Security :: Only Allow Logged In Users To View Default.aspx, And About.aspx?
Nov 28, 2010
First of all, thank you for the attention.
I am having some trouble, I am very new to asp.net, and the last problem I had, I spent about 59 hours trying to solve, Now I have a new one !
:D well, I guess this is part of the learning process...
Well, in Visual Studio 2010, I clicked New Website. @ C# language, ... The template it gives is pretty nice, it creates a database MDF file, and a login/register setup ready to go !...
You guys can see it live AT CLICK HERE ...
Everything is working, well at least here at the local machine...
There are 2 pages in there, Default.aspX, and About.aspx ... I want to allow ONLY logged in users to view those 2 pages... I tryed a few things, added my account to a role called ADMIN,
In the web.cong I changed Allow"*" to allow"ADMIN" ... still didn't work.. Also, I was trying to avoid using roles for now, and I was trying to find a way to do this for individual pages in the same directory as well... If possible with out touching the web.config file...
View 3 Replies
Similar Messages:
Dec 16, 2010
I have set up user accounts on my project. I don't want users to be able to go to their shopping cart (ViewCart.aspx) page unless they are logged in. How do I accomplish this?
View 1 Replies
Apr 20, 2010
There is a "Forgot password?" link on my login page which brings users to a page with a PasswordRecovery control. All of the sudden, I can't access it. It just posts back to the login page and adds the following query string to the URL when I click the hyperlink:?ReturnUrl=%2fSTARS-dev-source%2fForgotPassword.aspxI'm not doing anything in the Page_Load of ForgotPassword.aspx. Additionally, and most perplexing, in debug I put a break in the Page_Load of the Login, ForgotPassword, and Master pages as well as every method in my Global.asax file. It only breaks on the Login Page_Load. Effectively, all it does it post back to the login page when I click the hyperlink.The only time it will work is if I successfully login, then click the BACK button, then click the "Forgot Password?" link. It's like it requires you to be logged in to load the page, but I don't know why that would be. It never hits any Page_Loads.
View 2 Replies
Jan 19, 2011
I am trying to secure very mixed content that is located in an ASP.NET directory. For purposes of this question, it can be ~/MyApp/.
I want all of the content in the directory and its subdirectories restricted to authenticated users. The default.aspx page, though, should be accessible to everyone. This is the web.config in that directory:
[Code]....
Now if you are an unauthenticated user, everything works fine if you request [code]....
The problem occurs in that visitors do not always request "Default.aspx". We have a default document configured so that they get Default.aspx even if they just request "/MyApp". An authenticated user works fine, but an unauthenticated user is directed to the login page.
Now I know that essentially this happens because even though the request for "/MyApp/" will actually end up serving up "/MyApp/Default.aspx", the security system is only checking for "/MyApp/" since that is what I requested. That is then getting the default security for the directory.
How can you configure an exception to allow access when no particular file is requested in the directory??
Is there some dependency between DefaultDocumentModule and UrlAuthorizationModule? In this environment, the UrlAuthorizationModule has been removed and re-added in order to make sure it fires for non-managed requests. I would not expect that to change the order of execution, though, since UrlAuthorizationModule usually goes after DefaultDocument.
A workaround could be to set up the opposite security with the directory being open, and then trying to secure individual files. Because of the (changing) number of files, and extensions, etc, and the fact that you cannot use wildcards in a <location>, this is not really a workable solution for me.
View 1 Replies
Oct 18, 2010
How to display text in another Web form
In Default.aspx I have a GridView. How to Default2.aspx, show data from Default.aspx?
I have a textbox on Default2.aspx.
In Default.aspx I have a GridView.
Data from the GridView I want to show the textbox (Default2.aspx).
View 2 Replies
Jun 11, 2010
I am getting below error when trying to view aspx file in web browser. Server Error in '/Cricket Website' Application. Error finding Application Setting - Error running Procedure - Exception of type 'System.Exception' was thrown.
Description:
An unhandled exception occurred during the execution of the current web request. review the stack trace for more information about the error and where it originated in the code.
Exception Details: System.Exception: Error finding Application Setting - Error running Procedure - Exception of type 'System.Exception' was thrown.
Source Error:
[Code]....
