Web Applications





Web applications are systems that run in browsers that perform functions normally associated with other client-based programs. One of the most commonly used web applications is email; instead of downloading individual emails to a local machine, the data is shown through a website. Other examples of web applications are collaborative systems like a wiki or an online game.

Share tech news, updates, or what's on your mind.

Sign up to Post

IBM Domino Web Application: What is the best way to do a @DbLookup in a Domino Web App without refreshing the page?
OWASP: Threats Fundamentals
LVL 12
OWASP: Threats Fundamentals

Learn the top ten threats that are present in modern web-application development and how to protect your business from them.

 We have few web applications in sharepoint 2013. Two of them web application we have set up  Anonymous Access. One of the web application is working fine but another one has getting Login Prompt. I have checked the web application setting  as well as site collection setting. I read some article and they mentioned about some css or script can cause the problem.

How to resolve this problem? How to identify those script or css? Is there any tool like fiddler can help us?

Getting Login Prompt on Anonymous Access Enabled SharePoint Sites?
We get a lot of repeated errors in Weblogic logs that seem to start at about the same time as when a non-credential (& non-bruteforce) external penetration testing (using Nessus) started:

<Jan 15, 2019 5:12:36 AM SGT> <Warning> <Socket> <BEA-000450> <Socket 1,544 internal data record unavailable (probable closure due idle timeout), event re
ceived -32>
<Jan 15, 2019 5:12:36 AM SGT> <Warning> <Socket> <BEA-000450> <Socket 1,546 internal data record unavailable (probable closure due idle timeout), event re
ceived -32>
Hibernate: SELECT AAAA_CO_CD  from YYYYYY_COMPANY  where CO_CD = ?

Above link (which I don't have a login to Oracle) appears to indicate load testing could trigger BEA-000450 errors :
Anyone encountered this?

a) how can the penetration test proceed further?  By limiting the non-intrusive scan to 1 thread (we've reduced from 10 to 5)?
b) is there any patch or ways to fix this?
I am currently maintaining my catering business on MS Excel;
I maintain the following columns:
1-      Category
2-      Product
3-      Kcal
4-      Element (ingredient)
5-      Measurement (How the ingredient is bought: KG, Pack, Box etc.)
6-      Output (How many end products this element produces)
7-      Cost per element
8-      Total cost
9-      Sale price (per client)
10-      P/L
11-      Orders (by client)
12-      Expenses (Rents, Salaries, and Deliveries etc.)
Are you aware of a simple web based system that can cover this for me?
Not only accounting, I am selling B2B and B2C. I do sandwiches, juices, salads, and parfaits. I want to track the cost of each item and its elements.

I want to sell to each client with different price depending on a criteria I want to maintain.

Be able to follow up with orders placed by clients and print out their invoices and receipts.

A small real estate firm is looking to have a website that would display their property listings, blog, documents and other static information.
It needs to be mobile compatible as well.
They want to post the listings themselves.

Is there a company that produces these sites?  Something that runs under WordPress?

can you use google alerts without a google account ?
I wanna use my business account instead of my google account.
once I do that, it asks me to sign into my google account.
I have a series of apx  25 documents that describe 25 instances of a configuration screen on which you select - or enter - one or more data elements.. Each screen deals with a different concept (e.g. age, gender, etc).) But they all have common elements (e.g. how to clear all settings, how to display only selected items etc.

I'm leaning toward including these concepts on each of the 25 pages. (Ease of reading for our audience.) But, if, for some reason, our developers change the process of (e.g.) deleting all data elements), they I'd have to change it in 25 places.

I guess I could include these commands on a separate page, and simply say (on the 25 pages), "Click here for global commands."

Hi everyone,

I'm trying to install the Microsoft Lync Web App Plugin.  I get to a point during the process where I'm prompted to run the plug in, in order to get audio and video.  However, as the progress bar gets to about 90% complete a dialogue box generates and indicates the "The specified account already exists", then closes and the users is never able to reach their meeting.

