We developed a software which we want to require it for all ours users to have installed on there PCs before getting internet from us.
We built our own proxy server, and we are forcing all our users to view a aspx webpage before surfing the internet.
Now, we want this aspx webpage to check the PC if it have our software installed or not, and the mechanism will deny them to surf internet before install the software on there PCs.
How can we get special info from there regystry or something like that to know this?
Example: like flash player or silverlight player, where the requested page check if the PC have the right plugin installed or not. if not, it redirect to the installation page, if yes, the flash or silverlight movie run.
I'm trying to build the chat (it is already built here - [URL] The only thing I want to change is: remove login control. Instead of login I want to assign random usernames to people who open my webpage. Also, when somebody closes page and reopens it again in, say 10 minutes, I want this user to have the same username and data.
I am developing a website in asp.net that user asp.net membership, users and profile tables.I am trying to display all the users that are registered in a grid along with their first name, last name, email and other profile information . unfortunately all this information is scattered in various tables in the database ( aspnet_users, profiles, membershipsetc)... Can you please tell me how to configfure the datasource & columns of my datagrid (control) to achieve what I am trying to do .. ?????
I've built a web application that employees sign on to and take tests, get certifications, etc. My client wants all employees set up so that their user name is their real name, in the format of "Lastname, Firstname". It doesn't look like MembershipProvider will allow commas or spaces in the user name. Am I going to have to store this in a separate column in another table, or is there a way to tell the provider to accept those characters...
I was create a new website. I want to give some services and gifts about my cridentials. User add his/her website and get some comments. Every comment has a for example 5 points. Every 1000 points I will give some gifts. But if somebody change ip address they also add comment again. Same ip has only one comment in a day.
i need a regular expression validator for password that should not allow some of the special characters like % ' " ; *. give me the expression such that it should allow special characters except the above and a numeric a capital letter and a small letter ...
We have implemented the ASP membership and roles..and we would like to display the users currently logged in and also display the number of users online so we can display that on the page. The list of users woudl only be available to our admins. BUt the number of users will show for everyone.
I gave an option to user to change password but the text boxes are taking - / @ (special characters). How to check at runtime that user may not enter these characters?
I just realized after i created a test account i was not in any roles. Is there a way to automically add new users into the role Users? Have i missed this some where?
Dragged and dropped a login control onto a blank content page. Set up my web.config (i'll include the code for that at the end). It seems to want to use a sql database to store the info. I just want to use the web.config since it's just a single user and a simple site. I thought I could just drag and drop the login control to a page and that would be the end of it (besides setting up the web.config).
I'm using the CreateUserWizard and it's working great. I do have a "step2" that asks the newly created user their first name and last name. Seems simple enough, but I'm getting an error on the Profile.Save(): "This property cannot be set for anonymous users". I'm assuming this is due to the fact that I have DisableCreatedUser="true" for the CreateUserWizard, which is what I NEED to do. Does this mean that until we enable this user, they can't add these few columns? Since the site I am updating requires matching a newly registered user to an already existing "Artist" table, it's important that the administrators are given the first and last name of the user. The aspnet_User table doesn't have that, so I thought I'd give the profile a try.
I have my database connected into project. Its located on different server. When I am managing users via WSAT everything is ok, it saves users into database on the server and additionally in my local App_Data folder. But when it comes to creating roles it only works with local database, but not applying into database located on the serwer.
Isn't it strange anyway, that it saves data into local database when there is not connectionString for this? I can delete database from App_Data and after doing some action with users/roles it creates new one.
I'm trying to use a custom Principal (with custom Identity) for security. This all works fine for logging in, out etc. I am now trying to limit access to unauthorised users within my code as follows:
[Code]....
Again, all is fine there. Except I need some more complicated rules, something along the lines of "Allow Admins. Allow Buyers, provided they have the correct department ID and are allowed to see this customer's credentials". All of that information exists within a database.
I'm building an ASP.NET MVC 2 site where I'm currently implementing an OpenID sign-up form. Unfortunately, I'm foreseeing a possible security bug/vulnerability inside my architecture.
Here's how I want OpenID login to work:
User requests /Account/Login, Controller sends back OpenIDLogin View. User enters their OpenID into the View, then OpenID authorization takes place, and finally the OpenID is returned to the Controller.The Controller checks whether the OpenID is currently in use by a user in the system or not. If it is, the user is logged in to that account. If not, the registration process begins.
And now, the OpenID registration process:
The OpenID identifier, as well as any other information provided by the OpenID provider (such as email address or name), is put into my custom ViewModel and sent to my OpenIDRegistrationForm View.The RegistrationForm View stores the OpenID in a hidden field to make sure that it gets sent back to the Controller.The user fills in the RegistrationForm View and sends it back to the Controller.The Controller creates the user account and puts the OpenID into the database.
The bug that I see within my architecture is that a user could modify the hidden value in the RegistrationForm View. Thus, they could spoof their OpenID! I will make sure to add another round of checking to the final Registration Controller Action to make sure that the OpenID that is provided doesn't exist yet, but there is still a possibility for spoofing. Can my architecture be improved somehow? I don't want this to end badly...
One solution I'm considering is encrypting the OpenID before I send it to the View and then decrypting it when it reaches the Controller. Should I try this?
I am using the Login control on my login.aspx page to login to my /Members/Default.aspx page to display their current weight and their goal weight using the DetailsGrid. I have everything setup and I can log in and verify the user login name, but it only give one weight regardless of who logs in. Below is the SQL for the SQL Source on the DetailsGrid. I am new with this, Comparing the UserNames on aspnet_Users.UserName and memInfo.UserName should be able to extract that data, correct? Obviously I'm missing something. :)
SELECT memInfo.curWeight, memInfo.goalWeight FROM aspnet_Membership INNER JOIN aspnet_Users ON aspnet_Membership.UserId = aspnet_Users.UserId INNER JOIN memInfo ON aspnet_Membership.UserId = memInfo.UserId AND aspnet_Users.UserName = memInfo.UserName
Is there an easy way to select a specific user that is already logged in and bind all the users info to a detailsview for edit and saving back to the tables?The tabels were generated in AWAT of VS 2010
If I'm correct the membership functionality separates account and user (profile) data in two tables. Why not one table? What's the design priciple behind this?
I have more then 75 web application live on multiple surver and now I want to have single login(form authentication) for all. Anonymous user can access all the network but once login, they can manipulate info across network without login again and again.
I have read the post at http://forums.asp.net/t/1403132.aspx regarding login control. Is there a place to store the User logged-in ID (info) for later checking and use? I don't need to use the session object. I don't need the page to expire. I don't need the user to use a page saved in the favoites.
I have search application and in my search application there are some premium clients and other free clients.Now whenever any user search at that time i wants to fetch 70% data free and 30% data of premium client and also i wants to search data in the manner of on each page 3 premium client and rest of free users and if click on next page then once again 3 premium client and rest free clients.
i used security in login page which restricts all users who have not logged in to all pages. I need to restrict specific users to specific pages. I'm not using AspSqlService provider. So i cannot create roles and restrict automatically. And the pictures i use in login page are not visible @ runtime.
