools.ietf.org/html/rfc6238 RFC 6238: TOTP: Time-Based One-Time Password Algorithm]<br />
* [https://tools.ietf.org/html/rfc6560 RFC 6560: One-Time Password (OTP) Pre-Authentication]<br />
<br />
<br/><br />
<br />
= Einweg-Hashfunktionen =<br />
<br />
* [https://tools.ietf.org/html/rfc1321 RFC 1321: The MD5 Message-Digest Algorithm]<br />
* [https://tools.ietf.org/html/rfc2104 RFC 2104: HMAC: Keyed-Hashing for Message Authentication]<br />
* [https://tools.ietf.org/html/rfc6151 RFC 6151: Updated Security Considerations for the MD5 Message-Digest and the HMAC-MD5 Algorithms]<br />
* [https://tools.ietf.org/html/rfc6234 RFC 6234: US Secure Hash Algorithms (SHA and SHA-based HMAC and HKDF)]<br />
* [http://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.180-4.pdf FIPS PUB 180-4: Secure Hash Standard (SHS)]<br />
<br />
<br/><br />
<br />
= Authentifizierung =<br />
<br />
* [http://davenport.sourceforge.net/ntlm.html The NTLM Authentication Protocol] [[Media:The NTLM Authentication Protocol and Security Support Provider.pdf|(PDF)]]<br />
* [https://tools.ietf.org/html/rfc4120 RFC 4120: The Kerberos Network Authentication Service (V5)]<br />
* [https://tools.ietf.org/html/rfc4121 RFC 4120: The Kerberos Version 5 Generic Security Service Application Program Interface (GSS-API) Mechanism: Version 2]<br />
<br />
<br/><br />
<br />
= Challenge Response =<br />
<br />
* [https://tools.ietf.org/html/rfc5802 RFC 5802: Salted Challenge Response Authentication Mechanism (SCRAM) SASL and GSS-API Mechanisms (Updated by RFC 7677)]<br />
* [https://tools.ietf.org/html/rfc7677 RFC 7677: SCRAM-SHA-256 and SCRAM-SHA-256-PLUS Simple Authentication and Security Layer (SASL) Mechanisms]<br />
<br />
<br/><br />
<br />
= Symmetrische Verschlüsselung =<br />
<br />
* [http://csrc.nist.gov/publications/fips/fips46-3/fips46-3.pdf FIPS PUB 46-3: Data Encryption Standard (DES), National Institute of Standards and Technology, October 25, 1999]<br />
* [http://csrc.nist.gov/publications/fips/fips197/fips-197.pdf FIPS PUB 197: Advanced Encryption Standard (AES), National Institute of Standards and Technology, November 26, 2001]<br />
<br />
<br/><br />
<br />
= Public-Key Cryptography Standards (PKCS) - RSA Laboratories =<br />
<br />
* [https://tools.ietf.org/html/rfc3447 PKCS #1: RSA Cryptography Specifications Version 2.1 (RFC 2313)]<br />
* [https://tools.ietf.org/html/draft-moriarty-pkcs1-03 PKCS #1: RSA Cryptography Specifications Version 2.2 (RFC draft-moriarty-pkcs1-03)]<br />
* [ftp://ftp.rsasecurity.com/pub/pkcs/ascii/pkcs-3.asc PKCS #3: Diffie-Hellman Key Agreement Standard, Version 1.4]<br />
* [https://tools.ietf.org/html/rfc2898 PKCS #5: Password-Based Cryptography Standard, Version 2.0 (RFC 2898)]<br />
* [https://tools.ietf.org/html/draft-moriarty-pkcs5-v2dot1-04 PKCS #5: Password-Based Cryptography Standard, Version 2.1 (RFC draft-moriarty-pkcs5-v2dot1-04)]<br />
* [ftp://ftp.rsasecurity.com/pub/pkcs/ascii/pkcs-6.asc PKCS #6: Extended-Certificate Syntax Standard, Version 1.5]<br />
* [https://tools.ietf.org/html/rfc2315 PKCS #7: Cryptographic Message Syntax Standard, Version 1.5 (2315)]<br />
* [https://tools.ietf.org/html/rfc5208 PKCS #8: Private-Key Information Syntax Standard, Version 1.2 (RFC 5208)]<br />
* [https://tools.ietf.org/html/draft-seantek-pkcs8-encrypted-01 PKCS #8: EncryptedPrivateKeyInfo Media Type (RFC draft-seantek-pkcs8-encrypted-01)]<br />
* [https://tools.ietf.org/html/rfc2985 PKCS #9: Selected Object Classes and Attribute Types Version 2.0 (RFC 2985)]<br />
* [https://tools.ietf.org/html/rfc2986 PKCS #10: Certification Request Syntax Specification Version 1.7 (RFC 2986)]<br />
* [https://tools.ietf.org/html/rfc7512 PKCS #11: URI Scheme (RFC 7512)]<br />
* [https://tools.ietf.org/html/rfc7292 PKCS #12: Personal Information Exchange Syntax Version 1.1 (RFC 7292)]<br />
<br />
<br/><br />
<br />
= Generic Security Service API (GSS-API) =<br />
<br />
* [https://tools.ietf.org/html/rfc2743 RFC 2743: Generic Security Service Application Program Interface Version 2, Update 1]<br />
* [https://tools.ietf.org/html/rfc5554 RFC 5554: Clarifications and Extensions to the Generic Security Service Application Program Interface (GSS-API) for the Use of Channel Bindings]<br />
* [https://tools.ietf.org/html/rfc2479 RFC 2479: Independent Data Unit Protection Generic Security Service Application Program Interface (IDUP-GSS-API)]<br />
* [https://tools.ietf.org/html/rfc2744 RFC 2744: Generic Security Service API Version 2 : C-bindings]<br />
* [https://tools.ietf.org/html/rfc5653 RFC 5653: Generic Security Service API Version 2: Java Bindings Update]<br />
<br />
<br/><br />
<br />
= Pretty Good Privacy (PGP) =<br />
<br />
* [https://tools.ietf.org/html/rfc4880 RFC 4880: OpenPGP Message Format]<br />
* [https://tools.ietf.org/html/rfc5581 RFC 5581: The Camellia Cipher in OpenPGP]<br />
<br />
<br/><br />
<br />
= Secure / Multipurpose Internet Mail Extensions (S/MIME) =<br />
<br />
* [https://tools.ietf.org/html/rfc1847 RFC 1847: Security Multiparts for MIME: Multipart/Signed and Multipart/Encrypted]<br />
* [https://tools.ietf.org/html/rfc5751 RFC 5751: Secure/Multipurpose Internet Mail Extensions (S/MIME) Version 3.2 - Message Specification]<br />
<br />
<br/><br />
<br />
= X.509 Public Key Infrastructure =<br />
<br />
* [https://tools.ietf.org/html/rfc4158 RFC 4158: Internet X.509 Public Key Infrastructure: Certification Path Building]<br />
* [https://tools.ietf.org/html/rfc5280 RFC 5280: Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile]<br />
* [https://tools.ietf.org/html/rfc6818 RFC 6818: Updates to the Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile]<br />
<br />
<br/><br />
<br />
= Transport Layer Security (TLS) =<br />
<br />
* [https://tools.ietf.org/html/rfc5246 RFC 5246: The Transport Layer Security (TLS) Protocol Version 1.2]<br />
<br />
<br/><br />
<br />
= Misc =<br />
* [https://tools.ietf.org/html/rfc4648 RFC 4648: The Base16, Base32, and Base64 Data Encodings]<br />
* [https://tools.ietf.org/html/rfc4422 RFC 4422: Simple Authentication and Security Layer (SASL)]<br />
<br />
<br/><br />
<br />
= Fun =<br />
* [https://de.wikipedia.org/wiki/Internet_Protocol_over_Avian_Carriers Internet Protocol over Avian Carriers]<br />
* [https://tools.ietf.org/html/rfc1149 RFC 1149: A Standard for the Transmission of IP Datagrams on Avian Carriers]<br />
* [https://tools.ietf.org/html/rfc2549 RFC 2549: IP over Avian Carriers with Quality of Service]<br />
* [https://tools.ietf.org/html/rfc6214 RFC 6214: Adaptation of RFC 1149 for IPv6]<br />
<br />
<br/></div>
Jochen
https://wiki.fam-hammann.de/index.php?title=Cryptography_%26_Security&diff=540
Cryptography & Security
2020-05-20T06:02:23Z
<p>Jochen: /* OAuth */</p>
<hr />
