You can work around this issue by modifying your `web.config` to include these nodes:

    &lt;configuration&gt;
        &lt;system.web&gt;
         &lt;webServices&gt;
            &lt;protocols&gt;
                &lt;add name=&quot;HttpGet&quot;/&gt;
                &lt;add name=&quot;HttpPost&quot;/&gt;
            &lt;/protocols&gt;
        &lt;/webServices&gt;
        &lt;/system.web&gt;
    &lt;/configuration&gt;

This will allow you to visit the .asmx web service via your browser. You can then invoke the web services right in your browser, pass arguments, and view the results.

Just FYI I&#39;m using .NET 4.0 and had this same problem.

However I used...

    &lt;add name=&quot;HttpSoap12&quot;/&gt;
    &lt;add name=&quot;HttpSoap&quot;/&gt;
    &lt;add name=&quot;HttpGet&quot;/&gt;
    &lt;add name=&quot;HttpPost&quot;/&gt;

In those same areas and it worked. But with just `HttpGet` and `HttpPost` it did not.

![enter image description here][1]

[HTTP GET and HTTP POST Are Disabled by Default][2]


  [1]: http://i.stack.imgur.com/R2OS5.png
  [2]: https://support.microsoft.com/en-us/kb/819267

If you are publishing metadata and it&#39;s a public/unsecured web service, you are right, it would be easy enough for anyone to generate a simple client to hammer away at your web service.  In that case, having the web client only generated on the local machine does seem like a nuisance.

If your service is private and secured, however, it would be a huge security hole, giving anyone with the name of the server and service an authenticated client to use to potentially access your data and do all kinds of harm.

I imagine the policy of generating the UI for ASMX Web services only on the server itself was an attempt to provide some nice tooling while eliminating accidental security holes.  WCF has done away with this in any case, you can generate clients only if the metadata is published, and they need to implement the correct security in order to access the services.

What is the best way to get a random entry from a Dictionary&lt;string, object&gt; in c#?

I need to get a number of random objects from the dictionary to display on a page, however I cannot use the following as dictionaries cannot be accessed by index:

    Random rand = new Random();
    Dictionary&lt; string, object&gt; dict = GetDictionary();
    return dict[rand.Next()];

Any suggestions?


Random entry from dictionary

I am tracking a project with git. There are some Xcode project files in the working copy that I want to keep tracking, but do not want to see in diffs, because there are always dozens of changed lines that I am never interested in. Is there a simple way to have `git-diff` skip these files? I’ve tried to set up a custom “silent” diff tool:

&lt;pre&gt;
$ cat .gitattributes 
Project.xcodeproj/* diff=nodiff

$ cat ~/.gitconfig 
[diff &quot;nodiff&quot;]
    command = /bin/true
&lt;/pre&gt;

But:

&lt;pre&gt;
$ git diff
external diff died, stopping at Project.xcodeproj/zoul.mode1v3.
&lt;/pre&gt;

What am I doing wrong?

Excluding files from git-diff

I created a Web Service in .Net and so the address of the service file has a nifty auto generated explanation about how it works. When I run the page from the machine it&#39;s hosted on it even has a form that I can use to submit test values to the service. However on remote machines it hides the form and gives the message as seen above.

Is there a point to this? I&#39;ve seen other sites call this &quot;more secure&quot; but anyone could create their own forms easily making this nothing more than a nuisance if you ask me. 

&quot;The test form is only available for requests from the local machine.&quot;

<p>I created a Web Service in .Net and so the address of the service file has a nifty auto generated explanation about how it works. When I run the page from the machine it's hosted on it even has a form that I can use to submit test values to the service. However on remote machines it hides the form and gives the message as seen above.</p>
<p>Is there a point to this? I've seen other sites call this "more secure" but anyone could create their own forms easily making this nothing more than a nuisance if you ask me.</p>


Is there a built-in way to convert `IEnumerator&lt;T&gt;` to `IEnumerable&lt;T&gt;`?


Is there a built-in way to convert IEnumerator to IEnumerable

Question: is there a better way to do that?

