Web Languages and Standards

39K

Solutions

30K

Contributors

Web development can range from developing the simplest static single page of plain text to the most complex web-based internet applications, electronic businesses, and social network services using a wide variety of languages and standards, including the familiar HTML, JavaScript and jQuery, ASP and ASP.NET, PHP, ColdFusion, CSS, PHP, Flex and Flash, but also the implementation of a broad list of standards including XML, WSDL, SSDL, VoiceXML and many more.

Share tech news, updates, or what's on your mind.

Sign up to Post

Is the following a new method of linking?

I really like the way this site exposes the page tag that allows the URL shared through various means to be easily copied...

A simple click away...
opens up this way...

Opened Links

This is the first site I see with this, but I find it so easy to references these page tags. But is it a standard technique?

Thanks
0
hi,

Many web pages contain information that is not stored in the source code for the page, eg pricing info, so it's harder to scrape.

Where is this info stored when loaded to a PC browser, and how can i read it? some kind of cache or cookie? i'm a newbie on the web side.

example Airbnb: https://www.airbnb.co.uk/rooms/.. any room id... ?checkin=20-05-2018&checkout=22-05-2018&guests=2

Background: I'm trying another angle to resolve this other question: https://www.experts-exchange.com/questions/29094633/Web-scrape-macro-VBA.html

Thanks
0
I have a jsp page using struts tag as below:
<html:form action="/actions/graphics/job/attachFile/confirm">
<html:cancel value="Cancel" styleClass="buttons"></html:cancel>
<html:submit value="Confirm"/>
</html:form>

Open in new window

     
public ActionForward execute(ActionMapping mapping, ActionForm form, HttpServletRequest request, HttpServletResponse response) throws Exception
	{
		ActionForward actionForward = SessionChecking.checkUserBean(mapping, request);
		if (actionForward != null)
			return actionForward;

		if (isCancelled(request))
		{
                 //do something here
                }
               //......
     }//execute

Open in new window

it works very well in production for years, now I am trying to change the looking of the button by integrating with bootstrap.
When I only changed the looking of button confirm, it looks like this:
confirm_button_only.pngat this moment, both buttons are functioning.

however, when I tried to change the looking of both buttons, it looks like this:
confirm_cancel_both.png
             <html:form action="/actions/graphics/job/attachFile/confirm">
		<button type="submit" id="cancel" name="cancel" class="btn btn-default" value="Cancel"  > Cancel</button>
		<button type = "submit" id="submit" class ="btn btn-primary" value="Confirm"> Confirm</button>
		</html:form>		

Open in new window

they both looks good, but the problem is both buttons are doing the same job, which means they both have the CONFIRM function , no more CANCEL function.

then I tried a little modification for experiment:
             <html:form action="/actions/graphics/job/attachFile/confirm">
		<button type="button" id="cancel" name="cancel" class="btn btn-default" value="Cancel"  > Cancel</button>
		<button type = "submit" id="submit" class ="btn btn-primary" value="Confirm"> Confirm</button>
		</html:form>	

Open in new window

the problem for this code is the CANCEL button does NOT work at all regardless how many time I click on it.

can anybody help me on this? all I want is just make the CANCEL button looks as big as the CONFIRM button but keep the original functioning.
I think the real question would be : how to transfer the value of CANCEL button to the HttpServletRequest such that the function isCancelled(request) can return true?
by name="cancel" ?  value="Cancel" ? or type="cancel"?
0
What are the pros and cons of using some sort of templating framework versus creating a class/functions to create dynamic web content?

Does it make more sense do perform the templating from the back end or front end?

I keep going back to localization and storing text strings etc as textual representation and converting them some tool

Currently i am thinking of running a query to get the data and storing in on the front size for javascript(jquery) to create the page
0
Hi E's,
I try to save some code to .htaccess file, but unfortunately I have problems with the characters "<" and ">".
I have this code:
$final = "<IfModule mod_rewrite.c>"
file_put_contents('/home/anaepedro/www/.htaccess', $final);

Open in new window

The output of $final is a empty string.
I change my code for:
$urls[] = "&lt;" . "IfModule mod_rewrite.c" . "&gt;";

Open in new window

, the output is what I looking for: "<IfModule mod_rewrite.c>", that's good.
The problem is, when I save the code to the file, they will appear again like this: &lt;IfModule mod_rewrite.c&gt; in the htaccess file.

How I save in .htaccess file the string with the characters "<" and ">" correctly?

The best regards, JC
0
Tracking Read events on emails

I am in the process of switching an email account associated with my CRM, but that CRM tells me when users have opened emails that I sent from the CRM.

Once I switch my email account, I will not be able to see those receipts.

