Security :: LoginStatus Is Not Logging Out When Clicked?
Mar 15, 2011
I Am using the basic ASP.Net controls. This worked yesterday and I don't believe I changed anything but when I came back today I could not login due to an error "Invalid postback or callback argument" which really confused me because like i said, it worked yesterday. I researched and found a solution to fix that was to set
[Code]....
I did that and now can login again however can no longer logout. The controls are all on the masterpage as posted below
[Code]....
View 1 Replies
Similar Messages:
Jan 12, 2011
I think my subject line explains my problem in a nutshell.. I have a login page, I login like I should and everything works.I logout and when I type/paste the address to the page, in the address field, I still reach it just like if I was still logged in..The page I type in the address field is in a subfolder, only suppose to be able to be reached by logged in users and in this folder,ith it's own web.config-file:
<?xml version="1.0"?>
<configuration>
<system.web>
[code]...
View 9 Replies
Oct 21, 2010
Is it possible to place a nested span inside
an <asp:LoginStatus /> control? So instead of just..
<a id="LoginStatus1" href="javascript:__doPostBack('LoginStatus1$ctl00','')">
Logout</a>
you would have...
<a id="LoginStatus1" href="javascript:__doPostBack('LoginStatus1$ctl00','')">
<span class="myCustomSpan">Logout</span></a>
View 1 Replies
Jun 30, 2010
I have a forms authenticated web site using a custom membership provider that seems to work OK in that it allows users to logon and shows their user name correctly usingYou are logged in as
<%Response.Write(Server.HtmlEncode(User.Identity.Name))%>
on the default.aspx pagebut at the end of devlopment (!!) I decided to add a Loginstaus control to allow logging out. I have a master page that I placed it on but it doesn't change when I successfully logon, always just shows the "Login" text. The log in control is on my Logon.aspx page, relevant web.config as follows:-
<authentication mode="Forms">
<forms loginUrl="login.aspx" name=".ASPXFORMSAUTH">
</forms>
[code]...
View 2 Replies
Apr 14, 2010
I've got a masterpage wih a LoginStatus control on my masterpage, when I click this it brings up loginpage.aspx. I log in and then it automatically returns me to default.aspx, how can I chage this to EngineersHome.aspx? I've tried changing the webconfig file so it has
authentication
mode="Forms">
forms
loginUrl="Login.aspx"
defaultUrl="EngineersHome.aspx"
/>
</authentication>
but this hasn't worked. When I logout using the LoginStatus it directs me to Default.aspx which is fine, I want this to stay as it is.
View 2 Replies
Oct 16, 2010
i have a masterpage containing this code :
[Code]....
when i am logged in, everything works fine : loginName shows the login name and loginstatus shows "Logout" hyperlink. And it shows this wherever i am in the website (subfolder or root).
But when i click on logout hyperlink, i go back to homepage and then loginName shows the login name of the member who just signed out and loginstatus still shows "logout" hyperlink. That s wrong.
When i go on a subfolder page, the loginName shows "You re a member ?" and loginStatus shows "Log in". That's the right behavior.
After trying lots of time to log in and log out and understand why it works this way, i realised that when i click on the logout button and then wait about 20 sec, the loginName and loginStatus show "You re a member ?" and "log in".
Maybe i get it wrong, but it seems like there is a parameter to set somewhere so that it wont wait 20sec to refresh this data.
View 4 Replies
Sep 23, 2010
I am using form authentication in my application and Loginstatus is using to logout .
My problem is I want to store login and logout information to database.
Which event handler should i use to insert logout time to database.
View 2 Replies
Mar 25, 2010
Im new into using login controls in asp.net. I have read some articles about Authorization and Authentication for ASP.NET pages. I store the user details in Sessions once the user successfully login to the site. However, i have a problem experiencing when using the LoginStatus control. When i try to logout of the page it doesn't remove or destroy the Session that i have put into the whole application. Here's the markup of the LoginStatus Control
<asp:LoginStatus id="MasterLoginStatus"
LogoutAction="RedirectToLoginPage" LogoutPageUrl="~/LoggedOut.aspx" runat="server"
onloggingout="MasterLoginStatus_LoggingOut" />
[code]...