Here are some details surrounding the setup -

  • The device is a Dell laptop
  • The OS is a WIN 7 64-bit platform
  • Running Microsoft Office 2013
  • This is a domain environment
  • The user is a standard user on the laptop
  • I, as an admin, have installed the Skype Meetings App as I can see it listed in Control Panel
  • I've also got the latest version of Silver Light installed
  • I've also uninstalled and reinstalled the Skype Meetings App a couple times and get the same dialogue box - Account Already Exists
  • I've cleared the cache and history
  • We don't run Office 365

I'm a bit stumped.  Any thoughts?

Thanks for your help.

I'm documenting a connected series of screens that contains list of geographic locations. There are three screens;
  • Continent
  • Country
  • State

Each geographic entity can be assigned a value. e.g.
  • North America = 3
  • USA = 6
  • Ohio = 4

The returned value is the one for the most specific entity:]
  • If you are in Ohio: 4
  • If you are in the USA but not in Ohio: 6
  • If you are in North America but not in USA: 3
For this document, I have an intro, and then three sections (Continent/Country/State)

Would it be better practice to repeat the above derivation of the returned value in each section (3 instances) or just once (in the intro).  My concern is that if I put it in the intro, and someone is reading only the State section, they'd miss out on this explanation.

What you do think?

STEM education is growing rapidly and preparing the next generation to fulfill the needs of our society's technology demands.  

In what ways has EE helped you continually learn, even as professionals?
How can EE support STEM as a great learning resource?
C++ 11 Fundamentals
LVL 12
C++ 11 Fundamentals

This course will introduce you to C++ 11 and teach you about syntax fundamentals.

URL Masking

I am reselling an online product and using my own brand name (all contracts with product provider in place).

They have an Outlook Web Access url which lets say is https://supplier.co.uk/owa. Now, I want to have my own domain for the same but so that my clients don't ever know they are using the suppliers URL. So something like https://owa.rebrandedname.co.uk or https://www.rebrandedname.co.uk/owa

How can i achieve that without redirect all traffic for all pages to www.rebrandedname.co.uk
When I go to the FoxNews site on my cell phone I get transferred to "today.giftcardssc1.xyz" with the following message:

Dear client Charter Communications, congratulations!
We would like to thank you for your loyalty to Charter Communications, and thus we offer you an exclusive chance to get a Walmart $1000 Gift Card today - December 30 (Sunday), 2018. All you have to do is choose the correct gift box to get started.  Good luck!

It then gives me a place to click (which I don't), and a "Close" option, which simply transfers me to the add page.  There's no way to get out of the ad page, other than going back to the original message.  This is the only website that presents the problem.  Do you know what it is and how I can get rid of it?


Hi,  I'm creating a PHP and MySQL web application for a client. I'm a fairly new web developer.
Is there a way to add page titles and meta tags dynamically? It's a small application. I'm not using a Framework.
I saw a couple of possible solutions on google, but am not sure what the easiest and most efficient way of doing it would be.

Possible Solution #1, add variables in my header.php page and then on each respective page for example about, contact etc... add those variables above the include statement.
Here is my header.php code:


<!DOCTYPE html>
<html lang="en">
	<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
	<meta charset="utf-8">
	<meta name="viewport" content="width=device-width, initial-scale=1">
	<meta name="description" content="<?php echo $meta_description; ?>">
	<meta name="author" content="Ryan Sacks">
	<link rel="icon" href="img/favicon.ico">
	<title><?php echo $page_title; ?></title>
	<!-- Bootstrap core CSS -->
	<link href="css/bootstrap.min.css" rel="stylesheet">
	<!-- Font Awesome Icons -->
	<link rel="stylesheet" href="https://use.fontawesome.com/releases/v5.3.1/css/all.css" integrity="sha384-mzrmE5qonljUremFsqc01SB46JvROS7bZs3IO2EmfFsd15uHvIt+Y8vEf7N7fWAU" crossorigin="anonymous">
	<!-- Custom CSS -->
	<link href="css/style.css?v=<?php echo time(); ?>" rel="stylesheet">
	<!-- Google Fonts -->
	<link href="https://fonts.googleapis.com/css?family=Oswald:300,400,500" rel="stylesheet">

Open in new window

I'm fairly new to php and mysql but I'm creating a PHP and MySQL web application for a client. I have a register.php page with the following form fields:
Contact Name, Phone, Email, Password, Confirm Password, Ticket Holder Password and Ticket Holder Confirm Password, where Users can register/sign up to use the app. Once they do register, they get redirected to admin_login.php page where they can login and get full access to the app and various other pages I've created.