<div>__TOC__<br />
<br />
<br />
= OAuth =<br />
<br />
== OAuth 2.0 ==<br />
<br />
* [https://oauth.net/2/ Homepage]<br />
* [https://tools.ietf.org/html/rfc6749 RFC 6749: The OAuth 2.0 Authorization Framework]<br />
* [https://tools.ietf.org/html/rfc6750 RFC 6750: The OAuth 2.0 Authorization Framework: Bearer Token Usage]<br />
* [https://tools.ietf.org/html/rfc6819 RFC 6819: OAuth 2.0 Threat Model and Security Considerations]<br />
* [https://tools.ietf.org/html/rfc8252 RFC 8252: OAuth 2.0 for Native Apps]<br />
* [https://tools.ietf.org/html/rfc7636 RFC 7636: Proof Key for Code Exchange by OAuth Public Clients]<br />
* [https://tools.ietf.org/html/draft-ietf-oauth-browser-based-apps OAuth 2.0 for Browser-Based Apps (Draft)]<br />
<br />
== OAuth 2.1 ==<br />
<br />
* [ The OAuth 2.1 Authorization Framework (Draft)]<br />
<br />
== OAuth Development ==<br />
<br />
* [https://developers.google.com/oauthplayground/ Google OAuth 2.0 Playground]<br />
* [https://developers.google.com/identity/protocols/OAuth2 Using OAuth 2.0 to Access Google APIs]<br />
<br />
<br/><br />
<br />
= OpenID Connect =<br />
<br />
* [http://openid.net/connect/ Homepage]<br />
* [http://openid.net/specs/openid-connect-core-1_0.html OpenID Connect Core 1.0 incorporating errata set 1]<br />
* [http://openid.net/specs/openid-connect-discovery-1_0.html OpenID Connect Discovery 1.0 incorporating errata set 1]<br />
* [http://openid.net/specs/openid-connect-registration-1_0.html OpenID Connect Dynamic Client Registration 1.0 incorporating errata set 1]<br />
* [http://openid.net/specs/oauth-v2-multiple-response-types-1_0.html OAuth 2.0 Multiple Response Type Encoding Practices]<br />
* [http://openid.net/specs/oauth-v2-form-post-response-mode-1_0.html OAuth 2.0 Form Post Response Mode]<br />
* [http://openid.net/specs/openid-connect-session-1_0.html OpenID Connect Session Management 1.0 - draft 27]<br />
* [http://openid.net/specs/openid-connect-frontchannel-1_0.html OpenID Connect Front-Channel Logout 1.0 - draft 01]<br />
* [http://openid.net/specs/openid-connect-backchannel-1_0.html OpenID Connect Back-Channel Logout 1.0 - draft 03]<br />
<br />
<br/><br />
<br />
= Access / Refresh Token =<br />
<br />
* [https://auth0.com/docs/tokens/refresh-token/current Refresh Tokens]<br />
* [https://auth0.com/blog/refresh-tokens-what-are-they-and-when-to-use-them/ OAuth0 - Refresh Tokens: When to Use Them and How They Interact with JWTs]<br />
* [https://auth0.com/docs/api-auth/tutorials/silent-authentication Silent Authentication]<br />
* [https://auth0.com/blog/5-steps-to-add-modern-authentication-to-legacy-apps-using-jwts/ 5 Steps to Add Modern Authentication to Legacy Apps Using JWTs]<br />
* [https://auth0.com/docs/security/store-tokens Where to Store Tokens]<br />
<br />
<br/><br />
<br />
= Fast Identity Online (FIDO) =<br />
<br />
* [https://fidoalliance.org/ FIDO Allianz]<br />
* [https://fidoalliance.org/specifications/download/ Universal Authentication Framework (UAF) / U2F (Universal Second Factor) Specifications]<br />
<br />
<br/><br />
<br />
= Security Assertion Markup Language 2.0 (SAML 2.0) =<br />
<br />
* [https://wiki.oasis-open.org/security/FrontPage Homepage]<br />
* [http://www.oasis-open.org/committees/download.php/56776/sstc-saml-core-errata-2.0-wd-07.pdf Core Specification]<br />
* [http://www.oasis-open.org/committees/download.php/56779/sstc-saml-bindings-errata-2.0-wd-06.pdf Bindings Specification]<br />
* [http://www.oasis-open.org/committees/download.php/56782/sstc-saml-profiles-errata-2.0-wd-07.pdf Profiles Specification]<br />
* [http://www.oasis-open.org/committees/download.php/56785/sstc-saml-metadata-errata-2.0-wd-05.pdf Metadata Specification]<br />
<br />
<br/><br />
<br />
= JSON Web Token (JWT) =<br />
<br />
* [https://tools.ietf.org/html/rfc7515 RFC 7515: JSON Web Signature (JWS)]<br />
* [https://tools.ietf.org/html/rfc7516 RFC 7516: JSON Web Encryption (JWE)]<br />
* [https://tools.ietf.org/html/rfc7517 RFC 7517: JSON Web Key (JWK)]<br />
* [https://tools.ietf.org/html/rfc7518 RFC 7518: JSON Web Algorithms (JWA)]<br />
* [https://tools.ietf.org/html/rfc7519 RFC 7519: JSON Web Token (JWT)]<br />
* [https://tools.ietf.org/html/rfc8725 RFC 8725: JSON Web Token Best Current Practices]<br />
<br />
<br/><br />
<br />
= One Time Passwords =<br />
* [https://tools.ietf.org/html/rfc2289 RFC 2289: A One-Time Password System]<br />
* [https://tools.ietf.org/html/rfc4226 RFC 4226: HOTP: An HMAC-Based One-Time Password Algorithm]<br />
* [https://tools.ietf.org/html/rfc4793 RFC 4793: The EAP Protected One-Time Password Protocol (EAP-POTP)]<br />
* [https://tools.ietf.org/html/rfc6238 RFC 6238: TOTP: Time-Based One-Time Password Algorithm]<br />
* [https://tools.ietf.org/html/rfc6560 RFC 6560: One-Time Password (OTP) Pre-Authentication]<br />
<br />
<br/><br />
<br />
= Einweg-Hashfunktionen =<br />
<br />
* [https://tools.ietf.org/html/rfc1321 RFC 1321: The MD5 Message-Digest Algorithm]<br />
* [https://tools.ietf.org/html/rfc2104 RFC 2104: HMAC: Keyed-Hashing for Message Authentication]<br />
* [https://tools.ietf.org/html/rfc6151 RFC 6151: Updated Security Considerations for the MD5 Message-Digest and the HMAC-MD5 Algorithms]<br />
* [https://tools.ietf.org/html/rfc6234 RFC 6234: US Secure Hash Algorithms (SHA and SHA-based HMAC and HKDF)]<br />
* [http://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.180-4.pdf FIPS PUB 180-4: Secure Hash Standard (SHS)]<br />
<br />
<br/><br />
<br />
= Authentifizierung =<br />
<br />
* [http://davenport.sourceforge.net/ntlm.html The NTLM Authentication Protocol] [[Media:The NTLM Authentication Protocol and Security Support Provider.pdf|(PDF)]]<br />
* [https://tools.ietf.org/html/rfc4120 RFC 4120: The Kerberos Network Authentication Service (V5)]<br />
* [https://tools.ietf.org/html/rfc4121 RFC 4120: The Kerberos Version 5 Generic Security Service Application Program Interface (GSS-API) Mechanism: Version 2]<br />
<br />
<br/><br />
<br />
= Challenge Response =<br />
<br />
* [https://tools.ietf.org/html/rfc5802 RFC 5802: Salted Challenge Response Authentication Mechanism (SCRAM) SASL and GSS-API Mechanisms (Updated by RFC 7677)]<br />
* [https://tools.ietf.org/html/rfc7677 RFC 7677: SCRAM-SHA-256 and SCRAM-SHA-256-PLUS Simple Authentication and Security Layer (SASL) Mechanisms]<br />
<br />
<br/><br />
<br />
= Symmetrische Verschlüsselung =<br />
<br />
* [http://csrc.nist.gov/publications/fips/fips46-3/fips46-3.pdf FIPS PUB 46-3: Data Encryption Standard (DES), National Institute of Standards and Technology, October 25, 1999]<br />
* [http://csrc.nist.gov/publications/fips/fips197/fips-197.pdf FIPS PUB 197: Advanced Encryption Standard (AES), National Institute of Standards and Technology, November 26, 2001]<br />
