• Open Menu Close Menu
  • Apple
  • Shopping Bag
  • Apple
  • Mac
  • iPad
  • iPhone
  • Watch
  • TV
  • Music
  • Support
  • Search apple.com
  • Shopping Bag

Lists

Open Menu Close Menu
  • Terms and Conditions
  • Lists hosted on this site
  • Email the Postmaster
  • Tips for posting to public mailing lists
Re: Modified AuthSample and Focus
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Modified AuthSample and Focus

  • Subject: Re: Modified AuthSample and Focus
  • From: Marc Krochmal <email@hidden>
  • Date: Thu, 16 May 2002 15:19:31 -0700
Jens and Arthur,

This is a known issue with the Authorization API that will hopefully be fixed in a future release. Please do NOT implement your own auth dialog because the goal is to provide a consistent user interface for authentication, and in the future you may be able to use smart cards or thumb print readers to authenticate, and if you use your own auth dialog, your application won't be able to take advantage of this.

Also, implementing your own auth dialog is bad because you now have access to the user's password which means if you store it incorrectly, a hacker could get access to it. Please let the built in SecurityAgent handle authentication.

If everyone that's experienced the "dialog not having focus" issue could file a bug report at <https://bugreport.apple.com>, it will help let engineering know how serious this problem is. Thanks.

-Marc



On Thursday, May 16, 2002, at 12:20 PM, Jens Bauer <email@hidden> wrote:

Hi Arthur,

I have the same focus problem. Try subscribing to the CDSA list (Common
Data Security Architechture), and repost your message.

I'm not sure whether they could reproduce the problem using my
application, maybe they can with your app ?

I think this has to do with that the original AuthSample does *not* bring
up its own GUI in the application, but only in the tool a dialogbox
opens. This way, the tool is the only process bringing up a GUI, which
will then have focus.

There is a solution to this problem. I almost got it working by creating
my own dialogbox, but then I wasn't allowed to work more on the project,
due to that it had to ship. -So it left without the customized UI.

So it's in fact in the GUI application you can (and should!) create your
own username/password dialogbox, and *not* in the tool. If you do it in
the tool, there's no reason for actually having the tool, as including
the frameworks in itself would be a security risk. (This is a quote from CDSA)
_______________________________________________
macnetworkprog mailing list | email@hidden
Help/Unsubscribe/Archives: http://www.lists.apple.com/mailman/listinfo/macnetworkprog
Do not post admin requests to the list. They will be ignored.
  • Follow-Ups:
    • Re(2): Modified AuthSample and Focus
      • From: Jens Bauer <email@hidden>
  • Prev by Date: Re: Using the broadcast address
  • Next by Date: Re: CFSocketSendData timeout?
  • Previous by thread: Re: Modified AuthSample and Focus
  • Next by thread: Re(2): Modified AuthSample and Focus
  • Index(es):
    • Date
    • Thread