VB.Net


    Function GuidToBase64(ByVal guid As Guid) As String
        Return Convert.ToBase64String(guid.ToByteArray).Replace(&quot;/&quot;, &quot;-&quot;).Replace(&quot;+&quot;, &quot;_&quot;).Replace(&quot;=&quot;, &quot;&quot;)
    End Function

    Function Base64ToGuid(ByVal base64 As String) As Guid
        Dim guid As Guid
        base64 = base64.Replace(&quot;-&quot;, &quot;/&quot;).Replace(&quot;_&quot;, &quot;+&quot;) &amp; &quot;==&quot;

        Try
            guid = New Guid(Convert.FromBase64String(base64))
        Catch ex As Exception
            Throw New Exception(&quot;Bad Base64 conversion to GUID&quot;, ex)
        End Try

        Return guid
    End Function

C#

    public string GuidToBase64(Guid guid)
    {
        return Convert.ToBase64String(guid.ToByteArray()).Replace(&quot;/&quot;, &quot;-&quot;).Replace(&quot;+&quot;, &quot;_&quot;).Replace(&quot;=&quot;, &quot;&quot;);
    }

    public Guid Base64ToGuid(string base64)
    {
       Guid guid = default(Guid);
       base64 = base64.Replace(&quot;-&quot;, &quot;/&quot;).Replace(&quot;_&quot;, &quot;+&quot;) + &quot;==&quot;;
    
       try {
           guid = new Guid(Convert.FromBase64String(base64));
       }
       catch (Exception ex) {
           throw new Exception(&quot;Bad Base64 conversion to GUID&quot;, ex);
       }
    
       return guid;
    }

guid to base64, for URL

We&#39;re trying to implement the &quot;LIKE&quot; operator in Entity Framework for our entities with string fields, but it doesn&#39;t appear to be supported.  Has anyone else tried to do something like this?

This [blog post][1] summarizes the issue we&#39;re having.  We could use contains, but that only matches the most trivial case for LIKE.  Combining contains, startswith, endswith, and indexof gets us there, but requires a translation between standard wildcards and Linq to Entities code.


  [1]: http://th2tran.blogspot.com/2009/06/linq-to-entities-does-not-recognize.html

Like Operator in Entity Framework?

I developed a Windows service using C#.NET to generate PDF report. To generate PDF file I am using a third party dll. The application is running in my Windows XP platform. When I deployed the service in [Windows Server 2008][1] 64 bit version, I got this error: 

&gt; Retrieving the COM class factory for
&gt; component with CLSID
&gt; {46521B1F-0A5B-4871-A4C2-FD5C9276F4C6}
&gt; failed due to the following error:
&gt; 80040154.

I registered the DLL using the regsvr32 command. I able to see this CLSID in the registry. But the problem persists.

What could be the problem?

  [1]: http://en.wikipedia.org/wiki/Windows_Server_2008


Retrieving the COM class factory for component with CLSID {XXXX} failed due to the following error: 80040154

Does anyone know if there&#39;s a way to check the number of messages in a RabbitMQ queue from a client application?

I&#39;m using the .NET client library.

Check RabbitMQ queue size from client

Call me a troll if you want, but I&#39;m serious: **how exactly is the new SOA trend any different than the client-service architecture that I was building 15 years ago?** I keep hearing SOA but I don&#39;t see how it&#39;s different than what we&#39;ve always done. 

Back 10 years ago, my company had multiple clients (in multiple languages) which talked to the same service. It wasn&#39;t XML (it was a binary protocol called Microsoft DCOM) and there wasn&#39;t auto-discovery through WSDL but that&#39;s OK since reading the docs was just as easy. Our system was even &quot;open&quot; in the sense we documented it enough to allow 3rd parties to talk to our services. We were not pioneers - every other company I knew 10 years ago was doing the same thing.

The ONLY difference I see between then and now is that now there&#39;s a single service available on the internet, whereas 10 years ago, each customer would host his own instance of the service. But that&#39;s not an architecture issue - where the service physically lives is transparent to anyone using the service. 

So what exactly is SOA that&#39;s different than what we&#39;ve been doing for years? Is SOA simply a marketing term representing a best practice that actually became common a long long time ago? Or am I missing some subtely to SOA that&#39;s different than what we&#39;ve been doing all along? 

What is SOA (Service Oriented Architecture)?

I need to consume a Web Service. They sent me the WSDL file. 
What should I do to add it to my website and start using it as the proxy.
( If I put it on a Virtual Directory it can be discovered, but does it grant me the connection with the real web service?)