Is there another tool, like MailGun, which can notify me of Read Events, even though I plan to no longer use that email account?

In other words, any Read Event will be for an email I sent weeks or months prior to setting up on MailGun, or some other tool.

Is this information lost for good?

Or is there a way for me to capture these events?

Thanks
0
Dear Experts, I got a website at domain: example.com, but when I typed it in a browser, it showed only IIS page. The website can only be displayed when I typed https://www.example.com

Can you please suggest? We 'd like to get the website when I typed www.example.com or example.com, not only https://www.example.com

Also, sometimes I could not access the website on a browser and not the others?
0
Can you please tell me where that error is?
SSIS package "C:\Users\Kathleen A\Documents\Visual Studio 2012\Projects\TxtLoading\TxtLoading\Basic Package.dtsx" starting.
Information: 0x4004300A at Import all the apps, SSIS.Pipeline: Validation phase is beginning.
Information: 0x4004300A at Import all the apps, SSIS.Pipeline: Validation phase is beginning.
Information: 0x40043006 at Import all the apps, SSIS.Pipeline: Prepare for Execute phase is beginning.
Information: 0x40043007 at Import all the apps, SSIS.Pipeline: Pre-Execute phase is beginning.
Information: 0x402090DC at Import all the apps, List of apps [2]: The processing of file "C:\Users\Kathleen A\Desktop\Apps.txt" has started.
Information: 0x4004300C at Import all the apps, SSIS.Pipeline: Execute phase is beginning.
Information: 0x402090DE at Import all the apps, List of apps [2]: The total number of data rows processed for file "C:\Users\Kathleen A\Desktop\Apps.txt" is 5.
Error: 0xC0202009 at Import all the apps, OLE DB Destination [23]: SSIS Error Code DTS_E_OLEDBERROR.  An OLE DB error has occurred. Error code: 0x80004005.
An OLE DB record is available.  Source: "Microsoft SQL Server Native Client 11.0"  Hresult: 0x80004005  Description: "The statement has been terminated.".
An OLE DB record is available.  Source: "Microsoft SQL Server Native Client 11.0"  Hresult: 0x80004005  Description: "Cannot insert the value NULL into column 'AppId', table 'Movies.dbo.Apps'; column does not allow nulls. INSERT 

Open in new window

0
There is an intranet site under IIS which has to use the Windows authentication as required by the corporate policy. The web application is an ISAPI extension and it must be able to access files located on shared folders of domain servers as the currently logged in user. That works fine if the site uses Basic authentication, but neither Windows or Digest authenticated users are able to access the network shared folders.
I used the Sysinternals' ProcMon utility and I can see the the w3wp process tryes to access the files being impersonated to the logged in user account.
It fail with the Windows authentication enabled:
Date & Time:	3/16/2018 5:03:22 PM
Event Class:	File System
Operation:	CreateFile
Result:	ACCESS DENIED
Path:	\\Server\Share\Folder\
TID:	9888
Duration:	0.1380666
Desired Access:	Read Data/List Directory, Synchronize
Disposition:	Open
Options:	Directory, Synchronous IO Non-Alert
Attributes:	n/a
ShareMode:	Read, Write, Delete
AllocationSize:	n/a
Impersonating:	DOMAIN\User

Open in new window

But works fine with the Basic authentication:
Date & Time:	3/16/2018 5:05:24 PM
Event Class:	File System
Operation:	CreateFile
Result:	SUCCESS
Path:	\\Server\Share\Folder\
TID:	9888
Duration:	0.0014367
Desired Access:	Read Data/List Directory, Synchronize
Disposition:	Open
Options:	Directory, Synchronous IO Non-Alert, Open For Backup
Attributes:	n/a
ShareMode:	Read, Write, Delete
AllocationSize:	n/a
Impersonating:	DOMAIN\User
OpenResult:	Opened

Open in new window


I saw on an internet forum the following explanation:
When using Windows Auth only an authentication token is passed to the web app. This token will not pass to another machine (double hop) unless there is a trust relationship, which usually involves a Kerberos implementation.
But I don't understand how can the trust relationship could be established and what is a Kerberos implementation.

Please advise.
0
Looking for MediaWiki consultant to help debug issues with Mediawiki site
0
Hello
I have an c# asp.net webform which uses a master page. I have coded a simple example to prove that I can use  javascript to check for changes made to an AjaxControlToolkit ComboBox1. The example works perfectly and each time I select a new drop down item the selected item display in the textbox. Because it uses a master page  the javascript has to reference the ComboBox1 as 'MainContent_ComboBox1' and the TextBox1 as '#MainContent_TextBox1'.

