Security :: User Name Is Changing?
Nov 19, 2010
User1 logs in with "User1" as UserName with his password. After it, he fills some form and clicks on SAVE button. After it record saves successfully, but in LoginName control shows some another user name who already logs in, on another machine. [I have number of users]
I checked the web.config file.. The access permissions are defined properly... then what is the reason of it? Everytime User name is changing randonly. So that I am unable to genrate reports.
View 19 Replies
Similar Messages:
Jan 23, 2010
I am using the ASP.NET membership system and I have found the ability to 'add user to role' programtically, but I am wondering if there is a way of changing a user role?
I don't simply want to add a user to another role and I can't seem to find the 'remove user from role' command.
View 2 Replies
Mar 22, 2010
Our user is using integrated windows authentication.
All users hit the login page where they must login with their domain/username/password combination.
Once they login, they can change their password.
Once the password is changed, they are displayed a message and they can navigate through the rest of the site.
I get the following scenarios...
1) User can view one page but not a second page User changes password USer clicks on link and receives page USer clicks on second link and is asked for credentials
2) User can view all pages USer changes password User clicks on link and receives page User clicks on second link (and all links thereafter) and receives page (they are never prompted for credentials)
3) User can not view any pages
User changes password USer clicks on link and is asked for credentials
View 2 Replies
Apr 23, 2010
I wanted to be able, as an administrator, to create new users using the createuser wizard. When I use the wizard to add a new user, however, I end up logged in as that user, instead of as my admin account. How do I prevent from being logged in as the user I just created?
View 2 Replies
Dec 23, 2010
I am utilizing a LoginView control that is not changing its template after a user becomes authenticated.
This is from the master page where the control is used:
[Code]....
This is from the code behind:
[Code]....
View 1 Replies
Feb 19, 2010
I need to know how to change aspnetdb to store profile information unique to each user so that I can restrict records in an sql table to only show that user's records.
So if I make a "companyID" int, identity column where would I put it?
Also, when I write the where clause to companyID = profile (companyID) would that work?
View 1 Replies
Jan 21, 2010
I am having a problem with security in a web application I am building using Visual Web Developer 2008. I am using Forms Authentication:
<authentication mode="Forms">
<forms name=".MYAUTH" timeout="20" enableCrossAppRedirects="true" />
</authentication>
And a SQL Server database with ASP.NET Membership and Roles. I am using the LoginView control with the AnonymousTemplate and LoggedInTemplate to manage the user's interaction with logging in and out. The problem I am having is that I am authenticating the user against the database:
If Membership.ValidateUser(_userName, _txtLoginPass.Text)
Then returns True and:
FormsAuthentication.SetAuthCookie(_userName, False)
sets the cookie correctly:
FormsAuthentication.Decrypt(FormsAuthentication.GetAuthCookie(_userName, False).Values(0))
{System.Web.Security.FormsAuthenticationTicket} CookiePath: "/"
Expiration: #1/21/2010 1:42:27 PM#
Expired: False
IsPersistent: False
IssueDate: #1/21/2010 1:22:27 PM#
Name: "jaymo "
UserData: ""
Version: 2
but when I check
HttpContext.Current.User.Identity.IsAuthenticated it always returns False.
If done this before and it worked fine. I cannot find any mistake I might have made or where something might have changed between ASP.NET 2.0 and 3.5.
View 2 Replies
Jun 26, 2010
i am working in asp.net and csharp, we have 10 user, but certain user only need to put dataentry. how to enable and disable based on the user to access certain form ,like add, modify view options.
View 1 Replies
Dec 28, 2010
can I change the password algorithm and still use the sqlMembershipProvider or do I have to create a new sqlMembershipProvider. If so, are they any step by step tutorials on how to do that.
View 1 Replies
Dec 12, 2010
I am new to asp.net 4.0 and I am having a hard time changing the PasswordRecovery to email instead of username. here is my aspx page (the page won't hit the vb code unless i enter the username not the email)
[Code]....
View 9 Replies
Nov 3, 2010
well i have a simple application using an authentication (user and password) before accessing and there are several roles bound to each user.
in my web.config i have configured the acces for each page according to each role, this is an example below:
[Code]....
and i have 2 users:
1: admin (default role: administrator)
2: guest (default role: role1)
my problem is as follows:
if i give acces to the user "guest" to open the "admin.aspx" page with changin him his role from "role1" to "administrator", this one do not function except if i recharge the web.config file to the server it's just after this manipulation that this user "guest" arrives to open the page "admin.aspx".
i don't know why this problem occurs, normally changing the user role will applies instantaneously.
View 6 Replies
Mar 8, 2010
I am using profiles to store extra information about users. The thing that I want is that I am changing user name. But on the other side I have photo album gallery where I have stored the User name (Creator of album). These two tables (aspnet_Profiles and PhotoAlbum) are in different databases.
I have tried the following code while changing the user name
Private con As New SqlConnection(ConfigurationManager.ConnectionStrings("Photo").ConnectionString)
Dim updateSql As String = "UPDATE PhotoAlbum SET UserName = @UserName WHERE UserName = " & userName.Text
con.Open()
Dim myCommand As New SqlCommand(updateSql, con)
myCommand.Parameters.AddWithValue("@UserName", newUsername)
myCommand.ExecuteNonQuery()
con.Close()
Here newUserName is the new user name field and UserName is the previous name stored in PhotoAlbum table.