View 1 Replies
May 5, 2010
I am using the SQL Membership provider to handle authentication. On one particular page the main function is the registration of an asset. You have to log in first. No problem. I also have required field validators on this registration form that work nicely. The problem is, if you log in, go to that page, then click the 'logout' button, it seems to submit the form (bypassing all my validation in the process)! I know I can't be the first person to come across this, so I'm guessing I've set something up wrong somewhere.
View 1 Replies
Jul 6, 2010
I'm debugging some unexpected behavior and while tracing in to the .NET framework I see a bunch of stuff like this:
if (Logging.On) {
Logging.PrintInfo(Logging.Web, this, SR.GetString(SR.net_log_n_certs_after_filtering, filteredCerts.Count));
...
}
But (as expected by default) the execution steps right over these. Is there some way to turn on the logging? Or is that just something that the framework developers can do while making special builds of the framework?
View 1 Replies
Oct 28, 2010
I didn't have this issue before, I have just created a simple default page with a LoginStatus control on the right top of the page:
<asp:LoginStatus ID="LoginStatus1" runat="server" />
And from the design view => Login Status Task, I selected: View Logged out. (so it should shows: "Login" text).
But when I run the page, it always show "Logout", I even haven't implement any membership yet.
View 2 Replies
Jul 13, 2010
I have created a login page which uses the Login control. If the user is not already registered they a redirected to another page to register. My client wants them to be logged in from when they register, and taken to the main page of the application.
How do I log a user in manually, without using the Login control? Am using forms authentication, and have the dbo.aspnet table and stored procedures already created.
View 2 Replies
Nov 7, 2010
Why do I have to log in twice before the following code works?
[Code]....
View 1 Replies
Jul 28, 2010
Im building a web application that charges for access on a per user basis. Ive used standard roles and membership for setting up accounts and logging in. I want to ensure that a client cant use the same user details to login more than once
ie if user abc1 is already logged in, someone else cannot login again using the same credentials
View 6 Replies
Apr 26, 2010
FormsAuthentication.RedirectFromLoginPage(txtUser.Text, false); After doing this, the user is logged in with the txtUser.text
But the question now is, how do i retrieve that user name from Authentication or whatever on other pages? is it possible or not?
Because i know that person stays logged in untill he logs out with this code: FormsAuthentication.SignOut();
And one more question i dont know is this one good for this or not how do i better check if the person is typed in correct name and pasword or not, with executescalar or executereader?
View 6 Replies
Apr 15, 2010
I'm very new to asp.net and c#, I understand the basics but don't understand how to create a login system using C# to connect and login using a Microsoft Access Database.
View 2 Replies
Sep 10, 2010
I'm using MS Enterprise Logging Application Block in an ASP.NET website.
For production launch, I will set up a log listener in one of these locations:
Sql Server database
Windows event log
Text files
Which has the least impact on performance?
NB - I can't switch to Log4Net or ELMAH at this point, so don't suggest that in your response.
View 3 Replies
Feb 4, 2010
I have a login form from the membership and I am trying to make it so that it would redirect depending on role. I have tried to put this code under login1_loggedin but it didn't seem to work. how can I do this?
View 1 Replies
Jul 1, 2010
Im setting up a site with membership.
The db connection seems to work. I can create new users with the new user wizard control. And they show up in the databaser. But i cant log in. I use the log in control and just get "wrong password". I am sure i type the correct password as i made it very easy. here are my webconfig settings.
There is one thing i have no clue how to configure. The APPLICATION NAME. What is it? And what should i set it to?
