VS 2012 - Disabling Forms Authentication During Development
Jul 1, 2013
So we're building this website and we've decided to use forms security. We've added users and roles and put code in to control the display of certain functionality based upon User roles. It's all working great except for one thing.
Developers don't like to login to the website every time they want to test a page. So they do things like add a line to web.config like <allow users="*" /> right below <authorization >. This gets them past security, but then we get errors when we check User.IsInRole.
I know this can't be a new problem. How do development teams seemlessly turn forms authentication on and off while doing development?
View 5 Replies
Similar Messages:
Aug 12, 2010
When debugging my website project I usually go to start options in the web project's properties and select 'Don't open a page' and 'Use custom server' with a url that's in my host file pointing to my local IIS.
Even when I do this though visual studio still spawns it's own Development Server instance every time I hit f5.
Also for web application projects that have shared ascx files for instance Visual Studio will also launch an instance of Development Server each time I debug the solutions for each for these projects. This results in a million instances of Development Server running on my machine at any given moment.
Is there any way to disable development server for a given project completely? Without pointing it to a localhost sub application?
View 3 Replies
May 1, 2015
I'm trying to connected to a third-party server, that allows API access via XML post/response. I've created just a very simple test page with a button to press.... the button should just go to the URL, log in with basic authentication and then return the response. if I use a browser and go to the URL, I see the XML response. Usuing my app, I'm still getting 401 unauthorized. I've been at this for hours, I've searched the forums and googled extensively, still no luck. Also, this is an internal app to internal server so security is not the highest priority. I'm setting the UN and PWD for authentication in a simple form.
Here's my VB code behind:
Dim request As HttpWebRequest
Dim response As HttpWebResponse = Nothing
Dim reader As StreamReader
Dim result As String
'disables self-signed SSL cert errors
[Code] ....
And the username and password are 100% accurate - as I mentioned above the code (well, implied).
I feel like this SHOULD be pretty easy: Overall request for testing: Submit a web request to a URL, disable the SSL check (self-signed certs used), login with basic UN and PWD I supply, return the response to a textbox.
View 1 Replies
Jun 5, 2015
At my work I have 2 logins, my main login "mike", and another one that we use to login into servers to manage applications, user "tech_mike"
On my machine I am logged in as "mike", I published the web-application to the server (through FTP). I RDP into the server using "tech_mike", and setup the application in IIS (create app, disable basic authentication and set windows authentication for the app)
Now when I want to test the application from my computer (user logged in "mike"), in the browser I type the link to the app [URL] and it tells me that I am not authorized. In the logs I can see that it is trying to login as "tech_mike", even though the user that I am logged in from my computer is "mike".
If I try to open the app on my local machine (local IIS), it is using the correct user "mike"
If someone else (another developer, he has "tech_user" account also) opens the app on the server: [URL] then he is able to login because it takes the correct user that is logged in into windows (not the "tech_user" account).
It seems only I have this problem because I connected through RDP (using different user) to setup the application in IIS on the server.
This is happening on all apps on the server that are using Windows Authentication, IIS (I think) somehow replaces my user "mike" with "tech_mike"
View 2 Replies
Apr 13, 2010
I'm not entirely sure if this is the right place to ask, but here goes.
I have a website that uses windows integrated authentication. This is great and the way i want it, BUT, i now have a single .aspx file in that site, that i would like anonymous access to.
I am running this on IIS 6 on a windows server 2003.
How do i go about doing this, if i even can do it? web.config, IIS console or do i need to make a new site for this one file alone?
View 4 Replies
Mar 7, 2011
I've just run into one of the problems of using the integrated dev server (Cassini) in VS and would like to see if there are any solutions.We're using asp.net authentication to secure the site. However, Cassini runs in integrated pipeline mode, meaning that requests for all files go through the asp.net isapi. The result of this is that it's securing files that would otherwise not be secured in a production environment (.htm .js .css etc..).
Now I understand that we can run the project on a local IIS instance, but we would like to avoid this if possible. But, because of the problem above, this is looking like the only solution.Does anybody have any ideas about how to get Cassini working with authentication that can be easily moved to a production environment when ready. (I'd also like to avoid having a different development web.config that specifically allows access to these files).
View 2 Replies
Nov 8, 2010
I am developing a facebook application in asp.net using the facebook developkit downloaded from [URL] website.
I am practicing a sample application in SDK 3.02samplesIFrame.
They have give an attribute called RequiredAttribute = true in IFrameMaster.Master.cs, which will access the basic information.
But I want to request for extended permission in the same screen itself.
For that i have used this.RequiredPermissions = new List() { Facebook.Schema.Enums.ExtendedPermissions.publish_stream, Facebook.Schema.Enums.ExtendedPermissions.offline_access };
But there is no use.
Is there any way to do it.
View 2 Replies
Mar 29, 2010
I am using a custom error page in IIS 6:<customErrors redirectMode="ResponseRedirect" mode="On" defaultRedirect="Error2.aspx"/>I want to disable authentication for the custom error page because the error being raised is related to an authentication module and I don't want to get into an infinite loop and I want to display a clean error page to the user. I have been trying the following configuration to do that.
<location path="Error2.aspx">
<system.web>
<authentication mode="None"/>
[code]...
View 3 Replies
Nov 2, 2010
My overall goal is just to get the logged on users information for an Intranet site I'm developing without them providing their login (since they are already logged into their computer). So far I just get 401.1 errors and it keeps asking for my login/password. Even though I provide my login/password, it still won't let me in.
I've Enabled Windows Authentication from IIS > Sites > Default Web Site, added this to my web.config:
<authentication mode="Windows" />
<authorization>
<deny users="?"/>
</authorization>
My Application Pool is setup as Integrated / ApplicationPoolIdentity for .NET Framework 2.0.
