Tel Map

Author: Sebastian Lindner

2018-04-06 | JavaEE |

PrimeFaces Expression Language Remote Code Execution Fix

This post describes how to fix the PrimeFaces Expression Language Remote Code Execution bug (CVE-2017-1000486) when an update to the latest / fixed PrimeFaces version is not easily possible. This solution also needs no patching of the PrimeFaces library itself. The preferred /… more

2018-03-12 | Angular |

Angular 5 HttpClient File Download with Authentication

This article describes how a typical browser file download can be triggered using the Angular HttpClient. Typically you can simply introduce a link to the endpoint of the file download into the page and this will work just fine. However, if you… more

2018-02-21 | Angular |

Angular 5 HttpInterceptor – Add Bearer Token to HttpClient Requests

In this article I will describe how to add a Http Authentication Bearer token to each request done from Angular via HttpClient by implementing a Angular 5 HttpInterceptor. This way the bearer token has not be added to each request separately while doing… more

2017-10-10 | ASP .NET |

ASP.NET Core 2.0 Disable Authentication in Development Environment

This article describes how to disable authentication for ASP.NET Core 2.0. ASP.NET Core JWT Authentication I have some Rest API which I want to protect via JwtBearer token in production e.g.

  However in order to test the API, for development I… more

2017-08-10 | Java |

JSF ViewState Hack Attempt: java.lang.StringIndexOutOfBoundsException: String index out of range: -1 – com.sun.faces.renderkit.ServerSideStateHelper.getState (ServerSideStateHelper.java:313)

Hack Attempt on JSF ViewState This article explains why the error java.lang.StringIndexOutOfBoundsException: String index out of range: -1 in the class ServerSideStateHelper in the method getState (313) might be someone trying to hack your application server. It is getting quite technical in here… but… more

2016-08-01 | Java |

WildFly 10 with Apache and AJP

This article demonstrates how inbound request from a webserver (Apache) can be proxied to an application server (WildFly 10) using the Apache JServ Protocol (AJP). For more information on what AJP actually is, take a look at https://en.wikipedia.org/wiki/Apache_JServ_Protocol . WildFly 10 Configuration First you have to add… more

2016-06-20 | Angular |

Angular2 with NPM and Webpack

This article demonstrates how to set up an Angular2 project with Webpack. The setup also supports Typescript, Less, CSS packages like Twitter Bootstrap and Fonts e.g. FontAwesome. It describes how to set up all the different plugins, loaders etc. I needed for… more

2016-05-17 | Angular |

Angular2 Release Candidate 1 (RC1) Changes

This article summarizes a couple of changes I encountered during the migration of angular2 beta 17 to angular2 rc1. Angular2 Packages for RC1 Previously angular2 could be pulled in by npm using the following configuration entry in package.json

Now all packages… more

2016-04-19 | ASP .NET |

Hangfire Dashboard and ASP .NET 5

This article demonstrates how the Hangfire dashboard can be set up in an ASP .NET 5 application including authentication via ASP .NET Identity. Adding Hangfire Packages project.json:

Since I am using Hangfire with SQL, I have to add Hangfire itself and Hangfire.SqlServer… more

2016-04-11 | ASP .NET |

302 Redirect VS 401 Unauthorized – ASP .NET 5 Identity

302 API Redirect Problem If you make a request to a REST service and are not logged in, by default ASP .NET 5 Identity returns a 302 Redirect to login page. This is great if you are visiting the URL of a controller… more