Im working on a website where users can log into a members area, inside this area they will be able to communicate with other members.
In order to keep an accurate list of who is online and who is not, I would need to update a IsOnline field in my database when they log on and when they exit my website..
The login part is easy, but how can I determine if someone is leaving my website to go to another, or closing the browser.
I need to realize for administrator ability to block/unblock user. I do it by following way:
[Code]....
but if this user is already logged that these changes will be only during next login. I need to throw this user to login page in next his request. I have 2 way:
1. Add to verification to each request
2. remove his session
How can I realize second way? I try to do it:
[Code]....
i am trying to save last user logon on database,the event will done when user logout or close browser
i tried to call web_service on javascript but in vain,the javascript doesnt see the webService,but i added reference to ScriptManager
[Code]....
i got username from the cookie,i access the DB to update his table.
the question as iam beginner on asp
where and when to use this method,when to cupture the user's web browser close,
how to do this in aspx.cs code behind "iam not good at JS"
and i want to know? when the user close the browser or page? am i still connecting with him to make changes as his account(cookie)?
I am getting a "System.NullReferenceException" when I call
View 3 RepliesI'm using Forms Authentication. Is there a way to determine whether a page (or request) required authentication or not? My site has logged-in areas, and logged-out areas (all set in web.config under authorization sections), and I'd like a good way to know if asp.net required authentication to be set or not.
I'm using ASP.Net 2.0
I would like to create a webpage which can handle user events like page navigation and page close. And also I would like to handle the event on server-side coding.
View 1 Repliesis there a way to set code that automatically signs out the logged in user if they are redirected away from any file or directory under the main url?
View 2 Replies<asp:HyperLink
ID="hyper1"
runat="server"
NavigateUrl='<%#string.Format("~/PLayer.aspx?ID={0}&Type={1}",Eval("arrange_by_id"),Eval("value"))%>'><%# Eval("value")%></asp:HyperLink>
I've implemented this string format in my NavigateUrl to pass a dynamic querystring depending on the clicked item!
but you see the first part in the string format where it says "~/PLayer.aspx" i want the user control to automatically change this part according to where it's placed!
I have a Default(contains the sign-out button) and Login page, once the user is not authenticated, it will always redirect the user to login page.
So the scenario is when the user hit the sign-out button it will redirect him to the login page which is good. My problem is, when the user hits theprevious or back button from the login page,it will still read the authorization cookies and redirect him to the default page. which should not be the case. the user should be redirected to login page when authentication is invalid.
I've read some solutions on the net, but still it doesn't work for me. below are the codes I've used for my sign-out function
[Code]....
By the way, when the user is authenticated, the previous or back button is available/enable for the user.
Ok so I am working on a control that when the user comes from a specific website then it will be a certain action. What would be the easiest way to do this?
View 3 RepliesI have Membership, Profile and Role providers setup for my .NET MVC website. I would like to say: this Role has access to that Page. How do I 'inject' this code to the RoleProvider? Or do I have to override it somehow? Any leads?(Roles are stored in the default ASP.NET SqlRoleProvider, Pages are stored in a seperate SQL database).
View 2 RepliesI need to check if an authenticated user is authorized to access a directory. I have done this before with a base class library method, I just cannot remember what class it's part of or what it's name was. I think the method was a static method and the class may have had the word Utility in it's name, but I just can't remember or find it on the net. BUT I KNOW I HAVE USED IT! The method definition was something like:
bool SomeTypeWithTheWordUtilityInTheNamePossibly.VerifyUserIsAuthorized(Principal user, string virtualPath)
I'm not using a roles provider in this application and I'm not planning to.
Is it possible to validate a user's Username + Password without logging them in? I understand a usual login block will look like this:
[code]....
With the Membership.ValidateUser() call setting the cookie for the response.
However, there are some additional checks I'd like to perform after the password is confirmed. (Pulling out an expiry date for that user, for example).
Is there a way to do it without just calling FormsAuthentication.SignOut(); after invalidating the page?
I have a web page with paypal. In the page user add items to list then buy it. when user add item to list i block that item in stock until user buy or delete that item.Now my problem is when user add item in the list and then close the broswer from IE close button , the item get blocked. I want to rollback the added items when user close the browser from IE button.
View 2 RepliesI have an MVC app that uses [Authorize] to protect the private bits. When I select the SignOut() URL it signs me out but if I hit the back button on my browser the it goes to the secure page and even lets me use the form. The action takes place and then it shows that I'm signed out. The problem is that it performs the secured action (inserting a row into my database). Then I can use the back button again and do it all over. If I use the back button after logging out and hit the browser refresh it does show I'm logged out and refuses me access to the secure page. Am I missing something important? It seems like it could be a really big security issue.
public ActionResult LogOff(string ReturnUrl)
{
FormsAuth.SignOut();
if (!String.IsNullOrEmpty(ReturnUrl))
{
return Redirect(ReturnUrl);
}
else
{
return RedirectToAction("Index", "Page");
}
}
I created timecard for a website and I would like to automatically clock out the user everytime when user logout or close the website. Is there a control for that? And if yes, where do i have to put he code at?? I think it should be in the code behind of master page... and on the Page_Load function
View 1 RepliesCreated in VS2008
The login page is created with the masterpage and it has the header picture.
After Logout or run FormsAuthentication.SignOut();
The login page is not showing correctly with the header (from master page).
And the setting on the web.config as below:
<authentication mode="Forms">
<forms loginUrl="Login.aspx" name=".ASPXFORMSAUTH">
</forms>
</authentication>
<authorization>
<deny users="?" />
</authorization>
Is there any reason why the header from masterpage can not be viewed from the login page?
I have implemented Forms authentication in an ASP.NET MVC 2 website
By using <%: Page.User.Identity.Name %> on the Site.Master page I can display the userid of the logged in user.
I would like to use this value and display other information about the user that is stored in a User table in a MsSQL database, like:
<%: GetFirstname(Page.User.Identity.Name) %>
How can I determine where a user came from when they land on my webpage.Did they come from a google link?Did they user a favorites link?Did they type in the url?
View 4 Replies Is there a simple way to just retrieve the user's name, and not the Domain name, when using this function:
string quizTaker = Page.User.Identity.Name.ToString();
Right now it returns "DOMAIN_NAMEUserName"
I would like to just use isolate and use the user's name, without the Domain name.
When closing my tab, Formsauthentication doesn't clear.
[Code]....
I have a user control which I call like this:
<MyNamespace:MyControl runAt="server" ID="foo" /> Is there any way I can determine the ID parameter at run-time and pass it in?
[Code]...
View 12 Replieshow to close previous session for same user. If user logon on computer A and then logon on B i must close session for A.
View 1 Replieshow to close a session when a user is idle (around 'n' time) in asp.net.
View 3 Replies