Tag Archives: security

C# JWT Token Get Expiry Timestamp

Posted on June 7, 2023 by briancaos

In a previous post, I wrote on how to use JWT.Net to decode the JWT Token to get the expiry of the token. But there is a simpler way to do it. IdentityServer, among others, use this token to establish … Continue reading

Posted in .net, .NET Core, c#, General .NET | Tagged , , , , , , , , | Leave a comment

Sitecore KeepLockAfterSave – Configuring Security Policies Per-Role Based

Posted on May 27, 2021 by briancaos

Now here is a nifty Sitecore trick. You have probably learned about the AutomaticLockOnSave feature that allows Sitecore to lock an item when it is saved. The feature is enabled or disabled using configuration setting (and can be negated with … Continue reading

Posted in Sitecore 6, Sitecore 7, Sitecore 8, Sitecore 9, Sitecore and .net | Tagged , , , | 1 Comment

Sitecore field level Security – give write access to members of a certain group

Posted on August 24, 2020 by briancaos

The Sitecore security model is pretty straight forward, but as everything security, it can become complicated. This goes for field level security. For a certain field, I wish to grant read access to everyone, but write access only to members … Continue reading

Posted in Sitecore 6, Sitecore 7, Sitecore 8, Sitecore 9 | Tagged , , | Leave a comment

Calling Azure Functions from JavaScript – The CORS configuration

Posted on May 31, 2019 by briancaos

You cannot call Azure Functions from JavaScript unless you configure the CORS settings for your Function Apps: This is because Microsoft have by default enabled CORS and only allows only some azure domains to access the Function Apps: So to … Continue reading

Posted in Microsoft Azure | Tagged , , | Leave a comment

Sitecore Security: Roles in Roles – What it is and how it works

Posted on December 6, 2018 by briancaos

The Sitecore Roles-In-Roles is an extension to the basic authorization that have been around ever since Sitecore 5. WHAT IS ROLES-IN-ROLES? Roles-In-Roles allows you to have nested roles, so when you add a role to a user, the user is … Continue reading

Posted in Sitecore 5, Sitecore 6, Sitecore 7, Sitecore 8, Sitecore 9 | Tagged , , , , | 1 Comment

Sitecore check access and roles programatically

Posted on November 9, 2018 by briancaos

The Sitecore security model have changed over time, but the general API to check security access and roles have been stable for many many years. CHECK IF USER HAS ACCESS TO AN ITEM: To check if a user have access … Continue reading

Posted in .net, c#, General .NET, Sitecore 6, Sitecore 7, Sitecore 8, Sitecore 9 | Tagged , , , | 1 Comment

Sitecore users custom profile properties

Posted on June 12, 2014 by briancaos

Sitecore is using the standard .net security framework. This makes it easy to setup custom profiles on users, and to add custom profile properties. To do so, do the following: STEP 1: ADD A PROFILE TEMPLATE TO SITECORE Go to … Continue reading

Posted in c#, Sitecore 6, Sitecore 7 | Tagged , , , , , | 7 Comments

Sitecore Users and C#

Posted on November 1, 2012 by briancaos

The Sitecore security framework is based on the .NET security. Managing Authentication, Authorization, User Accounts and Roles can be done using the standard System.Web.Security namespace. But Sitecore also provides its own Security framework that you can use for easy manipulation … Continue reading

Posted in c#, Sitecore 6 | Tagged , , , , , , , | 8 Comments

Is Sitecore security slowing you down?

Posted on December 21, 2011 by briancaos

Recently, several blogs have posted about hidden settings that allows you to disable certain security related features in Sitecore. Sitecore can contain many users or many groups. This will sometimes lead to slow performance in the Sitecore shell or in the Sitecore … Continue reading

Posted in Sitecore 6 | Tagged , , , , , , , , | 3 Comments