<br />
<br/><br />
<br />
= Public-Key Cryptography Standards (PKCS) - RSA Laboratories =<br />
<br />
* [https://tools.ietf.org/html/rfc3447 PKCS #1: RSA Cryptography Specifications Version 2.1 (RFC 2313)]<br />
* [https://tools.ietf.org/html/draft-moriarty-pkcs1-03 PKCS #1: RSA Cryptography Specifications Version 2.2 (RFC draft-moriarty-pkcs1-03)]<br />
* [ftp://ftp.rsasecurity.com/pub/pkcs/ascii/pkcs-3.asc PKCS #3: Diffie-Hellman Key Agreement Standard, Version 1.4]<br />
* [https://tools.ietf.org/html/rfc2898 PKCS #5: Password-Based Cryptography Standard, Version 2.0 (RFC 2898)]<br />
* [https://tools.ietf.org/html/draft-moriarty-pkcs5-v2dot1-04 PKCS #5: Password-Based Cryptography Standard, Version 2.1 (RFC draft-moriarty-pkcs5-v2dot1-04)]<br />
* [ftp://ftp.rsasecurity.com/pub/pkcs/ascii/pkcs-6.asc PKCS #6: Extended-Certificate Syntax Standard, Version 1.5]<br />
* [https://tools.ietf.org/html/rfc2315 PKCS #7: Cryptographic Message Syntax Standard, Version 1.5 (2315)]<br />
* [https://tools.ietf.org/html/rfc5208 PKCS #8: Private-Key Information Syntax Standard, Version 1.2 (RFC 5208)]<br />
* [https://tools.ietf.org/html/draft-seantek-pkcs8-encrypted-01 PKCS #8: EncryptedPrivateKeyInfo Media Type (RFC draft-seantek-pkcs8-encrypted-01)]<br />
* [https://tools.ietf.org/html/rfc2985 PKCS #9: Selected Object Classes and Attribute Types Version 2.0 (RFC 2985)]<br />
* [https://tools.ietf.org/html/rfc2986 PKCS #10: Certification Request Syntax Specification Version 1.7 (RFC 2986)]<br />
* [https://tools.ietf.org/html/rfc7512 PKCS #11: URI Scheme (RFC 7512)]<br />
* [https://tools.ietf.org/html/rfc7292 PKCS #12: Personal Information Exchange Syntax Version 1.1 (RFC 7292)]<br />
<br />
<br/><br />
<br />
= Generic Security Service API (GSS-API) =<br />
<br />
* [https://tools.ietf.org/html/rfc2743 RFC 2743: Generic Security Service Application Program Interface Version 2, Update 1]<br />
* [https://tools.ietf.org/html/rfc5554 RFC 5554: Clarifications and Extensions to the Generic Security Service Application Program Interface (GSS-API) for the Use of Channel Bindings]<br />
* [https://tools.ietf.org/html/rfc2479 RFC 2479: Independent Data Unit Protection Generic Security Service Application Program Interface (IDUP-GSS-API)]<br />
* [https://tools.ietf.org/html/rfc2744 RFC 2744: Generic Security Service API Version 2 : C-bindings]<br />
* [https://tools.ietf.org/html/rfc5653 RFC 5653: Generic Security Service API Version 2: Java Bindings Update]<br />
<br />
<br/><br />
<br />
= Pretty Good Privacy (PGP) =<br />
<br />
* [https://tools.ietf.org/html/rfc4880 RFC 4880: OpenPGP Message Format]<br />
* [https://tools.ietf.org/html/rfc5581 RFC 5581: The Camellia Cipher in OpenPGP]<br />
<br />
<br/><br />
<br />
= Secure / Multipurpose Internet Mail Extensions (S/MIME) =<br />
<br />
* [https://tools.ietf.org/html/rfc1847 RFC 1847: Security Multiparts for MIME: Multipart/Signed and Multipart/Encrypted]<br />
* [https://tools.ietf.org/html/rfc5751 RFC 5751: Secure/Multipurpose Internet Mail Extensions (S/MIME) Version 3.2 - Message Specification]<br />
<br />
<br/><br />
<br />
= X.509 Public Key Infrastructure =<br />
<br />
* [https://tools.ietf.org/html/rfc4158 RFC 4158: Internet X.509 Public Key Infrastructure: Certification Path Building]<br />
* [https://tools.ietf.org/html/rfc5280 RFC 5280: Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile]<br />
* [https://tools.ietf.org/html/rfc6818 RFC 6818: Updates to the Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile]<br />
<br />
<br/><br />
<br />
= Transport Layer Security (TLS) =<br />
<br />
* [https://tools.ietf.org/html/rfc5246 RFC 5246: The Transport Layer Security (TLS) Protocol Version 1.2]<br />
<br />
<br/><br />
<br />
= Misc =<br />
* [https://tools.ietf.org/html/rfc4648 RFC 4648: The Base16, Base32, and Base64 Data Encodings]<br />
* [https://tools.ietf.org/html/rfc4422 RFC 4422: Simple Authentication and Security Layer (SASL)]<br />
<br />
<br/><br />
<br />
= Fun =<br />
* [https://de.wikipedia.org/wiki/Internet_Protocol_over_Avian_Carriers Internet Protocol over Avian Carriers]<br />
* [https://tools.ietf.org/html/rfc1149 RFC 1149: A Standard for the Transmission of IP Datagrams on Avian Carriers]<br />
* [https://tools.ietf.org/html/rfc2549 RFC 2549: IP over Avian Carriers with Quality of Service]<br />
* [https://tools.ietf.org/html/rfc6214 RFC 6214: Adaptation of RFC 1149 for IPv6]<br />
<br />
<br/></div>
Jochen
https://wiki.fam-hammann.de/index.php?title=Cryptography_%26_Security&diff=539
Cryptography & Security
2020-05-20T05:46:39Z
<p>Jochen: /* OAuth */</p>
<hr />
<div>__TOC__<br />
<br />
<br />
= OAuth =<br />
<br />
== OAuth 2.0 ==<br />
<br />
* [https://oauth.net/2/ Homepage]<br />
* [https://tools.ietf.org/html/rfc6749 RFC 6749: The OAuth 2.0 Authorization Framework]<br />
* [https://tools.ietf.org/html/rfc6750 RFC 6750: The OAuth 2.0 Authorization Framework: Bearer Token Usage]<br />
* [https://tools.ietf.org/html/rfc6819 RFC 6819: OAuth 2.0 Threat Model and Security Considerations]<br />
* [https://tools.ietf.org/html/rfc8252 RFC 8252: OAuth 2.0 for Native Apps]<br />
* [https://tools.ietf.org/html/rfc7636 RFC 7636: Proof Key for Code Exchange by OAuth Public Clients]<br />
<br />
== OAuth 2.1 ==<br />
<br />
* [https://tools.ietf.org/html/draft-parecki-oauth-v2-1-02 The OAuth 2.1 Authorization Framework - draft-parecki-oauth-v2-1-02]<br />
<br />
== OAuth Development ==<br />
<br />
* [https://developers.google.com/oauthplayground/ Google OAuth 2.0 Playground]<br />
* [https://developers.google.com/identity/protocols/OAuth2 Using OAuth 2.0 to Access Google APIs]<br />
<br />
<br/><br />
<br />
= OpenID Connect =<br />
<br />
* [http://openid.net/connect/ Homepage]<br />
* [http://openid.net/specs/openid-connect-core-1_0.html OpenID Connect Core 1.0 incorporating errata set 1]<br />
* [http://openid.net/specs/openid-connect-discovery-1_0.html OpenID Connect Discovery 1.0 incorporating errata set 1]<br />
* [http://openid.net/specs/openid-connect-registration-1_0.html OpenID Connect Dynamic Client Registration 1.0 incorporating errata set 1]<br />
* [http://openid.net/specs/oauth-v2-multiple-response-types-1_0.html OAuth 2.0 Multiple Response Type Encoding Practices]<br />
* [http://openid.net/specs/oauth-v2-form-post-response-mode-1_0.html OAuth 2.0 Form Post Response Mode]<br />
* [http://openid.net/specs/openid-connect-session-1_0.html OpenID Connect Session Management 1.0 - draft 27]<br />
* [http://openid.net/specs/openid-connect-frontchannel-1_0.html OpenID Connect Front-Channel Logout 1.0 - draft 01]<br />
* [http://openid.net/specs/openid-connect-backchannel-1_0.html OpenID Connect Back-Channel Logout 1.0 - draft 03]<br />
<br />
<br/><br />