How to use a WSDL

I&#39;m going to learn RESTful web services (it&#39;s better to say that I&#39;ll have to do this because it&#39;s a part of CS master degree program). 

I&#39;ve read some info in Wikipedia and I&#39;ve also read an article about REST at Sun Developer Network and I see that it&#39;s not easy technology, there are special frameworks for building RESTful apps, and it&#39;s often being compared to SOAP web services and programmer should understand when to use SOAP and when REST could be nice approach.

I remember that several years ago SOAP was very popular (fashionable?) and item &#39;SOAP&#39; had to be present in every good CV. But in practice it was used very rarely and for achieving very simple purposes.

It seems to me that REST is another &#39;last word of fashion&#39; (or I can be totally wrong because I haven&#39;t ever seen REST in practice).

Can you give me some examples were REST should be used and why we can&#39;t do the same without REST (or why we should spend much more time to do the same without REST)?  

**UPD**: Unfortunatelly I can&#39;t see any concrete arguments which can blow my mind in first comments. Make me think that REST is awesome technology!

I&#39;d like to see answers like this:

&gt; I was developing another complex
&gt; HelloWorld application and we need to 
&gt; transfer lots of / tiny data and I
&gt; proposed REST solution to my workmate:
&gt; 
&gt; &amp;ndash; Oh, damn! Jonny, we should
&gt; certainly use REST for implementing
&gt; this app!&lt;br/&gt; &amp;ndash; Yes, Billy, we
&gt; can use REST, but we would better use
&gt; SOAP. Trust me &#39;cause I know something
&gt; about developing HelloWorld
&gt; applications.&lt;br/&gt; &amp;ndash; But SOAP is
&gt; old-fashioned technology from the last
&gt; century and we can use better
&gt; one.&lt;br/&gt; &amp;ndash; Billy, are you ready
&gt; to spent 3 days for experimenting with
&gt; REST? We can do this with SOAP in 2
&gt; hours..&lt;br/&gt; &amp;ndash; Yes, I&#39;m sure
&gt; that we&#39;ll spent even more time to
&gt; achieve the same security/performance/
&gt; /scalability/whatever else with SOAP.
&gt; I&#39;m sure that HelloWorld applications
&gt; should be developed only with REST
&gt; from now.

Why do we need RESTful Web Services?

What is difference between REST and WebService (SOAP), I looked at the facebook api, they use HTTP headers and some parameters (probably xml or non) and return result in xml, where else SOAP does exactly same, HTTP headers + xml parameters and returns headers + xml.

REST also requires some authenticated token where else SOAP uses http session which is exactly same token used for auth and other information. All I can see that SOAP is little advanced version of REST? 

Or are there any other performance considerations? Reading about REST just talks very high level of client server communication but even SOAP does exactly same. Can anyone point me where it can define correct boundry of REST and SOAP.

We use lot of SOAP transparently in .net, however I just want to know is it really worth paying attension to REST where currently everything is running outstandingly smooth.

I know REST is an architecture and SOAP is a protocol but my question is in detail that is currently the ASP.NET WebService implementation of SOAP has REST architecture?

Difference between REST and WebServices

How do services like [TinyURL][1] or [Metamark][2] work?&lt;br&gt;
Do they simply associate the tiny URL key with a [virtual?] web page which merely provide an &quot;HTTP redirect&quot; to the original URL? or is there more &quot;magic&quot; to it ?

[original wording]
I often use URL shortening services like TinyURL, Metamark,  and others, but every time I do, I wonder how these services work. Do they create a new file that will redirect to another page or do they use subdomains?


  [1]: http://tinyurl.com/
  [2]: http://metamark.net/

How do short URLs services work?

I am working on a project that has to have authentication (username and password)

It also connects to a database, so I figured I would store the username and password there. However, it seems like not such a good idea to have passwords as just a text field in a table sitting on the database.


I&#39;m using C# and connecting to a 2008 express server. Can anyone suggest (with as many examples as possible) what the best way to store this type of data would be?

P.S I am open to the idea that this info not be stored in the database if a good reason can be provided

Best way to store password in database

I have a simple PHP mailer script that takes values from a form submitted via POST and mails them to me:

    &lt;?php
	$to = &quot;me@example.com&quot;;
	
	$name = $_POST[&#39;name&#39;];
	$message = $_POST[&#39;message&#39;];
	$email = $_POST[&#39;email&#39;];

	$body  =  &quot;Person $name submitted a message: $message&quot;;
	$subject = &quot;A message has been submitted&quot;;

	$headers = &#39;From: &#39; . $email;
	
	mail($to, $subject, $body, $headers);

	header(&quot;Location: http://example.com/thanks&quot;);
    ?&gt;

How can I sanitize the input?

