Within my site structure there is a folder called { Account } where I only want certain users to have access to. At University, my lecturer provided us with the following instructions:
Create new website and delete the default.aspx file in the Solution ExplorerRight click on the website path at the top of the Solution Explorer window and add a new folder. Name the folder Secure.To set up the security, select Website and then ASP.NET configuration.Select the Security link and in the Users column click "Select Authentication Type" and on the page that appears check the "From the Internet" option. Then click the "Done" button.Still in the security section select "Create Access Rules" and then click on the Secure folder and select "Anonymous Users" and "Deny". Then click OK. You can now close down this window.In the Solution Explorer click the "Refresh" button and you should see two web.config files appear.I am following his instructions to the letter, but I am not getting the {web.config } for my { Account } folder ! What am I doing wrong ?
PS. Is a users table in a database redundant in ASP.NET because there is already a user's table with roles built into ASP.NET ?
We use Sharepoint to control our websites. We build the sites, then load them into the sharepoint server. My question is if I use windows authentication, how can I get my role security in my web config file to coencide with the asp.net controls that use the Forms authentication. Is there a differenence? Our security uses a session variable for security but there is no where to set up their permissions except in active directory. I hope this makes sense because I would like to implement the LoginView with Role groups but how can I give them the role="administrator"? Do I have to go into active directory and give them these permissions(would take awhile due to the size of the company)? Or do I have to set up priveladges in the web.config file for each user(difficult I think)?
How to get UserId registered user and log in UserId? My new table tbl_Employees, column:
UserId, UserIdNewRegister Eg.: 1. Log in UserId is: 76F31C27-9AA4-4968-AEAB-8B5DFEED16E7 2. Register a new user, UserId is: 20T31C27-9AA4-4968-83RR-8B5DFEED1632
How to get UserId: 76F31C27-9AA4-4968-AEAB-8B5DFEED16E7 and UserId new user: 20T31C27-9AA4-4968-83RR-8B5DFEED1632. I want to put the user is stored under UserId 76F31C27-9AA4-4968-AEAB-8B5DFEED16E7 and UserId: 20T31C27-9AA4-4968-83RR-8B5DFEED1632 new user.
LoginCreatedUser is "False" LoginCreatedUser = "False"
The app requires user (mainUser) to login. Once logged in, the user can create users (subUser). I use the CreateUserWizard Control for this. I need to get the UserID of the subUser. HOw can I do this. I'm not sure of how to do it without confusing ASP of which userId I want. Is this a case for sessions? Or is there a more direct way?
I have created my own form for creating a new user and collecting data, I just need to do one thing, find the UserID of the newly created user before they have logged in
Lets say that I have a database set up with a load of info in it and I decide I want to add the membership and roles functionality to my site but my hosting provider makes me pay for each database I use. I don't want to pay for another db, so how do I set it up so that instread of creating membership and roles tables in the the aspnetdb database, it creates them in my existing database?
How do i set the default profile when a user logs in. I have an application where the users (once they are authenticated) are in either the logged in, premium, or promotion profile. right now it assigns none. How do i make every user automatically be part of the promotion profile.
I get an error only when Same User Name was created in Different Application ID.
Input string was not in a correct format. line- gluserID = Convert.ToString(command.ExecuteScalar())
Here is my code
If User.Identity.IsAuthenticated Then Dim UserIdentity As MembershipUser = Membership.Providers("CustMembershipProvider").GetUser(HttpContext.Current.User.Identity.Name, False) [code].....
i'm trying to figure out if its possible to skip a step in the create user wizard control that i've added. What i'd like to do is create a checkbox on the previous step and say "add a spouse" and if its checked goto the next step if its not checked goto the step after the "add a spouse" step. make sense?
I have created a web application through VS2010, with defined tables in the database for username, password, etc.,
As well as in the project, VS2010 created templates,Views, Master pages,etc.,
Now I want to implement the Role based access in my application. For Example, Adminstrator can view all the page, But the user can view only few pages.
I don't know how to try implement the user roles, Since I cant get the value of Username and password since access by this line.
RegisterHyperLink.NavigateUrl = "Register.aspx?ReturnUrl=" + HttpUtility.UrlEncode(Request.QueryString["ReturnUrl"]); //To load the custom page, Change it in the Web.Config File [<authentication mode="Forms">]
My Query:
1. How to implement the uerroles in this application.
2.Client needs the admin intreface to create the user by the adminstrator.How can i provide the from for accessing the tables whaich are created by VS2010, when the web application is created.