<br />
= Access / Refresh Token =<br />
<br />
* [https://auth0.com/docs/tokens/refresh-token/current Refresh Tokens]<br />
* [https://auth0.com/blog/refresh-tokens-what-are-they-and-when-to-use-them/ OAuth0 - Refresh Tokens: When to Use Them and How They Interact with JWTs]<br />
* [https://auth0.com/docs/api-auth/tutorials/silent-authentication Silent Authentication]<br />
* [https://auth0.com/blog/5-steps-to-add-modern-authentication-to-legacy-apps-using-jwts/ 5 Steps to Add Modern Authentication to Legacy Apps Using JWTs]<br />
* [https://auth0.com/docs/security/store-tokens Where to Store Tokens]<br />
<br />
<br/><br />
<br />
= Fast Identity Online (FIDO) =<br />
<br />
* [https://fidoalliance.org/ FIDO Allianz]<br />
* [https://fidoalliance.org/specifications/download/ Universal Authentication Framework (UAF) / U2F (Universal Second Factor) Specifications]<br />
<br />
<br/><br />
<br />
= Security Assertion Markup Language 2.0 (SAML 2.0) =<br />
<br />
* [https://wiki.oasis-open.org/security/FrontPage Homepage]<br />
* [http://www.oasis-open.org/committees/download.php/56776/sstc-saml-core-errata-2.0-wd-07.pdf Core Specification]<br />
* [http://www.oasis-open.org/committees/download.php/56779/sstc-saml-bindings-errata-2.0-wd-06.pdf Bindings Specification]<br />
* [http://www.oasis-open.org/committees/download.php/56782/sstc-saml-profiles-errata-2.0-wd-07.pdf Profiles Specification]<br />
* [http://www.oasis-open.org/committees/download.php/56785/sstc-saml-metadata-errata-2.0-wd-05.pdf Metadata Specification]<br />
<br />
<br/><br />
<br />
= JSON Web Token (JWT) =<br />
<br />
* [https://tools.ietf.org/html/rfc7515 RFC 7515: JSON Web Signature (JWS)]<br />
* [https://tools.ietf.org/html/rfc7516 RFC 7516: JSON Web Encryption (JWE)]<br />
* [https://tools.ietf.org/html/rfc7517 RFC 7517: JSON Web Key (JWK)]<br />
* [https://tools.ietf.org/html/rfc7518 RFC 7518: JSON Web Algorithms (JWA)]<br />
* [https://tools.ietf.org/html/rfc7519 RFC 7519: JSON Web Token (JWT)]<br />
* [https://tools.ietf.org/html/rfc8725 RFC 8725: JSON Web Token Best Current Practices]<br />
<br />
<br/><br />
<br />
= One Time Passwords =<br />
* [https://tools.ietf.org/html/rfc2289 RFC 2289: A One-Time Password System]<br />
* [https://tools.ietf.org/html/rfc4226 RFC 4226: HOTP: An HMAC-Based One-Time Password Algorithm]<br />
* [https://tools.ietf.org/html/rfc4793 RFC 4793: The EAP Protected One-Time Password Protocol (EAP-POTP)]<br />
* [https://tools.ietf.org/html/rfc6238 RFC 6238: TOTP: Time-Based One-Time Password Algorithm]<br />
* [https://tools.ietf.org/html/rfc6560 RFC 6560: One-Time Password (OTP) Pre-Authentication]<br />
<br />
<br/><br />
<br />
= Einweg-Hashfunktionen =<br />
<br />
* [https://tools.ietf.org/html/rfc1321 RFC 1321: The MD5 Message-Digest Algorithm]<br />
* [https://tools.ietf.org/html/rfc2104 RFC 2104: HMAC: Keyed-Hashing for Message Authentication]<br />
* [https://tools.ietf.org/html/rfc6151 RFC 6151: Updated Security Considerations for the MD5 Message-Digest and the HMAC-MD5 Algorithms]<br />
* [https://tools.ietf.org/html/rfc6234 RFC 6234: US Secure Hash Algorithms (SHA and SHA-based HMAC and HKDF)]<br />
* [http://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.180-4.pdf FIPS PUB 180-4: Secure Hash Standard (SHS)]<br />
<br />
<br/><br />
<br />
= Authentifizierung =<br />
<br />
* [http://davenport.sourceforge.net/ntlm.html The NTLM Authentication Protocol] [[Media:The NTLM Authentication Protocol and Security Support Provider.pdf|(PDF)]]<br />
* [https://tools.ietf.org/html/rfc4120 RFC 4120: The Kerberos Network Authentication Service (V5)]<br />
* [https://tools.ietf.org/html/rfc4121 RFC 4120: The Kerberos Version 5 Generic Security Service Application Program Interface (GSS-API) Mechanism: Version 2]<br />
<br />
<br/><br />
<br />
= Challenge Response =<br />
<br />
* [https://tools.ietf.org/html/rfc5802 RFC 5802: Salted Challenge Response Authentication Mechanism (SCRAM) SASL and GSS-API Mechanisms (Updated by RFC 7677)]<br />
* [https://tools.ietf.org/html/rfc7677 RFC 7677: SCRAM-SHA-256 and SCRAM-SHA-256-PLUS Simple Authentication and Security Layer (SASL) Mechanisms]<br />
<br />
<br/><br />
<br />
= Symmetrische Verschlüsselung =<br />
<br />
* [http://csrc.nist.gov/publications/fips/fips46-3/fips46-3.pdf FIPS PUB 46-3: Data Encryption Standard (DES), National Institute of Standards and Technology, October 25, 1999]<br />
* [http://csrc.nist.gov/publications/fips/fips197/fips-197.pdf FIPS PUB 197: Advanced Encryption Standard (AES), National Institute of Standards and Technology, November 26, 2001]<br />
<br />
<br/><br />
<br />
= Public-Key Cryptography Standards (PKCS) - RSA Laboratories =<br />
<br />
* [https://tools.ietf.org/html/rfc3447 PKCS #1: RSA Cryptography Specifications Version 2.1 (RFC 2313)]<br />
* [https://tools.ietf.org/html/draft-moriarty-pkcs1-03 PKCS #1: RSA Cryptography Specifications Version 2.2 (RFC draft-moriarty-pkcs1-03)]<br />
* [ftp://ftp.rsasecurity.com/pub/pkcs/ascii/pkcs-3.asc PKCS #3: Diffie-Hellman Key Agreement Standard, Version 1.4]<br />
* [https://tools.ietf.org/html/rfc2898 PKCS #5: Password-Based Cryptography Standard, Version 2.0 (RFC 2898)]<br />
* [https://tools.ietf.org/html/draft-moriarty-pkcs5-v2dot1-04 PKCS #5: Password-Based Cryptography Standard, Version 2.1 (RFC draft-moriarty-pkcs5-v2dot1-04)]<br />
* [ftp://ftp.rsasecurity.com/pub/pkcs/ascii/pkcs-6.asc PKCS #6: Extended-Certificate Syntax Standard, Version 1.5]<br />
* [https://tools.ietf.org/html/rfc2315 PKCS #7: Cryptographic Message Syntax Standard, Version 1.5 (2315)]<br />
* [https://tools.ietf.org/html/rfc5208 PKCS #8: Private-Key Information Syntax Standard, Version 1.2 (RFC 5208)]<br />
* [https://tools.ietf.org/html/draft-seantek-pkcs8-encrypted-01 PKCS #8: EncryptedPrivateKeyInfo Media Type (RFC draft-seantek-pkcs8-encrypted-01)]<br />
* [https://tools.ietf.org/html/rfc2985 PKCS #9: Selected Object Classes and Attribute Types Version 2.0 (RFC 2985)]<br />
* [https://tools.ietf.org/html/rfc2986 PKCS #10: Certification Request Syntax Specification Version 1.7 (RFC 2986)]<br />
* [https://tools.ietf.org/html/rfc7512 PKCS #11: URI Scheme (RFC 7512)]<br />
* [https://tools.ietf.org/html/rfc7292 PKCS #12: Personal Information Exchange Syntax Version 1.1 (RFC 7292)]<br />
<br />
<br/><br />
<br />
= Generic Security Service API (GSS-API) =<br />
<br />
* [https://tools.ietf.org/html/rfc2743 RFC 2743: Generic Security Service Application Program Interface Version 2, Update 1]<br />
* [https://tools.ietf.org/html/rfc5554 RFC 5554: Clarifications and Extensions to the Generic Security Service Application Program Interface (GSS-API) for the Use of Channel Bindings]<br />
