Code Project Forum

D

What minimal self-hosted server options use TcpListener and not HttpListener (to dodge urlacl)?
Watching Ignoring Scheduled Pinned Locked Moved .NET (Core and Framework) sysadmin csharp html css security
3

0 Votes

3 Posts

1 Views

D

Big relief: https is NOT required for OAuth 2.0 redirect_uri which use 'localhost' as the hostname (at least with Xeros Authentication Server anyway ... it is possibly a requirement of the spec). A good thing too, or else presenting a clean certificate for 'localhost' to the user's browser (kind of super-important when getting the user to trust your app to access their resources) would require presentation a self-signed cert that's trusted by the host. Which would require generating and adding adding it to the trust store at some point in time prior to the moment it is used. Which would require privilege-elevation prior to the moment it is used. Which we are trying to avoid with ClickOnce.
D

OAuth 2.0 when a .NET desktop app is the 'client'
Watching Ignoring Scheduled Pinned Locked Moved .NET (Core and Framework) ios agentic-ai security csharp c++
1

0 Votes

1 Posts

0 Views

No one has replied
D

How can a .NET Framework desktop-application gain temporary elevated privileges?
Watching Ignoring Scheduled Pinned Locked Moved .NET (Core and Framework) question csharp dotnet visual-studio com
4

0 Votes

4 Posts

0 Views

D

I'll go ahead and try these things right away. I solved my app.manifest issues by ticking the 'NET Desktop Development' profile in the VS 2019 installer! :doh:

DT Bullock

Topics

What minimal self-hosted server options use TcpListener and not HttpListener (to dodge urlacl)?

OAuth 2.0 when a .NET desktop app is the 'client'

How can a .NET Framework desktop-application gain temporary elevated privileges?