<authentication mode="Forms">
View 2 Replies
Oct 10, 2010
Is there something here messing up my login functionality? I can't log in. Before when I was logged in, I couldn't log out. It seems to have started when I clicked on "Remember me". Could there be something conflicting with web.config and the aspnetdb profile provider service setting that was initially set regarding profiles/roles/access?
[Code]....
View 5 Replies
Apr 30, 2010
I have a requirement to log all/most forms authentication transactions that take place within my page. For example, if someone is kicked out because of forms authentication, I'd like to get their username, time when kicked off, and where this happened. Is there a good way to do this. Better yet, has anyone done this already and is willing to share some code or post a link?
View 3 Replies
Mar 26, 2011
How can I prevent user to go back after logging out from any of the page of my website ? Even if the user press back button, redirected to the login.aspx page. Like we have seen in social or any other member ship sites.
View 3 Replies
Nov 15, 2010
I am trying to insert a string and random number into the database as hash sha1 then loggin in against it. the problem is if I use hash it wont login but if i dont use hash the login works fine... Code below.
insert hash into db
Dim user As New Label
user.Visible = False
user.Text = (myDataReader2.Item("username"))
MyConnection2.Close()
Dim MyConnection3 As New Data.SqlClient.SqlConnection("Data Source=xxx")
Dim mycommand3 As New Data.SqlClient.SqlCommand("Update Register SET [Password] = @password WHERE [username] = '" & user.Text & "' AND [email] = '" & email.Text & "'", MyConnection3)
Dim pass As String
Dim rnd As Integer, randomNum As New Random
rnd = randomNum.Next(1000, 10000)
pass = "Pass" & rnd
mycommand3.Parameters.AddWithValue("@password", FormsAuthentication.HashPasswordForStoringInConfigFile(pass, "SHA1"))
MyConnection3.Open()
mycommand3.ExecuteNonQuery()
login page
Sub Application_AuthenticateRequest(ByVal sender As Object, ByVal e As EventArgs)
' Fires upon attempting to authenticate the use
If Not (HttpContext.Current.User Is Nothing) Then
If HttpContext.Current.User.Identity.IsAuthenticated Then
If TypeOf HttpContext.Current.User.Identity Is FormsIdentity Then
Dim fi As FormsIdentity = CType(HttpContext.Current.User.Identity, FormsIdentity)
Dim fat As FormsAuthenticationTicket = fi.Ticket
Dim astrRoles As String() = fat.UserData.Split("|"c)
HttpContext.Current.User = New GenericPrincipal(fi, astrRoles)
End If
End If
End If
End Sub
Protected Sub Button1_Click(ByVal sender As Object, ByVal e As System.EventArgs)
Dim myConnection As New SqlClient.SqlConnection
Dim myCommand As New SqlClient.SqlCommand
Dim intUserCount As Integer
Dim strSQL As String
myConnection = New SqlClient.SqlConnection("Data Source=jrome2.db.4961680.hostedresource.com; Initial Catalog=jrome2; User ID=jrome2; Password=Richard050283;")
strSQL = "SELECT COUNT(*) FROM Register " _
& "WHERE UserName='" & Replace(txtusername.Text, "'", "''") & "' " _
& "AND Password='" & Replace(txtpassword.Text, "'", "''") & "';"
myCommand = New SqlClient.SqlCommand(strSQL, myConnection)
myConnection.Open()
intUserCount = myCommand.ExecuteScalar()
myConnection.Close()
'Response.Write(intUserCount)
If intUserCount > 0 Then
FormsAuthentication.Initialize()
Dim strRole As String = AssignRoles(txtusername.Text)
'The AddMinutes determines how long the user will be logged in after leaving
'the site if he doesn't log off.