* [https://tools.ietf.org/html/rfc2479 RFC 2479: Independent Data Unit Protection Generic Security Service Application Program Interface (IDUP-GSS-API)]<br />
* [https://tools.ietf.org/html/rfc2744 RFC 2744: Generic Security Service API Version 2 : C-bindings]<br />
* [https://tools.ietf.org/html/rfc5653 RFC 5653: Generic Security Service API Version 2: Java Bindings Update]<br />
<br />
<br/><br />
<br />
= Pretty Good Privacy (PGP) =<br />
<br />
* [https://tools.ietf.org/html/rfc4880 RFC 4880: OpenPGP Message Format]<br />
* [https://tools.ietf.org/html/rfc5581 RFC 5581: The Camellia Cipher in OpenPGP]<br />
<br />
<br/><br />
<br />
= Secure / Multipurpose Internet Mail Extensions (S/MIME) =<br />
<br />
* [https://tools.ietf.org/html/rfc1847 RFC 1847: Security Multiparts for MIME: Multipart/Signed and Multipart/Encrypted]<br />
* [https://tools.ietf.org/html/rfc5751 RFC 5751: Secure/Multipurpose Internet Mail Extensions (S/MIME) Version 3.2 - Message Specification]<br />
<br />
<br/><br />
<br />
= X.509 Public Key Infrastructure =<br />
<br />
* [https://tools.ietf.org/html/rfc4158 RFC 4158: Internet X.509 Public Key Infrastructure: Certification Path Building]<br />
* [https://tools.ietf.org/html/rfc5280 RFC 5280: Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile]<br />
* [https://tools.ietf.org/html/rfc6818 RFC 6818: Updates to the Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile]<br />
<br />
<br/><br />
<br />
= Transport Layer Security (TLS) =<br />
<br />
* [https://tools.ietf.org/html/rfc5246 RFC 5246: The Transport Layer Security (TLS) Protocol Version 1.2]<br />
<br />
<br/><br />
<br />
= Misc =<br />
* [https://tools.ietf.org/html/rfc4648 RFC 4648: The Base16, Base32, and Base64 Data Encodings]<br />
* [https://tools.ietf.org/html/rfc4422 RFC 4422: Simple Authentication and Security Layer (SASL)]<br />
<br />
<br/><br />
<br />
= Fun =<br />
* [https://de.wikipedia.org/wiki/Internet_Protocol_over_Avian_Carriers Internet Protocol over Avian Carriers]<br />
* [https://tools.ietf.org/html/rfc1149 RFC 1149: A Standard for the Transmission of IP Datagrams on Avian Carriers]<br />
* [https://tools.ietf.org/html/rfc2549 RFC 2549: IP over Avian Carriers with Quality of Service]<br />
* [https://tools.ietf.org/html/rfc6214 RFC 6214: Adaptation of RFC 1149 for IPv6]<br />
<br />
<br/></div>
Jochen
https://wiki.fam-hammann.de/index.php?title=Cryptography_%26_Security&diff=538
Cryptography & Security
2020-05-20T05:46:26Z
<p>Jochen: /* OAuth */</p>
<hr />
<div>__TOC__<br />
<br />
<br />
= OAuth =<br />
<br />
== OAuth 2.0 ==<br />
<br />
* [https://oauth.net/2/ Homepage]<br />
* [https://tools.ietf.org/html/rfc6749 RFC 6749: The OAuth 2.0 Authorization Framework]<br />
* [https://tools.ietf.org/html/rfc6750 RFC 6750: The OAuth 2.0 Authorization Framework: Bearer Token Usage]<br />
* [https://tools.ietf.org/html/rfc6819 RFC 6819: OAuth 2.0 Threat Model and Security Considerations]<br />
* [https://tools.ietf.org/html/rfc8252 RFC 8252: OAuth 2.0 for Native Apps]<br />
* [https://tools.ietf.org/html/rfc7636 RFC 7636: Proof Key for Code Exchange by OAuth Public Clients]<br />
<br />
<br />
== OAuth 2.1 ==<br />
<br />
* [https://tools.ietf.org/html/draft-parecki-oauth-v2-1-02 The OAuth 2.1 Authorization Framework - draft-parecki-oauth-v2-1-02]<br />
<br />
<br />
== OAuth Development ==<br />
<br />
* [https://developers.google.com/oauthplayground/ Google OAuth 2.0 Playground]<br />
* [https://developers.google.com/identity/protocols/OAuth2 Using OAuth 2.0 to Access Google APIs]<br />
<br />
<br/><br />
<br />
= OpenID Connect =<br />
<br />
* [http://openid.net/connect/ Homepage]<br />
* [http://openid.net/specs/openid-connect-core-1_0.html OpenID Connect Core 1.0 incorporating errata set 1]<br />
* [http://openid.net/specs/openid-connect-discovery-1_0.html OpenID Connect Discovery 1.0 incorporating errata set 1]<br />
* [http://openid.net/specs/openid-connect-registration-1_0.html OpenID Connect Dynamic Client Registration 1.0 incorporating errata set 1]<br />
* [http://openid.net/specs/oauth-v2-multiple-response-types-1_0.html OAuth 2.0 Multiple Response Type Encoding Practices]<br />
* [http://openid.net/specs/oauth-v2-form-post-response-mode-1_0.html OAuth 2.0 Form Post Response Mode]<br />
* [http://openid.net/specs/openid-connect-session-1_0.html OpenID Connect Session Management 1.0 - draft 27]<br />
* [http://openid.net/specs/openid-connect-frontchannel-1_0.html OpenID Connect Front-Channel Logout 1.0 - draft 01]<br />
* [http://openid.net/specs/openid-connect-backchannel-1_0.html OpenID Connect Back-Channel Logout 1.0 - draft 03]<br />
<br />
<br/><br />
<br />
= Access / Refresh Token =<br />
<br />
* [https://auth0.com/docs/tokens/refresh-token/current Refresh Tokens]<br />
* [https://auth0.com/blog/refresh-tokens-what-are-they-and-when-to-use-them/ OAuth0 - Refresh Tokens: When to Use Them and How They Interact with JWTs]<br />
* [https://auth0.com/docs/api-auth/tutorials/silent-authentication Silent Authentication]<br />
* [https://auth0.com/blog/5-steps-to-add-modern-authentication-to-legacy-apps-using-jwts/ 5 Steps to Add Modern Authentication to Legacy Apps Using JWTs]<br />
* [https://auth0.com/docs/security/store-tokens Where to Store Tokens]<br />
<br />
<br/><br />
<br />
= Fast Identity Online (FIDO) =<br />
<br />
* [https://fidoalliance.org/ FIDO Allianz]<br />
* [https://fidoalliance.org/specifications/download/ Universal Authentication Framework (UAF) / U2F (Universal Second Factor) Specifications]<br />
<br />
<br/><br />
<br />
= Security Assertion Markup Language 2.0 (SAML 2.0) =<br />
<br />
* [https://wiki.oasis-open.org/security/FrontPage Homepage]<br />
* [http://www.oasis-open.org/committees/download.php/56776/sstc-saml-core-errata-2.0-wd-07.pdf Core Specification]<br />
* [http://www.oasis-open.org/committees/download.php/56779/sstc-saml-bindings-errata-2.0-wd-06.pdf Bindings Specification]<br />
* [http://www.oasis-open.org/committees/download.php/56782/sstc-saml-profiles-errata-2.0-wd-07.pdf Profiles Specification]<br />
* [http://www.oasis-open.org/committees/download.php/56785/sstc-saml-metadata-errata-2.0-wd-05.pdf Metadata Specification]<br />
<br />
<br/><br />
<br />
= JSON Web Token (JWT) =<br />
<br />
* [https://tools.ietf.org/html/rfc7515 RFC 7515: JSON Web Signature (JWS)]<br />
* [https://tools.ietf.org/html/rfc7516 RFC 7516: JSON Web Encryption (JWE)]<br />
* [https://tools.ietf.org/html/rfc7517 RFC 7517: JSON Web Key (JWK)]<br />
* [https://tools.ietf.org/html/rfc7518 RFC 7518: JSON Web Algorithms (JWA)]<br />
* [https://tools.ietf.org/html/rfc7519 RFC 7519: JSON Web Token (JWT)]<br />
* [https://tools.ietf.org/html/rfc8725 RFC 8725: JSON Web Token Best Current Practices]<br />
<br />
<br/><br />
<br />
= One Time Passwords =<br />