My Problem:
My Password validation functions aren't working and I'm not sure why. I want the passwords to be a minimum of 8 characters, contain one upper and lowercase letter, a number and a special character. I'm using a regular expressions code that I found online. What I want is to validate the Password fields, so if the User enters a password that meets the criteria mentioned above than it should INSERT the data INTO the database, if it doesn't meet the Password criteria mentioned above I want to display an error message saying: "Password must be minimum of 8 characters, contain one upper and lowercase letter, a  number and a special character". I'm new to using php functions and how to call them properly.

This is the code in my functions.php page:



// clean the form data to prevent injections

/* Built in functions used:

function validateFormData($formData) {

Open in new window

The user wants to get back a domain that they once had, but that now has a domain status of "Domain Status: pendingdelete"

We need advice on whether there is anything that can be done other than waiting in suspense every day to see if the domain has been released by the registrar and is 'back in circulation'.

The domain name is not a desirable name.  I doubt if there are dozens of people who want this name
I see from a whois that the Registrar is ENOM

I'd like to register it with DYN.COM
Can ENOM be contacted?
Can anything but waiting be done?

Hello experts,
We have intermittent browsing issues (accessing internal and Saas applications) in our company, and just wanted to find out for your expert advices as to how you guys go about troubleshooting it. Does it always require a 3rd party solution to determine the bottlenecks.

One of instances are both IE and chrome (both on VDI and physical machine), goes to page isn't working if it stays for a certain period of time.


Thanks a lot.
We have a web application that uses an external SMTP server to send emails.
We add CNAME records on our client's domain names so that the SMTP can send emails on their behalf. We don't have any issues so far, just with one of our clients in one specific situation.

If the application sends an email with our client's domain as the FROM to any email address other than their own domain, the email goes out without any issues.
If the application sends an email from any email address other than the client's domain and sends it to the clients domain, the email goes out without any issues.


If the application sends an email from an email address of our client's domain to another email address from the same domain, then the email doesn't even make it to the SMTP server. We checked the logs and there is no record of the email being processed.

What could possibly cause this?
A bit of an ask but pref with a txt reminder and or txt conf

Anyone know of such an application / ap ?

Chrome add on etc ?

I am trying to connect Zapier on an MS SQL 2014 instance I am running on one of our servers.

I can connect fine using heidisql.

When connecting from Zapier I get an authentication error:

(pyodbc.ProgrammingError) ('42000', "[42000] [unixODBC][FreeTDS][SQL Server]Login failed for user 'someuser'. (18456) (SQLDriverConnect)")

Open in new window

So this means that the network connexion itself is working but somehow their Python based connector doesn't manage to authenticate.

We used mixed mode authentication on said sever and I have tried both SQL user and domain user to no avail... Using a complex password as per their suggestions.

Any suggestion / info most welcome (as their support is not too helpful on this one).
Exploring SharePoint 2016
LVL 12
Exploring SharePoint 2016

Explore SharePoint 2016, the web-based, collaborative platform that integrates with Microsoft Office to provide intranets, secure document management, and collaboration so you can develop your online and offline capabilities.

I have Elasticsearch 6.4.3 and Kibana 6.4.3 installed on Debian 8 Jessie.

I've looked into X-Pack and Shield, which both seem to be mostly concerned with security within Elasticsearch, and how to control security BETWEEN Elasticsearch and Kibana.

I don't really need security on the backend between Kibana and ES. However we would like the Kibana web page to be world accessible with a login page.

Is it possible to implement ONLY a login page for the Kibana site?
Trying to demonstrate a web worker API to my Web Development students and I wanted to make the process of changing a color image to grayscale in the worker. I know it doesn't take much processing but I'm just using it as an example. I have the grayscale working fine when it's not separated out into a websworker ( jvalencia.ceiwd.com/contoso/badge1.html ) but when I put the code into a webworker the progress bar works but the grayscale image doesn't work--the color image is loaded. ( jvalencia.ceiwd.com/contoso/badge.html )  What am I missing?