How to sanitze user input in PHP before mailing?

Applications send out emails to verify user accounts or reset a password. I believe the following is the way it should be and I am asking for references and implementations.

If an application has to send out a link in an email to verify the user&#39;s address, according to my view, the link and the application&#39;s processing of the link should have the following characteristics:

 1. The link contains a [nonce][1] in the request URI (`http://host/path?nonce`).
 2. On following the link (GET), the user is presented a form, optionally with the nonce.
 3. User confirms the input (POST).
 4. The server receives the request and
  - checks input parameters,
  - performs the change,
  - and invalidates the nonce.

This should be correct per [HTTP RFC on Safe and Idempotent Methods][2].

The problem is that this process involves one additional page or user action (item 3), which is considered superfluous (if not useless) by a lot of people. I had problems presenting this approach to peers and customers, so I am asking for input on this from a broader technical group. The only argument I had against skipping the POST step was a possible pre-loading of the link from the browser.

 - Are there references on this subject that might better explain the idea and convince even a non-technical person (best practices from journals, blogs, ...)?
 - Are there reference sites (preferably popular and with many users) that implement this approach?
  - If not, are there documented reasons or equivalent alternatives?



Thank you,&lt;br/&gt;
Kariem

----
**Details spared**

I have kept the main part short, but to reduce too much discussion around the details which I had intentionally left out, I will add a few assumptions:

 - The content of the email is not part of this discussion. The user knows that she has to click the link to perform the action. If the user does not react, nothing will happen, which is also known.
 - We do not have to indicate why we are mailing the user, nor the communication policy. We assume that the user expects to receive the email.
 - The nonce has an expiration timestamp and is directly associated with the recipients email address to reduce duplicates.

----
**Notes**

With OpenID and the like, normal web applications are relieved from implementing standard user account management (password, email ...), but still some customers want &#39;*their own users*&#39;

Strangely enough I haven&#39;t found a satisfying question nor answer here yet. What I have found so far:

 - [Answer by Don in *HTTP POST with URL query parameters — good idea or not?*][3]
 - [Question from Thomas -- *When do you use POST and when do you use GET?*][4]


  [1]: http://en.wikipedia.org/wiki/Cryptographic_nonce
  [2]: https://www.rfc-editor.org/rfc/rfc2616#section-9.1
  [3]: https://stackoverflow.com/questions/611906/http-post-with-url-query-parameters-good-idea-or-not/612035#612035
  [4]: https://stackoverflow.com/questions/46585/when-do-you-use-post-and-when-do-you-use-get

What are best practices for activation/registration/password-reset links in emails with nonce

When I go to our web site through HTTPS mode, Chome is reporting an error saying that the page contains secure and not secure items. However, I used Firebug, Fiddler, and HttpDebuggerPro, all which are telling me that everything is going through HTTPS. Is this a bug in Chrome?

Sorry but I&#39;m unable to give out the actual URL.

Why is Chrome reporting a secure / non secure warning when no other browsers aren&#39;t?

Is there a canonical way to test to see if the process has administrative privileges on a machine?  

I&#39;m going to be starting a long running process, and much later in the process&#39; lifetime it&#39;s going to attempt some things that require admin privileges.

I&#39;d like to be able to test up front if the process has those rights rather than later on.


Content Type	Original Author	Original Content on Stackoverflow
Question	Spencer Ruport	View Question on Stackoverflow
Solution 1 - .Net	p.campbell	View Answer on Stackoverflow
Solution 2 - .Net	Mike Martin	View Answer on Stackoverflow
Solution 3 - .Net	Mina Gabriel	View Answer on Stackoverflow
Solution 4 - .Net	Guy Starbuck	View Answer on Stackoverflow

"The test form is only available for requests from the local machine."

.Net Problem Overview

.Net Solutions

Solution 1 - .Net

Solution 2 - .Net

Solution 3 - .Net

Solution 4 - .Net

Excluding files from git-diff

Random entry from dictionary

Attributions