I have basic login functionality implemented using SQL Server and the LoginView, LoginStatus, and LoginName controls.I have two roles defined: one for Administrators and one for Users.I have two users defined, one for each role. I would like to redirect those authenticated as users to one page and those authenticated as administrators to another. Do I need to define RoleGroups to do this? Is there a good, basic way to accomplish this? I'm not sure what to do next.
In the web.config file i have put some code in so that when users log in they will be re-directed to another part of the website which only registered users can access. for the admin part only the admin can log in and it takes him to the admin section and that works fine. it is only this that is causing me problems.
the code i inserted for which the user needs to be diverted to is:
I am currently working on an ASP.NET MVC2 application and would just like to know the best way of achieving the following:
Each user that logs into the site pays membership fee which lasts X amount of days. I record the membership payments and the expiry dates in the database.
I would like all users to be able to login even if their membership has expired. However certain Controllers/Actions will be out of bounds to members whose membership have expired.
So my question is what is the best way to redirect users who try to access these pages when their membership has expired?
I don't really want to be calling a method that checks the membership status from each action where I don't want expired members to have access (although if this is the only way I would have to).
I thought about a custom ViewPage that inherits from System.Web.Mvc.ViewPage which I would override the OnInit function and check the membership status and redirect if necessary.
i used security in login page which restricts all users who have not logged in to all pages. I need to restrict specific users to specific pages. I'm not using AspSqlService provider. So i cannot create roles and restrict automatically. And the pictures i use in login page are not visible @ runtime.
I have added a jquey menu in my master page its working fine for those asp.net pages which are at the same level as master page.
But this menu isn't working at all for all of those page which aur in Editor's and Admin's folder. In these pages menu is displaying as simple html menu and unfortunately no jquery effect is shown on it.
I'm very confused why this menu isn't working for the pages which are in a seprate folder while the master page is added at the root level outside of all these folders.
I have a Asp Mvc 2 site using forms authentication. When I run it locally I can log in and stay logged in indefinitely.
However when I put it on the server I seem to only stay logged in for a few minutes and then seems to be logged out. I have looked at the cookies and there are 2 which seem relevant:
.ASPXAUTH which is a session cookie .ASPXANONYMOUS which expires in 3 months.
When I refresh the page the cookies stay the same until I get logged out, when I seem to get a new .ASPXANONYMOUS cookie, but the .ASPXAUTH seems to be the same. It seems that I might be able to stay logged in until I do something after a certain amount of time. If I submit a form as soon as I am logged in then it works ok, but if I keep submitting data again and again then after a minute or so, one of the submits will happen as a logged out user and not as the user who was logged in, which all the other submits worked as. What might cause this behaviour and how can I track down what is different & change it so that I can stay logged in indefinitely?
its a single server, but after some more investigation and searching the likely candidate seems to be that I am using more than 100mb on the server and the application pool is getting recycled. I suppose now i need to know How can I check how much memory I'm using. What advice there is to reduce that.
I have a list of users on my MSSQL database that I want to display on a page. But it's like 500 users and it takes a little while to load it. How can I get started with making it create seperate sets of user so that it has like a page 1 page 2 etc?
The list is not bound to a server control, I am just getting the data using JSON from JQuery AJAX so theres not really much ASP.Net involved at this point, except that the JQuery calls WebMethods in the code behind. The table is then created using Javascript.
When a user logs in, they are redireced to files within members folder. When a user happens to log in and gets redireced, there is the chance they will retype the default page address and go to the homepage, which is accessable to everyone. The issue is, the log in status control shows "Logout". how do I check if a user accesses the homepage, if they are logged in and if they are send them elsewhere. I've tried different codes, but not getting the result. Here is one code I tried...
I know how to identify the current user during a specific browsing session and can thus control the data, etc, made visible to that individual user. I also know how to find out how many users logged in within the recent past, using:
Membership.GetNumberOfUsersOnline() .... which I believe calculates the number of users who have logged in within the past 15 minutes. However, I would like to know if there is any way to identify all the users who are logged in at a point in time. Is this possible?