After a user has finished registration, i want to show an info message and redirect the user to the site's main page after 5 seconds. I can do a delayed redirect easily:
[Code]....
How can i call this method only when the user was succesfully created?
I created a table named Thread to store logged-on users' comments. It has CommentId, Topic, Comment, CreatedTime and UserId columns. I made CommentId as the primary key and UserId as the foreign key to the UnserId in the Membership table aspnet_Users.But when I insert those data into table Thread, I get an error "Cannot insert the value NULL into column 'UserId', table 'ASPNETDB.dbo.Thread'; column does not allow nulls. INSERT fails.The statement has been terminated." I have tried different ways to resolve this, but could not make the UserId in the table Thread match the UserId in table aspnet_Users. Yesterday, I found the Table Profile Provider Samples created by Hao Kung at http://www.asp.net/downloads/sandbox/table-profile-provider-samples. It should be be able to solve my problem. But the code was written in C#. Is there anybody who knows a VB version of this code, or a better way to solve my problem?
Im uysing my custom login for user,and suppose im having a group of user who can login in.and rest of other should be deniedso how i can maintain that in web.config,
I have done forms authentication a couples of times before but this time I cant get my head around something.Somehow altough the user authenticated,the destination page does not get this.The destination page is called Approval.aspx and is located in the /Admin directory which is secured by having its own web config with those settings:
[Code]....
If I remove the <deny users="?" />,then everything works fine but obviously everyone has access to that page.I only want that the user of role Admin can access it. I have implemented the standard VS 2010 login controland the user gets to the destination page with a response redirect:
[Code]....
Why does the destination page not realize that the user is authenticated and does not treat the useras a user in role "Admin"?
[Code]....
While debugging the login page I can see that the user has the right role "Admin".
I would like to use the asp.net membership and role management. However, all I found is fixed role control on the page level. Is there a way to let customer (administrator) to create their own roles, and assign the permission (edit, add, or view) to them, and then, use the permission to control te display (for example: edit button visible or not)?
I'm creating a LoginView in a class file rather than at design time.
The equivalent LoginView created in a .aspx page and used the same way works fine, and User.Identity.IsAuthenticated is switching from false to true once I log in as a user so the problem must not be there.
But even once logged in, the programmatic version of this LoginView is not switching from the Anonymous template to the LoggedIn and the output is always "You are not logged in".
Anyone have ideas? thanks.
here is my code to create the loginview
private void BuildAddCommentView(HtmlTextWriter htmlTextWriter) { LoginView commentsLoginView = new LoginView();
commentsLoginView.AnonymousTemplate = new LoginViewTemplate("AnonymousTemplate"); commentsLoginView.LoggedInTemplate = new LoginViewTemplate("LoggedInTemplate");
class LoginViewTemplate:ITemplate { string _templateType;
public LoginViewTemplate(String templateType) { _templateType = templateType; }
public void InstantiateIn(Control container) {
Label label = new Label();
switch (_templateType) { case "AnonymousTemplate": label.Text = "You are not logged in."; container.Controls.Add(label); break; case "LoggedInTemplate": label.Text = "YOU ARE LOGGED IN."; container.Controls.Add(label); break; }
I need to set my logged in time in web.config but I do not know how? I get logged out after a while if I do no do anything in the website but I wanna be logged in for 120 minutes.
I am wondering how to encrypt the below information in the "web.config" file of the "Account" folder (where we have the secured pages):
[Code]....
My issue here is that even after I compiled my application (using "aspnet_compiler -v /reports c: eports"), the information inside the web.config file of the Account folder still not encrypted, and I want to publish my site to the customer server. So, since this server is a customer server, then they can access this "web.config" file and change our web-application security behaviour (correct me if I am wrong). Basically, I don't want the customer to even have access to our secured pages when they access our web-application using the web browser. How to solve this issue?
I have a basic intranet website for my company but there is one page that cannot allow anonymous as I need to grab the user's login. I created the site and everything works perfectly on my development machine. once moved to the production server it no longer works.
Here is the problem: I can get the login prompt when going to the secure page, but when trying to login I get a "401.1 - Unauthorized", even when trying to login as a server administrator. Here is the authentication portion in my web.config:
[Code]....
I have done this before and always gotten it to work. I hope I am just missing something very simple...