* [https://tools.ietf.org/html/rfc2289 RFC 2289: A One-Time Password System]<br />
* [https://tools.ietf.org/html/rfc4226 RFC 4226: HOTP: An HMAC-Based One-Time Password Algorithm]<br />
* [https://tools.ietf.org/html/rfc4793 RFC 4793: The EAP Protected One-Time Password Protocol (EAP-POTP)]<br />
* [https://tools.ietf.org/html/rfc6238 RFC 6238: TOTP: Time-Based One-Time Password Algorithm]<br />
* [https://tools.ietf.org/html/rfc6560 RFC 6560: One-Time Password (OTP) Pre-Authentication]<br />
<br />
<br/><br />
<br />
= Einweg-Hashfunktionen =<br />
<br />
* [https://tools.ietf.org/html/rfc1321 RFC 1321: The MD5 Message-Digest Algorithm]<br />
* [https://tools.ietf.org/html/rfc2104 RFC 2104: HMAC: Keyed-Hashing for Message Authentication]<br />
* [https://tools.ietf.org/html/rfc6151 RFC 6151: Updated Security Considerations for the MD5 Message-Digest and the HMAC-MD5 Algorithms]<br />
* [https://tools.ietf.org/html/rfc6234 RFC 6234: US Secure Hash Algorithms (SHA and SHA-based HMAC and HKDF)]<br />
* [http://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.180-4.pdf FIPS PUB 180-4: Secure Hash Standard (SHS)]<br />
<br />
<br/><br />
<br />
= Authentifizierung =<br />
<br />
* [http://davenport.sourceforge.net/ntlm.html The NTLM Authentication Protocol] [[Media:The NTLM Authentication Protocol and Security Support Provider.pdf|(PDF)]]<br />
* [https://tools.ietf.org/html/rfc4120 RFC 4120: The Kerberos Network Authentication Service (V5)]<br />
* [https://tools.ietf.org/html/rfc4121 RFC 4120: The Kerberos Version 5 Generic Security Service Application Program Interface (GSS-API) Mechanism: Version 2]<br />
<br />
<br/><br />
<br />
= Challenge Response =<br />
<br />
* [https://tools.ietf.org/html/rfc5802 RFC 5802: Salted Challenge Response Authentication Mechanism (SCRAM) SASL and GSS-API Mechanisms (Updated by RFC 7677)]<br />
* [https://tools.ietf.org/html/rfc7677 RFC 7677: SCRAM-SHA-256 and SCRAM-SHA-256-PLUS Simple Authentication and Security Layer (SASL) Mechanisms]<br />
<br />
<br/><br />
<br />
= Symmetrische Verschlüsselung =<br />
<br />
* [http://csrc.nist.gov/publications/fips/fips46-3/fips46-3.pdf FIPS PUB 46-3: Data Encryption Standard (DES), National Institute of Standards and Technology, October 25, 1999]<br />
* [http://csrc.nist.gov/publications/fips/fips197/fips-197.pdf FIPS PUB 197: Advanced Encryption Standard (AES), National Institute of Standards and Technology, November 26, 2001]<br />
<br />
<br/><br />
<br />
= Public-Key Cryptography Standards (PKCS) - RSA Laboratories =<br />
<br />
* [https://tools.ietf.org/html/rfc3447 PKCS #1: RSA Cryptography Specifications Version 2.1 (RFC 2313)]<br />
* [https://tools.ietf.org/html/draft-moriarty-pkcs1-03 PKCS #1: RSA Cryptography Specifications Version 2.2 (RFC draft-moriarty-pkcs1-03)]<br />
* [ftp://ftp.rsasecurity.com/pub/pkcs/ascii/pkcs-3.asc PKCS #3: Diffie-Hellman Key Agreement Standard, Version 1.4]<br />
* [https://tools.ietf.org/html/rfc2898 PKCS #5: Password-Based Cryptography Standard, Version 2.0 (RFC 2898)]<br />
* [https://tools.ietf.org/html/draft-moriarty-pkcs5-v2dot1-04 PKCS #5: Password-Based Cryptography Standard, Version 2.1 (RFC draft-moriarty-pkcs5-v2dot1-04)]<br />
* [ftp://ftp.rsasecurity.com/pub/pkcs/ascii/pkcs-6.asc PKCS #6: Extended-Certificate Syntax Standard, Version 1.5]<br />
* [https://tools.ietf.org/html/rfc2315 PKCS #7: Cryptographic Message Syntax Standard, Version 1.5 (2315)]<br />
* [https://tools.ietf.org/html/rfc5208 PKCS #8: Private-Key Information Syntax Standard, Version 1.2 (RFC 5208)]<br />
* [https://tools.ietf.org/html/draft-seantek-pkcs8-encrypted-01 PKCS #8: EncryptedPrivateKeyInfo Media Type (RFC draft-seantek-pkcs8-encrypted-01)]<br />
* [https://tools.ietf.org/html/rfc2985 PKCS #9: Selected Object Classes and Attribute Types Version 2.0 (RFC 2985)]<br />
* [https://tools.ietf.org/html/rfc2986 PKCS #10: Certification Request Syntax Specification Version 1.7 (RFC 2986)]<br />
* [https://tools.ietf.org/html/rfc7512 PKCS #11: URI Scheme (RFC 7512)]<br />
* [https://tools.ietf.org/html/rfc7292 PKCS #12: Personal Information Exchange Syntax Version 1.1 (RFC 7292)]<br />
<br />
<br/><br />
<br />
= Generic Security Service API (GSS-API) =<br />
<br />
* [https://tools.ietf.org/html/rfc2743 RFC 2743: Generic Security Service Application Program Interface Version 2, Update 1]<br />
* [https://tools.ietf.org/html/rfc5554 RFC 5554: Clarifications and Extensions to the Generic Security Service Application Program Interface (GSS-API) for the Use of Channel Bindings]<br />
* [https://tools.ietf.org/html/rfc2479 RFC 2479: Independent Data Unit Protection Generic Security Service Application Program Interface (IDUP-GSS-API)]<br />
* [https://tools.ietf.org/html/rfc2744 RFC 2744: Generic Security Service API Version 2 : C-bindings]<br />
* [https://tools.ietf.org/html/rfc5653 RFC 5653: Generic Security Service API Version 2: Java Bindings Update]<br />
<br />
<br/><br />
<br />
= Pretty Good Privacy (PGP) =<br />
<br />
* [https://tools.ietf.org/html/rfc4880 RFC 4880: OpenPGP Message Format]<br />
* [https://tools.ietf.org/html/rfc5581 RFC 5581: The Camellia Cipher in OpenPGP]<br />
<br />
<br/><br />
<br />
= Secure / Multipurpose Internet Mail Extensions (S/MIME) =<br />
<br />
* [https://tools.ietf.org/html/rfc1847 RFC 1847: Security Multiparts for MIME: Multipart/Signed and Multipart/Encrypted]<br />
* [https://tools.ietf.org/html/rfc5751 RFC 5751: Secure/Multipurpose Internet Mail Extensions (S/MIME) Version 3.2 - Message Specification]<br />
<br />
<br/><br />
<br />
= X.509 Public Key Infrastructure =<br />
<br />
* [https://tools.ietf.org/html/rfc4158 RFC 4158: Internet X.509 Public Key Infrastructure: Certification Path Building]<br />
* [https://tools.ietf.org/html/rfc5280 RFC 5280: Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile]<br />
* [https://tools.ietf.org/html/rfc6818 RFC 6818: Updates to the Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile]<br />
<br />
<br/><br />
<br />
= Transport Layer Security (TLS) =<br />
<br />
* [https://tools.ietf.org/html/rfc5246 RFC 5246: The Transport Layer Security (TLS) Protocol Version 1.2]<br />
<br />
<br/><br />
<br />
= Misc =<br />
* [https://tools.ietf.org/html/rfc4648 RFC 4648: The Base16, Base32, and Base64 Data Encodings]<br />
* [https://tools.ietf.org/html/rfc4422 RFC 4422: Simple Authentication and Security Layer (SASL)]<br />
<br />
<br/><br />
<br />
= Fun =<br />
* [https://de.wikipedia.org/wiki/Internet_Protocol_over_Avian_Carriers Internet Protocol over Avian Carriers]<br />
* [https://tools.ietf.org/html/rfc1149 RFC 1149: A Standard for the Transmission of IP Datagrams on Avian Carriers]<br />
* [https://tools.ietf.org/html/rfc2549 RFC 2549: IP over Avian Carriers with Quality of Service]<br />