Dim fat As FormsAuthenticationTicket = New FormsAuthenticationTicket(1, _
txtusername.Text, DateTime.Now, _
DateTime.Now.AddMinutes(30), False, strRole, _
FormsAuthentication.FormsCookiePath)
Response.Cookies.Add(New HttpCookie(FormsAuthentication.FormsCookieName, _
FormsAuthentication.Encrypt(fat)))
Response.Redirect(FormsAuthentication.GetRedirectUrl(txtusername.Text, False))
Else
login.Text = "Incorrect Log In Information"
End If
End Sub
Private Function ValidateUser(ByVal strUsername As String, ByVal strPassword As String) _
As Boolean
'Return true if the username and password is valid, false if it isn't
Return CBool(strUsername = " & Replace(txtusername.Text, " AndAlso strPassword = " & Replace(txtpassword.Text, ")
End Function
Private Function AssignRoles(ByVal strUsername As String) As String
Dim myConnection As New SqlClient.SqlConnection
Dim myCommand As New SqlClient.SqlCommand
Dim intUserCount As Integer
Dim strSQL As String
myConnection = New SqlClient.SqlConnection("Data Source=jrome2.db.4961680.hostedresource.com; Initial Catalog=jrome2; User ID=jrome2; Password=Richard050283;")
strSQL = "SELECT COUNT(*) FROM Register " _
& "WHERE UserName='" & Replace(txtusername.Text, "'", "''") & "' " _
& "AND Password='" & Replace(txtpassword.Text, "'", "''") & "';"
myCommand = New SqlClient.SqlCommand(strSQL, myConnection)
myConnection.Open()
intUserCount = myCommand.ExecuteScalar()
myConnection.Close()
'Response.Write(intUserCount)
If intUserCount > 0 Then
Return "client"
Else
Return String.Empty
End If
End Function
Protected Sub LinkButton1_Click(ByVal sender As Object, ByVal e As System.EventArgs)
txtusername.Text = String.Empty
txtpassword.Text = String.Empty
End Sub
View 1 Replies
Nov 10, 2010
I have a website built in ASP.net 3.5, using WinForms and AjaxToolKit. I have encountered a lost/corrupt session issue while using Internet Explorer 8.
Scenerio:
1 IE8 Browser Open, 1 Tab
--------------------------------------
1. Login, Redirect to Landing, Logout - WORKS AS EXPECTED
2. Login, redirect to Landing, Close Window, Open Window, Logged-in already - WORKS AS EXPECTED (remember me enabled by default in code)
1 IE8 Browser, 2 Tabs
--------------------------------------
1. Login, Redirect to Landing, Open new tab, paste Landing page URL, Landing renders. - WORKS AS EXPECTED
- Logout from Tab 2, Tab 1 logs out after AJAX update. - WORKS AS EXPECTED
- Login from Tab 1, Redirects to Landing, then Redirects back to Login page - ISSUE
[code]...
2. Close Window,Login,Redirect to Landing - WORKS AS EXPECTED
2 IE8 Browser, 1 Tab
--------------------------------------
1. Open 2 IE windows
2. In Window 1, Login, Redirect to Landing, then Redirects back to Login. - ISSUE
- Window 2 Paste Landing page URL, Landing page renders - ISSUE, STRANGLY NOW WORKS
[code]...
This issue seems to only happen when I have multiple tabs open,or multiple rwssers open.Firefox and Chrome does not reproduce this issue and works as expected.How do I make sure the Cookie/Session is being handle correctly in IE8?
Here is my Login Auth:
[Code]...
Web.Config
[Code]...
Server 2008r2
Seesion State:
Cooke Settings: Mode: Use Cookies;
Broswer IE8
Default settings
View 3 Replies
Jun 13, 2010
I have a problem configuring web.config file. In root directory I have a web site that doesn't require logging in to be viewed (public section of the web site) and I also have a folder ("Administration") that needs logging in to get access to it. Login.aspx is located in folder "Administration".
The question is how to properly set up the web.config to connect Administration/Login.aspx with Administration/Default.aspx. I tried editing web.config in root directory by adding the following lines, but it only shows me Login.aspx and it redirects me to the public section:
[Code]....
Do I also have to add web.config in "Administration" folder and with which parameters?
View 8 Replies
