I have two levels of authentications in ASP.NET application.I have a [Code].... user that have full access to all the websites and [Code]....user that have limited access.I want to destroy all open sessions before do any new login, no matter who will do the login.Where should I place my code to destroy all open sessions before I do any new login?
View 3 Replies
i got a web app where some users can upload to a folder images or files like pdfs.
Those users are authenticated by forms.
Well, in public areas, everyone can see those images and files.
I use for showing an httphandler, changing name, etc...
Id like to know if its possible set security like this:
- Folder with uploads, only with read permission for everyone that is not authenticated
- Folder with uploads, with write permission for authenticated users
Goal is that none can upload files if they are not autenticated and make the upload through the web form created for that.
have a .net website that i have been developing where the majority of pages are accessible to anybody but a few pages are restricted to members. This have been done thru the .net membership provider.This all works fine but what im trying to do now is run a closed beta test.So i want to put the application online but require any visitors to the site to have to go thru an initial beta login screen that has one common username and password for all users. Once past that login the site needs to function like it would if that login step had not occurred. That is, users would have to signup or use their own personal logins to access the pages restricted to members
View 5 RepliesI want to provide different security aspects to the admin and customer to a single website with a different home pages..
View 3 RepliesI need to design a system that will control access to certain information. The requirement from the user is to use access levels e.g.
Level 1 - Support
Level 2 - Manager
Level 3 - Senior Manager
Level 4 - Department Head
etc.
If a certain piece of information is marked as Level 1, then all roles should be able to view that piece of information. If it is marked as level 3, then only the Senior Manager and Department Head can view it, but the Manager and Support roles can't view it.
Questions
When I assign the access level to a piece of information, will I have to assign multiple roles to it in order for me to achieve this functionality? Is there a better way of doing this?
Using ASP.NET MVC, I need to configure my URLs like this:
[URL]
In ASP.NET, what is the order of precedence with setting viewstate and similar properties? These can be set at web.config, page level and also at the control. If I turn it off at both web.config (global), page level, but on at the control level, for example, what is the result?
View 1 RepliesI am trying to create a menu with multiple sub levels
Menu 1
Submenu2
SubMenu22
The values of these menus and the urls are populated from the database. Currently I am using a TreeView to achieve this functionality but looks like treeview has lots of overheads.Could you please help me to construct the same functionlity using the accordian and repeater control
I have 3 page templates - A, B & C.
View 6 RepliesI am building a subscription based web site, which currently has three subscription levels, i.e. Horses, Soccer, and Horses and Soccer. I was thinking of implementing standard role based authorization, where a Horses subscriber would get roles including those to use the Horses section, etc.
Should I use a standard role provider, and when a member subscribes to the site, assign roles for his subscription to him, or use a hierarchical role provider, that when asked for the roles for a member, only then uses the member's subscription level to 'calculate' a set of roles for the member.
I have two .NET applications X and Y
a. I want to have User A as a common user for both application X and Y.
b. User A can have different roles on X and Y. Eg. Read permission on Y and Write Permission on Y.
How do i configure ASP.NET membership to achieve about functionality.
I have a requirement like this to insert records into a table...
Tab1 - Row1(Column1) ab2-Row1(Column1) Tab3-Row1(Column1) Tab3-Row1(Column2)
Tab3-Row2(Column1) Tab3-Row2(Column2)
Tab3-Row3(Column1) Tab3-Row3(Column2)
Add New row Tab2-Row2(Column1) Tab3-Row1(Column1) Tab3-Row1(Column2)
[code]...
I have a javacript file (script.js, for example) in the following location:
/Website/Shared/Js/script.js
I have two pages which use this javascript, but each one of them seems to require a different path and I can't figure out how to resolve both of them.
One of them is the page:
/Website/One/Two/Three/page.aspx and this requires the path:
<script src="../../../Shared/Js/script.js" type="text/javascript"></script>
The other page is:
/Website/One/Two/page.aspx and this requires the path:
<script src="../../Shared/Js/script.js" type="text/javascript"></script>
I tried to come from the root by doing
<script src="../Shared/Js/script.js" type="text/javascript"></script>
or
<script src="/Shared/Js/script.js" type="text/javascript"></script>
but none of these seem to work. The temp solution I have found is to declare the script twice which is dumb, but that is all I can think of now.
i want design of page like this. At the top of page is first level of menu - Main Categories. On the right site of the page is submenu (level 2). Can i achieve this with bult-in component like Menu control and sitemap file? I want to try create menu this way.