* [https://tools.ietf.org/html/rfc6214 RFC 6214: Adaptation of RFC 1149 for IPv6]<br />
<br />
<br/></div>
Jochen
https://wiki.fam-hammann.de/index.php?title=Cryptography_%26_Security&diff=537
Cryptography & Security
2020-05-20T05:46:00Z
<p>Jochen: /* OAuth2 */</p>
<hr />
<div>__TOC__<br />
<br />
<br />
= OAuth =<br />
<br />
== OAuth 2.0 ==<br />
<br />
* [https://oauth.net/2/ Homepage]<br />
* [https://tools.ietf.org/html/rfc6749 RFC 6749: The OAuth 2.0 Authorization Framework]<br />
* [https://tools.ietf.org/html/rfc6750 RFC 6750: The OAuth 2.0 Authorization Framework: Bearer Token Usage]<br />
* [https://tools.ietf.org/html/rfc6819 RFC 6819: OAuth 2.0 Threat Model and Security Considerations]<br />
* [https://tools.ietf.org/html/rfc8252 RFC 8252: OAuth 2.0 for Native Apps]<br />
* [https://tools.ietf.org/html/rfc7636 RFC 7636: Proof Key for Code Exchange by OAuth Public Clients]<br />
<br />
<br />
== OAuth 2.0 ==<br />
<br />
* [https://tools.ietf.org/html/draft-parecki-oauth-v2-1-02 The OAuth 2.1 Authorization Framework - draft-parecki-oauth-v2-1-02]<br />
<br />
<br />
== Development ==<br />
<br />
* [https://developers.google.com/oauthplayground/ Google OAuth 2.0 Playground]<br />
* [https://developers.google.com/identity/protocols/OAuth2 Using OAuth 2.0 to Access Google APIs]<br />
<br />
<br/><br />
<br />
= OpenID Connect =<br />
<br />
* [http://openid.net/connect/ Homepage]<br />
* [http://openid.net/specs/openid-connect-core-1_0.html OpenID Connect Core 1.0 incorporating errata set 1]<br />
* [http://openid.net/specs/openid-connect-discovery-1_0.html OpenID Connect Discovery 1.0 incorporating errata set 1]<br />
* [http://openid.net/specs/openid-connect-registration-1_0.html OpenID Connect Dynamic Client Registration 1.0 incorporating errata set 1]<br />
* [http://openid.net/specs/oauth-v2-multiple-response-types-1_0.html OAuth 2.0 Multiple Response Type Encoding Practices]<br />
* [http://openid.net/specs/oauth-v2-form-post-response-mode-1_0.html OAuth 2.0 Form Post Response Mode]<br />
* [http://openid.net/specs/openid-connect-session-1_0.html OpenID Connect Session Management 1.0 - draft 27]<br />
* [http://openid.net/specs/openid-connect-frontchannel-1_0.html OpenID Connect Front-Channel Logout 1.0 - draft 01]<br />
* [http://openid.net/specs/openid-connect-backchannel-1_0.html OpenID Connect Back-Channel Logout 1.0 - draft 03]<br />
<br />
<br/><br />
<br />
= Access / Refresh Token =<br />
<br />
* [https://auth0.com/docs/tokens/refresh-token/current Refresh Tokens]<br />
* [https://auth0.com/blog/refresh-tokens-what-are-they-and-when-to-use-them/ OAuth0 - Refresh Tokens: When to Use Them and How They Interact with JWTs]<br />
* [https://auth0.com/docs/api-auth/tutorials/silent-authentication Silent Authentication]<br />
* [https://auth0.com/blog/5-steps-to-add-modern-authentication-to-legacy-apps-using-jwts/ 5 Steps to Add Modern Authentication to Legacy Apps Using JWTs]<br />
* [https://auth0.com/docs/security/store-tokens Where to Store Tokens]<br />
<br />
<br/><br />
<br />
= Fast Identity Online (FIDO) =<br />
<br />
* [https://fidoalliance.org/ FIDO Allianz]<br />
* [https://fidoalliance.org/specifications/download/ Universal Authentication Framework (UAF) / U2F (Universal Second Factor) Specifications]<br />
<br />
<br/><br />
<br />
= Security Assertion Markup Language 2.0 (SAML 2.0) =<br />
<br />
* [https://wiki.oasis-open.org/security/FrontPage Homepage]<br />
* [http://www.oasis-open.org/committees/download.php/56776/sstc-saml-core-errata-2.0-wd-07.pdf Core Specification]<br />
* [http://www.oasis-open.org/committees/download.php/56779/sstc-saml-bindings-errata-2.0-wd-06.pdf Bindings Specification]<br />
* [http://www.oasis-open.org/committees/download.php/56782/sstc-saml-profiles-errata-2.0-wd-07.pdf Profiles Specification]<br />
* [http://www.oasis-open.org/committees/download.php/56785/sstc-saml-metadata-errata-2.0-wd-05.pdf Metadata Specification]<br />
<br />
<br/><br />
<br />
= JSON Web Token (JWT) =<br />
<br />
* [https://tools.ietf.org/html/rfc7515 RFC 7515: JSON Web Signature (JWS)]<br />
* [https://tools.ietf.org/html/rfc7516 RFC 7516: JSON Web Encryption (JWE)]<br />
* [https://tools.ietf.org/html/rfc7517 RFC 7517: JSON Web Key (JWK)]<br />
* [https://tools.ietf.org/html/rfc7518 RFC 7518: JSON Web Algorithms (JWA)]<br />
* [https://tools.ietf.org/html/rfc7519 RFC 7519: JSON Web Token (JWT)]<br />
* [https://tools.ietf.org/html/rfc8725 RFC 8725: JSON Web Token Best Current Practices]<br />
<br />
<br/><br />
<br />
= One Time Passwords =<br />
* [https://tools.ietf.org/html/rfc2289 RFC 2289: A One-Time Password System]<br />
* [https://tools.ietf.org/html/rfc4226 RFC 4226: HOTP: An HMAC-Based One-Time Password Algorithm]<br />
* [https://tools.ietf.org/html/rfc4793 RFC 4793: The EAP Protected One-Time Password Protocol (EAP-POTP)]<br />
* [https://tools.ietf.org/html/rfc6238 RFC 6238: TOTP: Time-Based One-Time Password Algorithm]<br />
* [https://tools.ietf.org/html/rfc6560 RFC 6560: One-Time Password (OTP) Pre-Authentication]<br />
<br />
<br/><br />
<br />
= Einweg-Hashfunktionen =<br />
<br />
* [https://tools.ietf.org/html/rfc1321 RFC 1321: The MD5 Message-Digest Algorithm]<br />
* [https://tools.ietf.org/html/rfc2104 RFC 2104: HMAC: Keyed-Hashing for Message Authentication]<br />
* [https://tools.ietf.org/html/rfc6151 RFC 6151: Updated Security Considerations for the MD5 Message-Digest and the HMAC-MD5 Algorithms]<br />
* [https://tools.ietf.org/html/rfc6234 RFC 6234: US Secure Hash Algorithms (SHA and SHA-based HMAC and HKDF)]<br />
* [http://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.180-4.pdf FIPS PUB 180-4: Secure Hash Standard (SHS)]<br />
<br />
<br/><br />
<br />
= Authentifizierung =<br />
<br />
* [http://davenport.sourceforge.net/ntlm.html The NTLM Authentication Protocol] [[Media:The NTLM Authentication Protocol and Security Support Provider.pdf|(PDF)]]<br />
* [https://tools.ietf.org/html/rfc4120 RFC 4120: The Kerberos Network Authentication Service (V5)]<br />
* [https://tools.ietf.org/html/rfc4121 RFC 4120: The Kerberos Version 5 Generic Security Service Application Program Interface (GSS-API) Mechanism: Version 2]<br />
<br />
<br/><br />
<br />
= Challenge Response =<br />
<br />
* [https://tools.ietf.org/html/rfc5802 RFC 5802: Salted Challenge Response Authentication Mechanism (SCRAM) SASL and GSS-API Mechanisms (Updated by RFC 7677)]<br />
* [https://tools.ietf.org/html/rfc7677 RFC 7677: SCRAM-SHA-256 and SCRAM-SHA-256-PLUS Simple Authentication and Security Layer (SASL) Mechanisms]<br />
<br />
<br/><br />
<br />
= Symmetrische Verschlüsselung =<br />
<br />
