Version 10.7

ASP.NET, News, PHP

Version 10.7 of PHPRunner and ASPRunner.NET is here!

Trial version download links

If you purchased PHPRunner or ASPRunner.NET less than 12 months ago, proceed to the control panel and download the registered version 10.7 there under ‘My purchases’. Use ‘Reg info’ link next to your latest purchase.

This new version features the following improvements:
1. Files upload to cloud providers: Google Drive, OneDrive, Amazon S3, Dropbox
2. Notification API

Let’s dig into new functionality.

Files upload to cloud providers

When you set ‘Edit as’ type of the field to File/Image you now have an option to choose one of the cloud storage options.

Continue Reading "Version 10.7"

Providing temporary access to your application

ASP.NET, PHP

Let’s say you need to provide users temporary access to your application. You create a user, set their access to ‘temporary’ and after 24 hours they should not be able to log on to your application. And, of course, you need this to happen automatically. 1. Add two more fields to the login table. access – varchar(50). This field will store values like “temporary” or “inactive”. It can be left empty for existing users. temporary_access_starts – datetime. Indicates when the temporary access starts. 2. Add…Continue Reading “Providing temporary access to your application”

Working with Google Drive REST API

ASP.NET, PHP, Tutorials

In this article, we’ll show you how to retrieve a list of files from Google Drive via REST API and display those files in your PHPRunner or ASPRunner.NET application. This is how it looks in the generated application. The list of files is retrieved from Google Drive and displayed in your own application. In this test app, we only implemented search and view functionality, but adding and deleting files can be done as well.

Continue Reading "Working with Google Drive REST API"

Providing access to web application via unique link

ASP.NET, PHP, Tutorials

Some web applications need to provide quick access to certain pages or documents. For instance, you can share a file via such a link or send a link to an invoice to be paid to your customer like the one on the screenshot below. Let’s see how you can implement this kind of link in your own project. The key is to create add a new text field to the table with invoices or documents that will store a long unique record identifier which will…Continue Reading “Providing access to web application via unique link”

Version 10.6

ASP.NET, News, PHP

PHPRunner and ASPRunner.NET v10.6 are here!

Trial version download links

If you purchased PHPRunner or ASPRunner.NET less than one year ago you can logon to the control panel and download the registered version of the software there.

What’s new in this version

1. New security providers in version 10.6

New security providers: Azure AD, OKTA, SAML, OpenID. An option to combine multiple security providers i.e. you can use Active Directory together with database-based security.

Continue Reading "Version 10.6"

Building secure low-code web applications

ASP.NET, PHP, Tutorials

Low-code software builders will take off your hands most boring and repetitive tasks, which includes the security of your web application. Apps, created by PHPRunner and ASPRunner.NET follow all the security standards and secure out of the box. Your projects will be protected from SQL injection, XSS, CSRF, and more. If you’d like to know more about the most common web application vulnerabilities check OWASP Top Ten Security Risks. In this article, we will discuss additional security measures that are not directly related to the generated code but nevertheless are extremely important. If you ever need to build a public web application you need to go through this checklist and make sure your application complies.

Continue Reading "Building secure low-code web applications"

New security providers in version 10.6

ASP.NET, News, PHP, Tutorials

Enterprise Edition of PHPRunner and ASPRunner.NET provides Active Directory authentication option. It is a useful feature but it has some restrictions, for instance, you cannot use a hybrid database/AD approach where some users will use Active Directory login and some others will have their usernames and passwords stored in the database.

This changes in version 10.6 where Active Directory is no longer a replacement for database-based login but a supplement. Active Directory is now considered a “security provider” and works the same way as “Login via Google” or “Login via Facebook”. We are also adding new security providers like OpenID, SAML, AzureAD and Okta.

This is how it works on the backend side. If you have used “Login via Google” or “Login via Facebook”, you should be already familiar with this concept. When user logs in via a third-party security provider we create a record in the users table with a unique id that for Facebook starts with fb, for Google it starts with go, and for Active Directory that prefix will be ad.

Continue Reading "New security providers in version 10.6"