Now I need to make this work without a master page. I modified the default.aspx to remove MasterPageFile="~/Site.Master"  and remove the "<asp:Content.." and added in <head> and <scriptmanager> and changed the javascript from 'MainContent_ComboBox1 to ComboBox1 and #MainContent_TextBox1 to #TextBox1 but the Javascript is returning Null for $find('ComboBox1_ComboBox1').add_propertyChanged(function (sender, event) {

I have tried ComboBox1, ComboBox1_ComboBox1, 'ComboBox1', 'ComboBox1_ComboBox1', "ComboBox1", "ComboBox1_ComboBox1" and other variations without success. I don't understand why I am unable to reference  ComboBox1 when there is no master page. Any advice would be welcome !!!

regards
Pat

Original default.aspx with Master Page (Working correctly)
<%@ Page Title="Home Page" Language="C#" MasterPageFile="~/Site.Master" AutoEventWireup="true" CodeBehind="Default.aspx.cs" Inherits="WebApplication13._Default" %>

Open in new window

0
How to protect against DOM based attacks?

This article:
https://github.com/aspnet/Docs/blob/master/aspnetcore/security/cross-site-scripting.md

Holds a warning:

[!WARNING] Don't concatenate untrusted input in JavaScript to create DOM elements. You should use createElement() and assign property values appropriately such as node.TextContent=, or use element.SetAttribute()/element[attribute]= otherwise you expose yourself to DOM-based XSS.

My C# / MVC / Razor web app was written some time ago, with little worry for XSS.

What key words shall I search for to assess the exposure to DOM based attacks?


Thanks
0
Does Microsoft's Anti-XSS Library block:

HTTP Splitting and Cache Poisoning?

These are new concepts to me, so surely I need to spend more time reading this article:

http://chousensha.github.io/blog/2014/08/15/pentest-lab-webgoat/

If you have the time... :)

Which vulnerability is NOT blocked by Microsoft's Anti-XSS Library?

Thanks
0
Checking my Firefox version.

We support only: FF ESR 52.6

I need to know what version I have installed.

Thanks
0
I will soon be starting a podcast that will ultimately feature 2 or 3 episodes weekly. I travel a fair amount, so I know that having a system in place that would allow me to have automated uploads on certain dates and times would enable the episode updating to be a smooth process.

"Uploads" may be a little off the mark. I already have some cron jobs ON a website (freelanced out, since I am not a techie) that replace existing files on he website each Friday with new ones at a specified day and time on a weekly basis that has run very well for a couple of years now. I upload the new files on Wednesday or Thursday at my convenience and that's all I have to do.

To be sure, the names of the uploaded files are exactly the same as the ones being updated (or simply written over, that is).  I have not yet dug deeper into the names required for podcast files, if there are any such requirements, and want to get an expert view of what I want to do, as described.

I did some searching on Google, but they continue to descend into Internet Hell, insisting on providing search results that do not fit the search terms. On a recent trip. I needed to find a laundromat to do a load or two of laundry and a search on "laundromat" with the city name resulted in a list of DRY CLEANERS! Not even "close but no cigar" as far as I'm concerned.
0
Question about a RegEx:

 @"[&|?](" + "myDomain.com" + ")=(.*?[^&]+)?";

what do these require or prevent before the domain?

[&|?]

and what does this require or prevent after the domain?

(.*?[^&]+)?

Thanks.
0
Hello.
I have an input form where the user enters details about them-self, which would then be stored in a database. After the form has been submitted, the user would be redirected to a page which confirms the page has been sent and also uses / echoes some of the information the user has just entered in the previous page.  

The set up is only partially working. The form works and the information is stored in the database and redirects. The redirected page is not calling the the information (just submitted into the database) even though the id of the entry entered in the previous form has been passed through.

So I have a signup form and a welcome form and functions on a functions page.

On the Welcome page I have the following function.

function find_student_by_id($id) { //so this function should return an associated array called teacher which has all teacher propertuies associated to that ID
      global $db_connection;
  
      $sql = "SELECT * FROM students_table";
      //$sql .= "WHERE id='" . db_escape($db_connection, $id) . "' ";
      $sql .= "WHERE id='" . $id . "' ";
     
      $result = mysqli_query($db_connection, $sql);
  	//echo $result;
     confirm_result_set($result);
     
 	$student = mysqli_fetch_assoc($result); // find first
     mysqli_free_result($result);
     return $student; // returns an assoc. array called student
   }

Open in new window


In this function, the following function is being called -

function confirm_result_set($result_set) {
     if (!$result_set) {
     	exit("Database query failed fool!.");
     }
   }

Open in new window


The code is failing at this function as I am receiving the error - "Database query failed fool!."

I'm assuming therefore that there is no $result_set value. Looking at this, I thought this was because the string value '$result' was being passed, not '$result_set' so I changed '$result_set' to '$result' in function 'confirm_result_set'. But no, this didn't work (which confuses me more...sigh).