Line 162:Line 163: Catch ex As ExceptionLine 164: Throw New Exception("Error finding Application Setting - " & ex.Message)Line 165: End TryLine 166: End Function
Source File: C:inetpubwwwrootCricket
WebsiteApp_Codecommon.vb Line: 164
Stack Trace:
[Code]....
[Exception: Error finding Application Setting - Error running Procedure - Exception of type 'System.Exception' was thrown.] Common.getApplicationSetting(String appSetting) in C:inetpubwwwrootCricket WebsiteApp_Codecommon.vb:164 CMS.Page_Load(Object sender, EventArgs e) in C:inetpubwwwrootCricket WebsiteCMS.master.vb:34 System.Web.UI.Control.OnLoad(EventArgs e) +99 System.Web.UI.Control.LoadRecursive() +50 System.Web.UI.Control.LoadRecursive() +141 System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint) +627 Version Information: Microsoft .NET Framework Version:2.0.50727.4927; ASP.NET Version:2.0.50727.4927
View 1 Replies
Feb 26, 2011
For example, I have master page MyMasterPage.aspx and content page MyDefault.aspx. I have many UpdatePanels at MyMaterPage.aspx, and also I have many UpdatePanels at MyDefault.aspx.
[code]....
I want JavaScript functionClickMenu(this) at input button [id="ButtonMaster1" @ MyMasterPage.aspx] pass its value ["Menu-1"] into text box [id="TextBoxDefault1" @ MyDefault.aspx], and then performing update / doing post-back to server ONLY FOR UpdatePanelDefault1.
I am looking forward an example code for JavaScript functionClickMenu(this).
View 4 Replies
Feb 4, 2010
I want to display index.aspx instead of default.aspx in the root of folders in my ASP.NET app but can't figure out where to set this.
View 4 Replies
Oct 14, 2010
I know this post is the same than other around but I can't get it to work the way I want, the thing is that the Login.aspx page have it in a folder not in the root of the directory, also the page that I want to redirect the user to is in the same folder, so far I got this in my web.config file
[Code]....
All pages contained in the Admin folder want it to be protected, the administrator needs to authenticate first, so my question is what I am doing wrong? need to take the Login.aspx and the admin.aspx out of the admin folder?
View 5 Replies
May 3, 2010
suppose we've created a web app for our customers.
how to prevent to access web page code (aspx code or behind code) for our customers ?
how to implement security and licensing information for web apps ?
View 6 Replies
Apr 18, 2010
I am using the personal website template. The login button is no longer work (do not thing when push the button) from the default.aspx page after I added following code:
<div>
<!-- Emulated Google CSE Search Box Begins -->
<asp:TextBox ID="q" MaxLength="512" Width="275px" AutoPostBack="false" runat="server" />
<asp:Button ID="_btnSearch" Text="Google Search" OnClick="_btnSearch_Click" runat="server" />
<asp:RequiredFieldValidator ID="_rfvQ" ControlToValidate="q" runat="server" />
<asp:HiddenField ID="cx" Value="partner-pub-xxxxxxxxxxxxxxxxxxxxxx" runat="server" />
<asp:HiddenField ID="cof" Value="FORID:9" runat="server" />
<script type="text/javascript" src="[URL]"></script>
<!--
In order to make the button's click event fire when the text box is highlighted, we have to have a second text box be a part of the form. Make it invisible so that the user never knows it's there. From what research I did, this appears to be an IE-specific problem. Nevertheless, this was the only "solution" I found.
-->
<input name="dummyHidden" value="" style="visibility:hidden;display:none;" />
<!-- Emulated Google CSE Search Box Ends -->
</div>
View 3 Replies
May 28, 2010
I want to redirect my Javascript and CSS URLs to Homepage(Default.aspx) by web.config or via anyother way in ASP.Net. I tried to try it but I can't able to do this thing. I have already checkout ASP.Net professional book but I can't get any reference for it anywhere.
View 2 Replies
Nov 1, 2010
I have a 'classic' ASP.NET app (.NET 3.5) with a pretty standard runat="server" style form with server-side controls and an 'Execute' asp:button. In the code-behind, the executeButton_click handler processes some of the other controls, runs a report, and drops the result into an asp:label. So the effect of pressing the Execute button is that the entire page reloads with the report inserted into the label.
I need to change this so that when the Execute button is pressed, the report pops up in a new window with a different layout (ie without the controls and form). If I was doing this in an MVC framework I would just change the view template in the 'execute' action, so the analogue for ASP.NET would be change the code in front, ie the .aspx file that gets used, from the code-behind class.
