Security :: Restrict Accessing Web Application In Public PC?
Mar 10, 2010
I have developed An Inventory Management System in ASP.Net . The application is hosted now ... From manager to data entry operator every1 z having seperate login , roles and limitation to access website ... From Our office every1 is accessing the application and working on it. My question is even they can access the apllication from public PC (Browseing Center) ?? coz they knew the password. Am i rite. Now, I need to restrict my application access in public PC (Browseing Center)? Can i limit accessing of my website application only in office not in public PC (Browseing Center)? can i allow certain IP to access my website application?
View 11 Replies
Similar Messages:
Jan 9, 2010
access the page on public section of the website from the admin section,while logged in?Or i am causing a security hole,jumping like this?all admin section pages have role based authorization and can not be accessed unless authenticated.Public of course is accessible to anyone.
View 6 Replies
Oct 24, 2010
We have created an Intranet Web Application with Windows Authentication.
That asking a prompt to get Username and Password each time when we access the application.
How can we restrict that prompt other than IE --> Security --> Custom Level --> User Authentication.
(Because, with this option we need to set these settings in each and every user's system)
View 3 Replies
Nov 28, 2010
I have this Internet web service page(webservice.asmx) being consumed jquery ajax call.
And I am hoping to restrict public request to this webservice other than request from local pages (aspx or jquery ajax call).
The web service checks for form-authentication before it gets executed but I just don't feel comfortable the .asmx page and list of services are viewable.
So users can't just type www.mysite.com/webservice.asmx to access my webservice.
View 2 Replies
Jun 16, 2010
I am interested in finding out how I would go about displaying a website wiithout forms authentication but to utilise forms authentication when the user makes a request by clicking in the signin button, and then the user will view other pages that are private and secure,
View 2 Replies
Feb 5, 2011
i am building a web application and i want to access a textbox which is on the index page from the login page. basically what i did is this. i programmatically created my registration form for new users and also login for registered users, now i want to display on the index page the name of the logged on user on the index as the page loads.
View 3 Replies
Feb 10, 2011
I'm having trouble with accessing my webservice.
I've got a webapplication and inside this webapplication I have a webservice. An external program is going to use this webservice in the future, but for now that is not the problem. this webservice is also called from inside the webapplication. this is where the problem starts.
I keep getting this error:
The remote server returned an error: (401) Unauthorized.
I tried with imporsonate= true, but it didn't work
[Code]....
the webservice is called like this:
[Code]....
I hope some one can point me into the right direction.
I'm using iis 7.5asp.net 3.5
View 1 Replies
Jul 30, 2010
I'm trying to use ASP.NET WCF Authentication Service from a Winforms Application.
I am referring to this article as a tutorial.
for silverlight clients, the WCF Auth service works well.
but for Winforms Apps,
[Code]....the AuthenticationServiceClient.IsLoggedIn() always returns false even after login.
what is the cause of this and is there another approach I should take when I leverage ASP.NET authentication from Winforms?
View 1 Replies
Dec 7, 2010
We have an issue with an internal application, where accessing it from LAN (private n/w) works fine, while access from external n/w throws up erratic behavior.
The Current System :
an aspx page (asp version 1.0) hosted on the IIS server (6.1). The front end is a vb form that connects to a sql 2000 database.
Users' credentials authorized using NTLM security.
Access from an external n/w - a reverse proxy configured with an ISA server 2006 to authenticate credentials.
Domain Controller - Windows Server 2008 R2 x64
The issue when accessed from external n/w :
everytime an entry from a drop-down is selected from an Ajax enabled control, instead of the fields populating, the page gets refreshed and the content of the box are cleared.
Also, clicking on other items that normally hyperlink to other pages, results in nothing happening.
Upon investigation, we realized that :
Everytime it fails, a string - "&AuthResend" followed by an alpha numeric string is attached, which attempts to authenticate the user's credentials everytime a request is made to the server.
ISA error logs yielded the following error msg :
"12210 Internet Server API ( ISAPI ) has finished handling the request. Contact your system administrator. "
This behavior is inconsistent except when accessed from Google Chrome, where it fails each time.
We have applied all the recommended hot fixes from Microsoft's KB pages.