I took these functions from a tutorial I was following and just tried to adapt them to my needs - but clearly I'm messing up somewhere. Any idea what is causing the issue? Many thanks for reading.
0
I'm trying to figure out how I can scrap/detect if the phrase "We regret we cannot open the account you requested." is on the page using CSS Selector and/or Javascript (jQuery is ok if that is the only option but want to avoid it if possible?). Below is an excerpt from the mark-up.
<!-- current page: offers --> 
        <div class="main">
     <h3>Eligibility Results</h3><p>Thank you for your online application for an account at Bank of the West.  We regret we cannot open the account you requested.<br/>
If you would like to discuss this application with Bank of the West, please contact us at:</p>

Open in new window


Thanks!
0
Hello,
    How do I exclude www. from the following rewrite rule?

RewriteEngine on
RewriteCond %{HTTP_HOST} ^(.*)\.domain\.com
RewriteRule ^(.*)$ http://domain.com/forum/t/%1$1 [L,NC,QSA]

Thanks!
0
Greetings...
I have a PHP script file that was written by some one else who no longer is around to ask how to fix the issue. I do not have a lot of experience, practical, or otherwise in decoding this type of scripting.

The basic process as I understand it, is to take data from a generated tide table, figure out the time to the next tide, either high or low, and display that on a web page with an appropriate graphic. The script has not worked correctly for me. Either it fails totally, or instead of accurately telling the time to the next tide, it will tell the time to the next tide 24 hours away.

I do know that the script does work on other websites, but I can't seem to be able to troubleshoot it in my instance.
Here is the code....(no private data is in this code snip)
the Variable $S3C2 is set in the configuration page, the value of 2 tells the displaying page to use the tide script.

<?php if (($S3C2 == 2) or ($S3C2 == 5)) {  //  Show Tide, Lightning will over-ride ?>
                        <?php
                        $tide = tide_data(0);
                        $tide1 = tide_data(1);
                        //print_r($tide);
                        //print_r($tide1);
                        $next_tides = array();
                        if (is_array($next_t1 = next_tide_info($tide[1], 0)))
                            $next_tides = $next_tides + $next_t1;
                        if (is_array($next_t2 = next_tide_info($tide[2], 0)))
              …
0
After upgrading to Windows 10, my local Development Copy of the code using my local IIS Express Version 10 is unable to get the current HttpContext.  The same code
works on our Development and Live Server that are running IIS 8.5.    I need help updating the code since it appears I can't use HttpContext.Current anymore.  

/// <summary>
        /// Returns the URL for this link
        /// </summary> 
        [NotMapped]
        public string trueUrl
        {
            get
            {
                if (url != null)
                    return url;

                if (HttpContext.Current != null)
                {
                    var urlhelper = new UrlHelper(HttpContext.Current.Request.RequestContext);
                    return urlhelper.Action(action, controller, new { area = area });
                }

                return "ERROR";
            }
        }

Open in new window

Error.PNG
0
I'm looking for a way to determine if my web pages are being loaded via a web browser, web view in mobile apps. or iframe in the Touch Browser app. I'm hoping there is some way but not sure? I need this functionality due to the issue of having to load specific JS files based on a user using a browser to view our web pages or an application. Any ideas? I'm assuming that the "window.navigator" object is my best bet?

Thanks!
0
I have a WordPress site using avada theme

I need to create a support Section on the site that can be easily updated by non programmers

Ideally I need a tree. View. On left, with expandable nodes, and when you click on a tree item/node, it would load content on right panel
The content may contain text, images and pictures

I would also like a search facility for.This support section of the website

Are there any plug ins etc that can do this?
0
What causes certain characters to be "unsafe"?

What is it about the spaces and quotes here
var example = "\"Quoted Value with spaces and &\"";

which makes them unsafe?

After encoding the encoded that string, it becomes: %22Quoted%20Value%20with%20spaces%20and%20%26%22.

Thanks.
0
What does this <img> tag do below?


And is the / simply in place of a space between img and id?

For example:

<img/id="confirm&lpar;1)"/alt="/"src="/"onerror=eval(id)>'">

and what about this?

<svg/onload=alert('Hello')>


Thanks
0

Web Languages and Standards

39K

Solutions

30K

Contributors

Web development can range from developing the simplest static single page of plain text to the most complex web-based internet applications, electronic businesses, and social network services using a wide variety of languages and standards, including the familiar HTML, JavaScript and jQuery, ASP and ASP.NET, PHP, ColdFusion, CSS, PHP, Flex and Flash, but also the implementation of a broad list of standards including XML, WSDL, SSDL, VoiceXML and many more.