Is this possible? I know the link between the .aspx and the .aspx.cs isn't extremely tight as it is possible to reuse a code-behind class in multiple .aspx files. So can I set the .aspx file to render from the code-behind?
View 2 Replies
Jun 7, 2010
how can i get the the Full URL in this Case "default.aspx#innerpages/Conferences.aspx"
View 4 Replies
Feb 16, 2010
How to redirect Default.aspx to Default.aspx?id=1
View 7 Replies
Jun 6, 2010
i would like to know if there's a combo like jCryption (jCryption) - PHP but for jQuery - ASPX.I mean, I have been searching for a combo to send data both ways (Client-server, server-client) with jQuery to ASPX. The best I found was jCryption that sends data from JavaScrpit to PHP. I need a combo to send data from JavaScrpit to ASPX.
PD: Please don't tell me to use HTTPS, it's not enough to ensure the data communication on a client - server application.
View 1 Replies
Jun 23, 2010
i used security in login page which restricts all users who have not logged in to all pages. I need to restrict specific users to specific pages. I'm not using AspSqlService provider. So i cannot create roles and restrict automatically. And the pictures i use in login page are not visible @ runtime.
View 1 Replies
Apr 25, 2010
I'm trying to develop a simple web application where I need to redirect to main.aspx after successful login attempt in login.aspx page.However,it is redirecting the page to defualt.aspx... Is there a way to redirect my application to main.aspx??
View 3 Replies
Feb 10, 2011
I know how to identify the current user during a specific browsing session and can thus control the data, etc, made visible to that individual user. I also know how to find out how many users logged in within the recent past, using:
Membership.GetNumberOfUsersOnline()
.... which I believe calculates the number of users who have logged in within the past 15 minutes. However, I would like to know if there is any way to identify all the users who are logged in at a point in time. Is this possible?
View 9 Replies
Mar 8, 2011
I am using ASP.Net Forms based security with the login control. On my site a user will make a number of selections that will be written to a database. Is their a unique user id that I can get from the AspNetSqlProvider that I can use to id users in my database? When a user logs back in after being away I want to be able to retireve the users information using this id.
View 7 Replies
Oct 26, 2010
I need something to secure my PDF files link ...
i have a page like http......../folder/userName.pdf
i need to to encrypt the file name ( i put it "login userName" ) ...
how do i let logged in users download their pdf files without knowing the URL above , for security reasons only ...
View 4 Replies
Jul 2, 2010
I used [URL] as a guide and have something configured to show me the users which are logged into the system. This uses the aspnet_Users.LastActivityDate column to see when someone last did something on the system. It also uses the userIsOnlineTimeWindow within the web.config to determine whether a user is online or not.
But because of this userIsOnlineTimeWindow limitation of .NET, even when someone logs out of the system or closes their browser window, the system still sees them as being online. Also, if they are on a page and don't do anything for 10 minutes, the system will show them offline until they refresh their page or go to another page. know of a better, more real-time way to tracking users which are logged in, logged out, etc?
I don't want to wait 10 minutes for the system to show that a user is offline and also if there's 10 minutes of inactivity, it shows them being offline.
View 1 Replies
Dec 5, 2010
I have a site where the admin can log in to make changes to his content, but while making changes (using a specific asp.net control) with no page loads or callbacks while editing, the user is sometimes being logged out.
I want to increase the time it takes for the system to wait before logging-out inactive users.
I'm using the standard membership provider.
View 1 Replies
Mar 6, 2011
How do I keep the pages from time out when users are logged in?
View 3 Replies
Nov 1, 2010
I have a web application with a login form. A user enters a user name and password. If they exist in the database the user is authenticated using these two lines:
[Code]....
The problem is that when a user logs in at first he is logged in as himself. When navigating on the web application for a while the user assumes the identity of another logged in user. This happens all the time. In my web.config the authentication mode looks like this:
[Code]....
The site does not use ASP.NET session variables. Instead each page initializes a Singleton class, which stores itself in a static class variable, always accessing the users data already read from the database. The Singleton implementation is:
[Code]....
Could the problem with assuming another logged in users "session" be related to static classes in my application or a Forms Authentication configuration or a configuration in IIS (e.g. is it possible for users to have their own process?).
View 12 Replies