View 13 Replieshow to get list of all tree nodes (in all levels) in TreeView Controls ?
View 2 RepliesI found the article about Nested GridView Example in ASP.Net using C# and VB.Net
I tried it with a third level, but have problems of binding data. How it could work?
<asp:GridView ID="gvCustomers" runat="server" AutoGenerateColumns="false" CssClass="Grid"
DataKeyNames="t1000_customer_id" OnRowDataBound="OnRowDataBound">
<Columns>
<asp:TemplateField>
<ItemTemplate>
<img alt="" style="cursor: pointer" src="./images/plus.png" />
<asp:Panel ID="pnlOrders" runat="server" Style="display: none">
[CODE]...
We are using membership provider for LDAP authentication. It is working as it should.
But what all configuration settings I have to do so that
all the future requests to this application run under the security context of the Logged in user account not through the some default user set in IIS.
We need to have this working because all the permissions on the database are based on the logged in user.
We are using form authentication for LDAP authentication. And having impersonation = true in web.config.
I'm creating a navigation menu. I've to render repeater control ul-li tags and menuitems can range upto N levels. I need to add a child repeater control dymnamically to parent control?
EDIT:
Example -
ul-li can goto n levels
<ul>
<li>
<ul>
<li>
<ul>
<li></li>
<li></li>
<li></li>
</ul>
</li>
<li></li>
<li></li>
</ul>
</li>
<li></li>
<li></li>
</ul>
I have four categories, which I would like to show up in my breadcrumbs:
ex:
Home > Poems TOC > MyPoem
Home > Songs TOC > MySong
can I structure the xml in the Web.sitemap doc, so that even if the files are in the same directory, they will dispaly as above. (the TOC entries are table of content pages, which call the actual content pages)
I have an XML file structured as follows:
<Levels>
<Level Code="T" Text="Test">
<SubLevels>
<SubLevel Type="9" Text="Nine"/> [code]....
What I want is two drop down lists, one linked to /Levels/Level and one to the SubLevels for the selected level. Currently, I have the main one bound as follows:
<asp:XmlDataSource ID="XmlLevelInfo" runat="server" DataFile="~/Levels.xml">
</asp:XmlDataSource>
<asp:DropDownList ID="cboLevelFilter" runat="server"
DataSourceID="XmlLevelInfo" DataTextField="Text" DataValueField="Code">
</asp:DropDownList>
This works fine, but I can't work out how to link the Sub Levels to the second drop down list. Is this possible using data binding?
I am building an ecommerce site and I struggle to find a way to check the stock levels for each order.I have created an "in house" procedure that involves the administrator having to push a "check stock" button for each item on the order but it doesn'tlook too elegant.
View 3 RepliesI am building an ecommerce site and I struggle to find a way to check the stock levels for each order. I have created an "in house" procedure that involves the administrator having to push a "check stock" button for each item on the order but it doesn't look too elegant.
View 2 RepliesI wanna write a usercontrol to handle different access levels on pages.
Below is the html i wanna achieve.
[Code]....
This is my code at this point:
[ParseChildren(false), PersistChildren(true)]
public partial class RequiredUserType : System.Web.UI.UserControl
{
public string UserTypes { get; set; }
[Code].....
My problem is that the <Content> and <AlternativeContent> doesn't get rendered as Panels and on the Client side its rendered as the initial tags(<Conten>) and not a div or whatever a asp:Panel normally gets converted to.
Error:Â
Security Exception
Description: The application attempted to perform an operation not allowed by the security policy.  To grant this application the required permission please contact your system administrator or change the application's trust level in the configuration file. Exception Details: System.Security.SecurityException: Request for the permission of type 'System.Web.AspNetHostingPermission, System, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089' failed.Local its run fine. when i place in iis. it throw this exception.
My website security is configured with "Windows Integrated Security" only (anonymous is disabled).
I also want to set a specific account to run the w3wp.exe process using the
Application Pool Identity to a domain account.
Running directly from the server works without any problem but from remote computers I always get the authenticaion window then the 401.1 error (after 3 attempts).
It seems that its the combination of "Windows Integrated Security" along with the "Application Pool Identity" that causes the problem. When I disable one of the two it works properly.
My server is Windows Server 2003 R2, running IIS 6.0.
