# Security - First Steps { #security-first-steps }

Let's imagine that you have your **backend** API in some domain.

And you have a **frontend** in another domain or in a different path of the same domain (or in a mobile application).

And you want to have a way for the frontend to authenticate with the backend, using a **username** and **password**.

We can use **OAuth2** to build that with **FastAPI**.

     * Verifies that the method returns the correct OEM domain name.
     * @throws CIFSException
     */
    @Test
    void testGetOEMDomainName() throws CIFSException {
        when(smbTreeHandle.getOEMDomainName()).thenReturn("TEST_DOMAIN");
        assertEquals("TEST_DOMAIN", smbTreeHandle.getOEMDomainName(), "OEM domain name should be TEST_DOMAIN");
    }

    /**

func getResource(path string, host string, domains []string) (string, error) {
	if len(domains) == 0 {
		return path, nil
	}

	// If virtual-host-style is enabled construct the "resource" properly.
	xhost, err := xnet.ParseHost(host)
	if err != nil {
		return "", err
	}

	for _, domain := range domains {
		if xhost.Name == minioReservedBucket+"."+domain {
			continue
		}

     */
    public void setCookieName(final String cookieName) {
        this.cookieName = cookieName;
    }

    /**
     * Sets the domain for the user identification cookie.
     *
     * @param cookieDomain the domain to use for the user identification cookie
     */
    public void setCookieDomain(final String cookieDomain) {
        this.cookieDomain = cookieDomain;
    }

    /**

     */
    @Override
    public String getDomain() {
        return this.domain;
    }

    /**
     * @param fullName
     *            the fullName to set
     */
    @Override
    public void setFullUNCPath(final String domain, final String server, final String fullName) {
        this.domain = domain;
        this.server = server;
        this.fullName = fullName;
    }

    /**

 */
package okhttp3.internal.idn

import okio.Buffer
import okio.ByteString.Companion.encodeUtf8

/**
 * An [RFC 3492] punycode decoder for converting ASCII to Unicode domain name labels. This is
 * intended for use in Internationalized Domain Names (IDNs).
 *
 * This class contains a Kotlin implementation of the pseudocode specified by RFC 3492. It includes
 * direct translation of the pseudocode presented there.
 *

        // Mock ServletConfig to provide initialization parameters
        Map<String, String> initParams = new HashMap<>();
        initParams.put("jcifs.smb.client.domain", "TEST_DOMAIN");
        initParams.put("jcifs.http.domainController", "dc.test.domain");
        initParams.put("jcifs.http.enableBasic", "true");
        initParams.put("jcifs.http.insecureBasic", "true");
        initParams.put("jcifs.http.basicRealm", "TestRealm");

                if (index == -1) {
                    index = user.indexOf('/');
                }
                final String domain = index != -1 ? user.substring(0, index) : defaultDomain;
                user = index != -1 ? user.substring(index + 1) : user;
                ntlm = new NtlmPasswordAuthentication(domain, user, password);
                dc = UniAddress.getByName(domainController, true);
            }
            try {

# Sicherheit – Erste Schritte

Stellen wir uns vor, dass Sie Ihre **Backend**-API auf einer Domain haben.

Und Sie haben ein **Frontend** auf einer anderen Domain oder in einem anderen Pfad derselben Domain (oder in einer mobilen Anwendung).

Und Sie möchten eine Möglichkeit haben, dass sich das Frontend mithilfe eines **Benutzernamens** und eines **Passworts** beim Backend authentisieren kann.

Wir können **OAuth2** verwenden, um das mit **FastAPI** zu erstellen.

    /**
     * Indicates that this is an anonymous connection
     */
    int NTLMSSP_NEGOTIATE_ANONYMOUS = 0x00000800;

    /**
     * Indicates whether the OEM-formatted domain name in which the
     * client workstation has membership is supplied in the Type-1 message.
     * This is used in the negotation of local authentication.
     */
    int NTLMSSP_NEGOTIATE_OEM_DOMAIN_SUPPLIED = 0x00001000;