I have used form authentication, when i am trying to open the forgot passord page by click on link button that is on same login page. it needs authentication without authentication, i am not able to access the forgotpage.aspx
I want to implement a forgot-password feature in asp.net mvc that allows users to reset their password, and have some questions in this regard: Lets say that before allowing users to reset their password, I want to verify some extra information such as their first and last name. This info is not stored by default in the table created by aspnet_regsql. What is the recommended approach to address such issues?
Should I store this kind of info in a separate table, and use table joins to verify OR should i modify the schema of the table generated by aspnet_regsql (how?) so that I don't have to use joins? Do I need to write a custom provider OR would that not be necessary? I have read at places e.g. in this post that instead of emailing a temporary password, an alternative is to email a URL that when clicked allows users to change their password. How is this done? How to ensure that the URL expires after 1 hour?
After pressing forgot password ,I redirect to page having textbox for email id.When I enter mail id and click on send button I want to send the saved password from database to that mail id. How can I achieve that?
My database contains userid(not auto incremented and specific to user),mailId,password fields.My login page contains UserId nd Password and link of forgot password.
I am having a big problem trying to set the password for a login (MS SQL Server Management Studio).
I can create a new login and specify a password. Hitting "OK" reports no errors. Opening the newly created login shows that windows has automatically changed the original password to something else (I can tell because of the password length).
I have no idea why this is happening and have even tried reinstalling SQL.
I want to force users to provide a username, but not a password. I want to use many features of the membership class, but in an environment where passwords are not required.I could set up a "UserName" textbox, and give all my users the same, hard-coded password, but I was hoping to find a more simple solution.[I know, this should NOT have been posted in a forum entitled "Security". "Insecurity" or "Vulnerability" would be more fitting, but...]
I am trying to login usng form authentication from my web.config but it does not work. In the web.config i have the following: (i am going to make the password secure but just need to work with the basics
To speed up my login when developing , I would like to set the text for the password textbox so all I have to do is click the login button at runtime.Also is there a debug/release flag or something like that , that can be used to run code for development only?
In my application i have login Page in that i have login Control of asp.net, when user clicks on submit button i am authenticating the user and and redirecting to default url.
now what i want is using address bar i want to authenticate the same process with out opening the login page and give user name and password in the login control. Directly i want to inject the username and password in the address bar and need the same functionality what the submit button does.
i have articles on net using post methods but i am not able to do this.