View 1 Replies
Mar 21, 2011
While running an app from the server where it is deployed the website works fine, however when trying to access it from a different machine(placed in same network), using the same credentials, it shows that I am not an authenticated user.
[code]....
View 13 Replies
Sep 28, 2010
I'm embarrassed to ask this here because it's clearly been duplicated several times already on StackOverflow. I've read a lot of stuff including:
[URL]
I think I've done exactly what those article say, but it's not working for me.
Here's the top of my master page, named "MasterNoNews.master":
[code]....
In the first case, VS is telling me System.Web.Ui.MasterPage does not contain a definition for urrentUser. In the second case, VS says the type or namespace 'MasterNoNews' could not be found.
View 2 Replies
Aug 18, 2010
I'm writing a simple Intranet application using windows authentication. I want to restrict access to Safe/UCantSeeMe.aspx. I am aware of the AuthorizeAttribute, but this only works on methods. I also found a good post on doing this with the MVC pattern, but I'm not using MVC. This can be done with roles in forms based security. I read on MSDN that using windows based security means roles are based on groups, but it doesn't go into any detail. how can I restrict access to Safe/UCantSeeMe.aspx?
View 1 Replies
Nov 9, 2010
I have user control in the master page. user control code behind page having public property called SetValue.
Now I want to set the value from content page .
View 4 Replies
Apr 20, 2010
any link or reference will be appreciated reagarding sample Library application in .net 2.0
View 2 Replies
Dec 13, 2010
I have a Web Application (C# pages mixed with ASP.NET and some Javascript pages) on a Windows 2008 Server with IIS 7.0. I have just a few users that will hit this externally (not on the server). So in order for them to get a simple Username/Password form to pop up, what must I do? Could the users Usernames and Passwords just be added to a section in the webconfig file so I could maintain it that way?
View 1 Replies
Sep 17, 2010
I have an web application that encrypts data using a public and sent it to another web application. Which will then decrypt the data using a the user private key. My question is, since but the Private and Public key are generated in the first application. how does the other application get the private?
View 2 Replies
Nov 19, 2010
I'm building a complex, public web service in WCF that send email to a specific address, similar to a contact form but with some features.With jQuery I get the data from the textbox and with Ajax and json I send to the web service the strings to proceed at the send.
Now, is there a good way to make it secure?
I mean.. the service is public so someone can have access to it and starting to spam on this address. Can I restrict the users to use the web service only from the correct web site?
View 2 Replies
Jan 23, 2010
[Code]....
Trying to restrict access to folder but can't?
View 6 Replies
Mar 7, 2010
I am developing a website that has 2 roles of users.i have made 2 folders for each type of user's web pages. how to imply security so that 1 type of user could not see other user web pages.is thier any other way or i will have to check form the databse for credidentials every time the page is visited?Also let me know why do people put web pages in folders?i am not using sql membership and not even .net classes for role management.
View 7 Replies
Oct 13, 2010
I want to secure a particular set of files in a folder by role type. I have the following entry (See below)...I notice this doesn't work (I.e., it doesn't secure the file by Role Type.. anyone can access the file). I've read that I need to map the .WMV extension to the ASp.Net DLL.
[Code]....
View 10 Replies
Jun 2, 2010
How can i restrict sql injection in my code. How can i test that one whether SQL injections are applicable or not
View 4 Replies
Jun 11, 2010
I have asp.net application deployed on local server what i want is to access application remotely through public(live)[We have one)..
View 5 Replies
May 12, 2010
I have just started to use asp.net mvc.
I have read this article about using ntlm authentication
[Code]....
it provides access to specific domain users
[Code]....
I want to restrict access to all my domain users only lets say
[Authorize(Domain="redmond")]
or do I do it via web.config
View 2 Replies
Mar 17, 2010
I have a security issue in my web application where user can enter malicious data/can change the page path directory. To avoid these i want to restrict the user by accessing/typing in the URL.
View 5 Replies
May 25, 2010
we have uploded multiple documents. i want to faclitate free user to download one of file.
If Free User want to download another file then i want to show message "Register now for download this file "
If User will complete the registration from then he can download multiple files.
View 2 Replies