The Lounge is rated Safe For Work. If you're about to post something inappropriate for a shared office environment, then don't post it. No ads, no abuse, and no programming questions. Trolling, (political, climate, religious or whatever) will result in your account being removed.
You may find (though given the other shortcomings it seems unlikely) that "impersonating" is not quite the same as logging in with another user's credentials. I've written apps where admin can impersonate another user (in order to see exactly what the user is seeing, but optionally without the option to update anything) but the login logs it as impersonation, and by whom, so at least that session is auditable.
You may find (though given the other shortcomings it seems unlikely) that "impersonating" is not quite the same as logging in with another user's credentials
They were pretty much the same though.
Under GDPR I doubt such a thing is legal.
Maybe it is in this system, since the customer is already known and can only download their own data that's coming from the business, but I've seen this option in a system with highly sensitive information like where someone was at what time.
Or I did what my last job did, simply tell them their password is not secure, but don't tell them why
I had 12 characters, upper and lower case, two numbers and two special characters, but the system deemed it insecure and the only way I could get my password to work was by going to a sysadmin and entering it directly in AD
An acquaintance of mine, whose IQ barely reaches 2 digits and whose attention span is lower th oooh, shiny, is taking a 3 months course of Web Developement. She has troubles using her smartphone and comes from a failed literature and a failed arts background...
GCS d--(d+) s-/++ a C++++ U+++ P- L+@ E-- W++ N+ o+ K- w+++ O? M-- V? PS+ PE- Y+ PGP t+ 5? X R+++ tv-- b+(+++) DI+++ D++ G e++ h--- r+++ y+++* Weapons extension: ma- k++ F+2 X
I was upgrading a client website very similar to that. But they also had the concept of "business units" within a Company, each of which would define different features and options. If you were a user that needed to work in different business units, you had to use a separate login for each!
Wow, this application has the same thing!
Some people have around ten accounts, and it's only one account per business unit.
Also makes you wonder why the business accepted this (and why customers aren't complaining)...
They had a fellow fresh out of school develop the site, with no real world experience. It's one thing to know the language elements, but quite another to come up with a realistic architecture - taking the time to think through what would be the best experience for the user.
I replaced the whole mess with ASP.Net Identity, and basically applying a union to the various permissions he had from the various business units. The biggest challenge I had was a migration strategy to move the old accounts into the new system.
Would you agree that the following are true or not?
1) a question posed is usually a simplification or genericisation of the true problem been faced. It may exclude constraints such as memory, time, parallelism, bandwidth, precision, reliability, data size, etc, etc which may impact selection of a solution.
2) any answer to such a question is therefor only partially informed.
3) a variety of 'correct' answers can be made to such a question, but only the questioner has the full context to evaluate the pros and cons of each answer, and hence which may be most suitable to the true problem.
4) any unit tests proposed by the answerer are incomplete due to point 1
5) any unit tests proposed by the answerer cannot anticipate the true edge cases
Would it also be true that the best questions are those that explicitly identify/exlcude constraints. ( E.g I need to sort 10,000 numbers, and have gigabytes of memeory but need to do it as quickly as possible verses I need to sort 10,000 numbers, but only have 1kb memory available...)
Why - so it can be learned by a broader group of people.
Hahaha, that broad group isn't inhibited now; they're free to learn the subject. So no, I won't accept that as a reason.
If I want to add unit-test with my answer on CP, I can do so; simply add a link to the GitHub that contains them.
Next, answers should be short and to the point, with examples being as simple as possible - anything that isn't relevant to the question or answer should not be there; imagine a book to learn C# that has unit-tests for its "Hello world".
Finally, it will mean very few volunteers there; given the questions here (and there), a unit-test is hardly relevant. Also lot of people who might want to answer, and won't (due to the added requirement).
Perhaps you want full XML-documentation too? And did you consider asking for multi-version answers, so that you can download code & unit-test for your exact .NET version? And, if the question involves a database, a complete SQL-script to generate the structure and fill it with test-data? Let's have all that before allowing someone to answer
Bastard Programmer from Hell
If you can't read my code, try converting it here[^]
"If you just follow the bacon Eddy, wherever it leads you, then you won't have to think about politics." -- Some Bell.