* [http://csrc.nist.gov/publications/fips/fips46-3/fips46-3.pdf FIPS PUB 46-3: Data Encryption Standard (DES), National Institute of Standards and Technology, October 25, 1999]<br />
* [http://csrc.nist.gov/publications/fips/fips197/fips-197.pdf FIPS PUB 197: Advanced Encryption Standard (AES), National Institute of Standards and Technology, November 26, 2001]<br />
<br />
<br/><br />
<br />
= Public-Key Cryptography Standards (PKCS) - RSA Laboratories =<br />
<br />
* [https://tools.ietf.org/html/rfc3447 PKCS #1: RSA Cryptography Specifications Version 2.1 (RFC 2313)]<br />
* [https://tools.ietf.org/html/draft-moriarty-pkcs1-03 PKCS #1: RSA Cryptography Specifications Version 2.2 (RFC draft-moriarty-pkcs1-03)]<br />
* [ftp://ftp.rsasecurity.com/pub/pkcs/ascii/pkcs-3.asc PKCS #3: Diffie-Hellman Key Agreement Standard, Version 1.4]<br />
* [https://tools.ietf.org/html/rfc2898 PKCS #5: Password-Based Cryptography Standard, Version 2.0 (RFC 2898)]<br />
* [https://tools.ietf.org/html/draft-moriarty-pkcs5-v2dot1-04 PKCS #5: Password-Based Cryptography Standard, Version 2.1 (RFC draft-moriarty-pkcs5-v2dot1-04)]<br />
* [ftp://ftp.rsasecurity.com/pub/pkcs/ascii/pkcs-6.asc PKCS #6: Extended-Certificate Syntax Standard, Version 1.5]<br />
* [https://tools.ietf.org/html/rfc2315 PKCS #7: Cryptographic Message Syntax Standard, Version 1.5 (2315)]<br />
* [https://tools.ietf.org/html/rfc5208 PKCS #8: Private-Key Information Syntax Standard, Version 1.2 (RFC 5208)]<br />
* [https://tools.ietf.org/html/draft-seantek-pkcs8-encrypted-01 PKCS #8: EncryptedPrivateKeyInfo Media Type (RFC draft-seantek-pkcs8-encrypted-01)]<br />
* [https://tools.ietf.org/html/rfc2985 PKCS #9: Selected Object Classes and Attribute Types Version 2.0 (RFC 2985)]<br />
* [https://tools.ietf.org/html/rfc2986 PKCS #10: Certification Request Syntax Specification Version 1.7 (RFC 2986)]<br />
* [https://tools.ietf.org/html/rfc7512 PKCS #11: URI Scheme (RFC 7512)]<br />
* [https://tools.ietf.org/html/rfc7292 PKCS #12: Personal Information Exchange Syntax Version 1.1 (RFC 7292)]<br />
<br />
<br/><br />
<br />
= Generic Security Service API (GSS-API) =<br />
<br />
* [https://tools.ietf.org/html/rfc2743 RFC 2743: Generic Security Service Application Program Interface Version 2, Update 1]<br />
* [https://tools.ietf.org/html/rfc5554 RFC 5554: Clarifications and Extensions to the Generic Security Service Application Program Interface (GSS-API) for the Use of Channel Bindings]<br />
* [https://tools.ietf.org/html/rfc2479 RFC 2479: Independent Data Unit Protection Generic Security Service Application Program Interface (IDUP-GSS-API)]<br />
* [https://tools.ietf.org/html/rfc2744 RFC 2744: Generic Security Service API Version 2 : C-bindings]<br />
* [https://tools.ietf.org/html/rfc5653 RFC 5653: Generic Security Service API Version 2: Java Bindings Update]<br />
<br />
<br/><br />
<br />
= Pretty Good Privacy (PGP) =<br />
<br />
* [https://tools.ietf.org/html/rfc4880 RFC 4880: OpenPGP Message Format]<br />
* [https://tools.ietf.org/html/rfc5581 RFC 5581: The Camellia Cipher in OpenPGP]<br />
<br />
<br/><br />
<br />
= Secure / Multipurpose Internet Mail Extensions (S/MIME) =<br />
<br />
* [https://tools.ietf.org/html/rfc1847 RFC 1847: Security Multiparts for MIME: Multipart/Signed and Multipart/Encrypted]<br />
* [https://tools.ietf.org/html/rfc5751 RFC 5751: Secure/Multipurpose Internet Mail Extensions (S/MIME) Version 3.2 - Message Specification]<br />
<br />
<br/><br />
<br />
= X.509 Public Key Infrastructure =<br />
<br />
* [https://tools.ietf.org/html/rfc4158 RFC 4158: Internet X.509 Public Key Infrastructure: Certification Path Building]<br />
* [https://tools.ietf.org/html/rfc5280 RFC 5280: Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile]<br />
* [https://tools.ietf.org/html/rfc6818 RFC 6818: Updates to the Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile]<br />
<br />
<br/><br />
<br />
= Transport Layer Security (TLS) =<br />
<br />
* [https://tools.ietf.org/html/rfc5246 RFC 5246: The Transport Layer Security (TLS) Protocol Version 1.2]<br />
<br />
<br/><br />
<br />
= Misc =<br />
* [https://tools.ietf.org/html/rfc4648 RFC 4648: The Base16, Base32, and Base64 Data Encodings]<br />
* [https://tools.ietf.org/html/rfc4422 RFC 4422: Simple Authentication and Security Layer (SASL)]<br />
<br />
<br/><br />
<br />
= Fun =<br />
* [https://de.wikipedia.org/wiki/Internet_Protocol_over_Avian_Carriers Internet Protocol over Avian Carriers]<br />
* [https://tools.ietf.org/html/rfc1149 RFC 1149: A Standard for the Transmission of IP Datagrams on Avian Carriers]<br />
* [https://tools.ietf.org/html/rfc2549 RFC 2549: IP over Avian Carriers with Quality of Service]<br />
* [https://tools.ietf.org/html/rfc6214 RFC 6214: Adaptation of RFC 1149 for IPv6]<br />
<br />
<br/></div>
Jochen
https://wiki.fam-hammann.de/index.php?title=MediaWiki:Sidebar&diff=536
MediaWiki:Sidebar
2020-03-27T16:02:55Z
<p>Jochen: </p>
<hr />
<div><br />
* navigation<br />
** mainpage|mainpage-description<br />
** recentchanges-url|recentchanges<br />
** randompage-url|randompage<br />
** helppage|help<br />
<br />
* Development<br />
** CSS|CSS<br />
** Documentation|Documentation<br />
** HTML|HTML<br />
** Java|Java<br />
** JavaScript|JavaScript<br />
** Log Files|Log Files<br />
** Regular Expressions|Regular Expressions<br />
** Web Development|Web Development<br />
<br />
* Software<br />
** Software - Cloud|Cloud et al<br />
** Software - Editors|Editors<br />
** Software - Linux|Linux<br />
** Software - Messaging Server|Messaging Server<br />
** Software - Security & Cryptography|Security & Cryptography<br />
** Software - Web Server|Web Server<br />
** Software - Virtualization|Virtualization<br />
<br />
* Papers & Online Books<br />
** Cryptography & Security|Cryptography & Security<br />
** Design Patterns|Design Patterns<br />
** Standards & Protocols|Standards & Protocols<br />
<br />
* Software Architecture<br />
** Logging & Metrics|Logging & Metrics<br />
** OpenID Connect|OpenID Connect<br />
** Self-Contained Systems (SCS)|Self-Contained Systems<br />
<br />
* Templates<br />
** arc42 Template 6.0|arc42 Template 6.0<br />
** arc42 Template 7.0|arc42 Template 7.0<br />
<br />
* SEARCH<br />
* TOOLBOX<br />
* LANGUAGES</div>
Jochen
https://wiki.fam-hammann.de/index.php?title=JavaScript&diff=535
JavaScript
2020-03-27T15:59:48Z
<p>Jochen: </p>
<hr />
<div>* [[Chrome Extension]]<br />
* [[JavaScriptLang | JavaScript]]<br />
* [[jQuery | jQuery]]</div>
Jochen
https://wiki.fam-hammann.de/index.php?title=Java&diff=534
Java
2020-03-27T15:57:55Z
<p>Jochen: </p>
<hr />
<div>* [[Date Time]]<br />
* [[Dozer]]<br />
* [[GWT Project]]<br />
* [[GXT]]<br />
* [[JasperReports]]<br />
* [[JavaLang|Java]]<br />
* [[Out of Memory]]<br />
* [[Security & Cryptography]]</div>
Jochen