WORKING (With no Web Worker):

function showImage(file) {
      reader = new FileReader();
      reader.onload = function (event) {

            if (holder.getContext !== undefined) {
                  var context = holder.getContext('2d');
                  var destX = 0;
                  var destY = 0;
                  var imageObj = new Image();
                  imageObj.onload = function() {
                        context.drawImage(imageObj, destX, destY, holder.width, holder.height);

                        var imgData = context.getImageData(0, 0, holder.width, holder.height); //get image from badge
                        var pixels = imgData.data

                        for (var i = 0, n = pixels.length; i < n; i += 4) {
                            var grayscale = pixels[i] * .3 + pixels[i+1] * .59 + pixels[i+2] * .11;
                            pixels[i  ] = grayscale;        // red
                                 pixels[i+1] = grayscale;        // green
                            pixels[i+2] = grayscale;        // blue
                            //pixels[i+3]              is alpha

I have a Table called game with 4 columns:
clock_first_goal, clock_last_goal, clock_first_penalty, clock_last_penalty

and a second Table called tickets_one with 5 columns:
clock_one, clock_two, clock_three, clock_four, clock_five
where I've imported random clock times between 0 and 20:00 minutes that of a NHL period.
There are 1200 total times (60 seconds x 20 minutes) in 5 columns so there are 240 records in this Table.

In my application I have a page called enter_games.php. What I want is when the admin submits the times for First Goal, Last Goal, First Penalty and Last Penalty, I want to check if any of these values match the values in the tickets_one Table. If they do I just want to echo "we have a match!", if not I want to echo "no match".

I'm not sure the best way to do this if it should be a Join, if statement or loop etc... I think it can be done with an if statement.
I'm somewhat new to php and mysql. This is the section of the code I'm trying to get to work:

// find matching results
// query the database with client ID
$query = "SELECT * FROM tickets_one";
$result = mysqli_query( $conn, $query );

// if result is returned
if( mysqli_num_rows($result) > 0 ) {

    // we have data!
    // set some variables
    while( $row = mysqli_fetch_assoc($result) ) {
        $time1    = $row['time_one'];
        $time2    = $row['time_two'];
        $time3    = $row['time_three'];
        $time4    = $row['time_four'];
        $time5    = 

Open in new window

we are looking for 800 phone no with api. meaning when someone call 800 phone no. we want api to be called immedately to www.myweb.com/phone no
then redirect to 310.222.2222

do you know which provider can. do it? just like something out of the box without too much coding involved
Dear experts

Our company would like to setup open source OT management system that allows us to do following:

1. When employ wants to do OT, Start time must be submitted first and then it will only be reflected to system once administrator approved.
2. Later when employee finish job, he or she can set the end time, and there should be something that allows emplyee to upload service report that contains start and end time signed by our customers.
3. After setting end time, it should show total OT - hours and we should be able to generate monthly OT for each employee.

Plz advise something that is opensource or even if need to pay, it should be something not very expensive.

I have to draft a guideline for systems that interface with a CII system & need inputs:
currently, the interfaces concerned are limited to 3 types only:

1. files transfer
I can only think that the generally practices ie:
 a) encryption of data in transit (eg: using sftp instead of ftp/mapping a drive or NFS)
 b) encryption of data at rest if it's sensitive (tampered with)

2. API
how do we secure these (in particular APIs using microServices)??
I've heard of API needs to be certified so before requesting for it, need to be certain
else applications developers may question its relevance/usefulness

3. DBLink
Those sqlconnect  esp Oracle links to extract / update data.
Will need to define if the non-CII system is
   a) updating into CII, will have to be extra stringent but how?
   b) extracting from CII, just encrypting the sql calls

Oracle databases, weblogic are involved in the critical systems
while the less-critical systems may be Windows, Linux on
various apps (including mobile apps).

Editing thread to add Oracle as it relates to DBLink.

Web Applications





Web applications are systems that run in browsers that perform functions normally associated with other client-based programs. One of the most commonly used web applications is email; instead of downloading individual emails to a local machine, the data is shown through a website. Other examples of web applications are collaborative systems like a wiki or an online game.