But it does not seems to work.On debugging it reports Invalid Column Name "userName"
View 4 Replies
Mar 3, 2011
we want to have a fronend to a custom databasince, since I do have experiance with HTML/CSS and have used VB.NET before, I'm the one that gets to make it.
problem is, the one thing I have not used before is the autentication system in ASP.NET, I want to use single-signon for the system.
and I do have this right now, the only problem I have is how do I check if a user is logged in, and change the page content for autenticated users.
the template does have this:
[Code]....
which does indeed change the login view, problem is, how do I change this to change the pages and menu.this:
[Code]....
has to be a longer menu that also gives options to insert data into the database and/or remove/update the data.
View 3 Replies
Oct 1, 2010
I am rewriting my PHP website into C# .NET, and I need to be able to set the algorithm used by the CreateUserWizard / Membership Provider to SHA1 so that I can port all of the user accounts over without having to force them all to reset their passwords when this project is complete. At current glance it doesn't look like it is using SHA-1, and my Googlefoo is failing me.
View 1 Replies
Oct 11, 2010
How do I protect the url from a user changing one of the param/value pairs?
View 5 Replies
Jul 24, 2010
I started out with the following code which worked fine, no problems:
[Code]....
I've since expanded the above so that it uses different providers according to the current logged in user. Here's the code since my changes:
[Code]....
I'm not getting any error messages but when I view the web page in the browser, it is stuck in a continuous loop where the page displays (correctly), then posts back to the server and displays again.
View 1 Replies
Aug 25, 2010
I'm using one application but have multiple providers in my web.config for memberships, roles and profiles to allow my application to be used by different groups of users who need to connect to different databases.
This means I'm having to change the membership, role and profile providers on-the-fly in my code-behind files. So far I've taken care of the membership and roles a bit like this:
[Code]....
However, I'm having trouble finding out how to do the same sort of thing for Profiles. I've looked at ProfileProvider and ProfileManager but I can't work it out how to access my the profile property that I've created in my web.config file called "ScreenSize". Normally you would just write Profile.ScreenSize to read or write to the property.
View 12 Replies
Mar 16, 2010
I have a simple login screen that now has to receive its parameters from another web site. I am not sure what we have to do. The other web site, will get the user id and password. the person there is asking me, does he just redirect user tohttp://reports.ourwebsite.com:90/login.aspx?username=Bill&password=testthis is the codes: First is Login.aspx<%@ Page Language="C#" AutoEventWireup="true" CodeBehind="Login.aspx.cs" Inherits="Reports.Login" %><!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> xmlns="http://www.w3.org/1999/xhtml"
>
<head runat="server">
<title>Untitled Page</title>
[code]...
View 4 Replies
May 12, 2010
Currently, when the authorization fails, it redirects to the login page by default. However if the user is logged in, it makes no sense to be redirected to the login page. I would like it to be redirected to an eror page instead.
View 5 Replies
Oct 25, 2010
In my user control I got this inline CSS in which I have only css classes... like I am not setting any attribute or whatever on some ID..got only classes like :-
.sp
{
backgrond-image :url(blah blah);
}
and so on..
nothing of the sort
#id1
{
/* set some property here*/
}
Now my question:-
Do I need to worry about system generated IDs if the CSS in my user control got only classes ? like in my page source..the divs ID changes from their original ID to something like ctl00_ContentPlaceHolder2_ctl00_Banner_divBanner after adding usercontrol and master page ...
so changing IDs shouldn't make any difference..right ??
View 1 Replies
May 26, 2010
I changed the following line:
private readonly IPrincipal _user =
new GenericPrincipal(new GenericIdentity("someUser"), null /* roles */);
to
[code]...
View 1 Replies
Nov 19, 2010
I have an update that changes user profile informationI have pulled the membership email in and can view the email in my table but it will not update the email when I change it.When I debug this code it seems to work fine and I beleive it was working before but suddenly stopped.I should add that I have created my own profile table and have had no problems updating all other information.Even adding the ability to update the membership password.here is my code for the update of the email:
[Code]....
Has anyone had a similar problem?I am not sure why it is not working
View 1 Replies
May 15, 2010
Error Description while browsing the website under IIS "The application attempted to perform an operation not allowed by the security policy. To grant this application the required permission please contact your system administrator or change the application's trust level in the configuration file." Initially I deleted the virtual directory, created again, set the permission to anonymous, set the browse and execute permissions, no solution. Then after doing many trials, I found out the basic problem reading the error "not allowed by the security policy". In web configuration file if we set the security policy to Fully Trusted, then problem solved and application working fine. or Set the trust level to the main configuration file in he "C:WINDOWSMicrosoft.NETFrameworkv2.0.50727CONFIGweb.config"
View 1 Replies
Jul 29, 2010
I have a custom ascx user control on my page that includes a dropdownlist. There is an onSelectedIndexChanged event handler that is connected to this dropdownlist. The first time the user selects a value, the page does a postback and the logic executes correctly. However, if the user then goes to change their selection, the event handler does not get triggered.
View 3 Replies
Feb 10, 2010
I am having the language as English(unite states), on changing the language to English(United Kingdom) the date format is changed to dd/MM/yyyy.
but on using the date class in the asp.net application, this fetches the date format as the mm/dd/yyyy, which is the system date format.
but the logged in user date format is dd/mm/yyyy
so how to get the date format of the logged in user in asp.net applications.
View 3 Replies