I am using ASP.Net Forms based security with the login control. On my site a user will make a number of selections that will be written to a database. Is their a unique user id that I can get from the AspNetSqlProvider that I can use to id users in my database? When a user logs back in after being away I want to be able to retireve the users information using this id.
I'm creating a ASP MVC application. And because of the complex authorization i'm trying to build my own login system. (So i'm not using asp membership providers, and related classes).Now i'm able to create new accounts in the database with hashed passwords.But how do i keep track that a user is logged in.Is generating a long random number and putting this with the userID in the database and cookie enough?
I am using asp.net 2005 with vb and developing MCQ program.
I am reading question information from a database and array . the array is "public shared" one. the problem is when two users are login to the system both are getting the same array.
my reqrement is give seperate instances for the diffrent users.
as an example the first user can open paper with 25 questions and second user can open paper with 10 questions. First it display no of questions as 25 and when then second user open the site, then the first site also display the total no of question as 10.
I tried to use variable declareing with DIM statement then they are unable to access from other events.
I used [URL] as a guide and have something configured to show me the users which are logged into the system. This uses the aspnet_Users.LastActivityDate column to see when someone last did something on the system. It also uses the userIsOnlineTimeWindow within the web.config to determine whether a user is online or not.
But because of this userIsOnlineTimeWindow limitation of .NET, even when someone logs out of the system or closes their browser window, the system still sees them as being online. Also, if they are on a page and don't do anything for 10 minutes, the system will show them offline until they refresh their page or go to another page. know of a better, more real-time way to tracking users which are logged in, logged out, etc?
I don't want to wait 10 minutes for the system to show that a user is offline and also if there's 10 minutes of inactivity, it shows them being offline.
I have created a simple ASP.Net page to create self printable tickets so non-technical people can change the text and layout of a ticket. Obviously the user has to be logged in to be able to print their tickets.
When providing the URL for wkhtmltopdf to convert, the tickets are not created because wkhtmltopdf does not have a session to prove the user is logged in.
Is it possible to pass the session to wkhtmltopdf in the URL, or is their a better solution?
I have a web application using Forms authentication provided by AD. I would like to know if it's possible to use EWS to send mail as the currently logged in user without having to supply credentials, or; would I be required to set up an account with impersonating access which will send mail on behalf of the currently logged in user?
I have created a simple website in asp.net using forms authendications but when I publish my website in IIS 6 on a Windows Server 2003 machine it keeps the users logged in for ever even though I have set the web.config to expire after 30 min. My website has 2 pages a login.aspx and a home.html. When I run the website in my development machine using the ASP.NET Development Server I have no problem the website works as expected meaning the users can not access the home.html unless the have been authendicated by the login.aspx page.
Also once loged in, after clearing the browser cookies the web site asks for login again which is again the behavior that I am trying to accomplish. However once the website is on IIS does not take in account the authendication that I have set up on my web.config. What is overriding my web.config? Do I need to make some changes to the global configuration of IIS?
I have a site where the admin can log in to make changes to his content, but while making changes (using a specific asp.net control) with no page loads or callbacks while editing, the user is sometimes being logged out.
I want to increase the time it takes for the system to wait before logging-out inactive users.
I want to know how can i redirect a user to a different page when he tries to access a page restricted to another role?
The scenario is as follows:
I have a folder "Gestao" that only allows users in role "Administrator"
[Code]....
If an anonymous user tries to access that folder he is redirected to the login page, but if a logged in user whose role is "friend" tries to access this folder he is also redirected to the login page. I want to redirect him to a page showing a message that he has no permission to access that page/area.
How can I do that? Should i have code on the Page_load event of the login page checking the user role and then redirect him to the correct page? Or is there some otherway to do this?
i want to interlink between 2 applications of mine.. suppose a user has logged in one of my application and me store his username and password in cookies...nd nw i want to use those values in the cookies to log-in in other website without entering the username and password again for the other website. i mean to i want to skip the login page of other website.
here m able to get the username nd password but don't how to validate that username and password so that i can skip the login page of this application..m not sure about the code in BOLD above if its rite or worng.. and for Login i am using ASP login Control in both applications.