View 1 Replies
Oct 20, 2010
We have a largely asp.net web form team (With some Oracle developers thrown in).
Question 1:
Is it a good idea to start using asp.net MVC which will mean redevelopment of a number of standard controls for not much benefit.
Question 2:
Is it a good idea to hire developers where there most recent skills are with asp.net MVC?
I doubt there is any benefit adopting MVC now, given the 100+ applications in this suite of products, and the maintenance/rework this will cause. Given this, is there any particular reason to hire MVC developers, as they won't be hitting the ground running, which is what I need now.
View 3 Replies
Jul 16, 2010
I am planning to develop a social networking website for student of a particular university with following facilities.
Forum, Blog, Creating profile, creating groups , Adding Friends, managing groups, dating, chatting etc.
Now if I start developing it from scratch, this will take a lot of time..
I couldnt find any CMS which can in developing social networking website.
Additionally, I would like the website to have my own custom design. Also it should have support for AJAX, SEO and integrating third party applications.
View 3 Replies
Sep 13, 2010
How do you know what is better to use for writing new programs? We are now using Access 2007 frontend with an SQL backend and we are going to VB.Net, what would be our next logical step?
View 4 Replies
Sep 17, 2010
Just going to start making a web application and was wondering which was better, or at least what are the main differences between them (as it probably matters what I am using them for)?
View 3 Replies
Sep 18, 2010
i'm using Window.open of java script to popup a window on clicking button. popupBlocker blocks the window.
Is there any way to Disable the popup Blocker programatically?
View 3 Replies
Jan 18, 2011
I have read through a number of posts but cannot find solution to my requirement. I need
1. Use DeclarativeCatalogPart to list ALL my webparts. I do not want to use PageCatalogPart because I want the user to always see ALL web parts available in the catalog, regardless if they are closed or not.
2. Disable the checkbox in DeclarativeCatalogPart for the WebParts that already exist on the page.
I wrote all the code to determine if WebPart exists, but I cannot figure out how to get access to that checkbox next to each WebPart.
View 1 Replies
Dec 7, 2010
I want to allow users to click only once on button. In fact, the button is a user control:
[Code]....
That button control gives us access to OnClientClick property of lbButton. This button is used on other user control:
[Code]....
As you can see - i disable button on client-side and then return true (to do a postback). That's for only sample purposes. This code will disable my button but there will be no postback. If leave only "return true;" inside onclientclick script then i'll have my postback. The conclusion is - i can't do a postback if i disable button. The question is what's the reason of such behaviour and can i do any trick to over overcome this issue. I figured out i can hide button and still perform postback. But why it can't be disabled? There was already a thread on similar topic : [URL] but answers weren't satysfying. User Participant gave his solution there but i'm not fully understand his idea. Could someone explain to me why it can't be done my way and if it can be done by any other method?
View 3 Replies
Jan 12, 2010
I need to disable the edit command link if a record has links to other records within the tables.
I have a table that has worktype and that is captured when certain records are entered. So if a record exists with that value, then i want to disable the "Edit" link for that record within my gridview.
I want to provide them access to add more worktypes, but if they want to edit a worktype, i need to make sure its not used anywhere in the other tables, before they can edit it. For now atleast, because i will need to allow full editing and deletion functions for this table. how to do this or maybe suggestions on other things i can do to give them full functionality?
View 3 Replies
Apr 27, 2010
I am having a master page in which i am having two controls
LoginRegister I want these controls not to be visibled in my UserRegistration.aspx page but should be visible in other pages.How can I solve this problem.
View 10 Replies
Jul 8, 2010
I have a gridview that gets populated with database records. If a record's"Inactive" column is "1", I want to disable the checkbox as it is loading. I am trying
RowDataBound event, but app doesnt stop when I put a breakpoint in RowDataBound event.
View 3 Replies
Sep 5, 2010
I am trying to disable and enable hyperlinks on an aspx page using a button from another aspx page. I have an idea of having two buttons on one page labelled "disable" and "enable". clicking disable should disable a particular link on another page and clicking enable should enable that same link.
View 5 Replies
Nov 23, 2010
I would be glad to have any kind of assistance on the issue, I wanna automatically disable the browser history storing for asp:textbox control
View 3 Replies
Oct 30, 2012
i have a doubt regarding in my project...actually in my web form i have a submit button,cancel button,edit button...all are work fine but only one is not properly working ...if i click the edit button submit button will be disabled and dropdown box and update button will be enabled..in that dropdown list i displayed the employee code which is stored in the database..when the user select the dropdownlist employee code,the particular record will be displayed in the same page...but when i click the edit button submit will be disabled and update and dropdownlist will be enabled..when i select the employee code in the dropdownlist the particular record will be displayed and update button and dropdownlist will be disabled.i want both the controls should be enabled
View 1 Replies
Apr 15, 2010
'm using the AutoCompleteExtender from the AJAX control toolkit on my aspx page - I have it wired up to a WCF service that is returning a string array and everything works happily.
If I change my service definition to include a demand for the caller to be authenticated, like so:
<OperationContract(), PrincipalPermission(SecurityAction.Demand, Authenticated:=True)> _Public Function GetLookupValues(ByVal prefixText As String, ByVal count As Integer, ByVal contextKey As String) As String()
Then the autocomplete extender stops working, and I get an authentication error in the service. The service is set up to use ASPNetCompatibility mode, and I was hoping that the extender would pass the authentication credentials for my logged in user - does anyone know how to make this work?
View 2 Replies
Sep 3, 2010
What do I need to do in order to change an application from Forms Authentication to windows authentication?
View 2 Replies
Mar 31, 2011
I was just wondering if there isa way to disable GridView rows from being highlighted with the mouse when user clicks and drags over the row.
I was thinking this may be possible by disabling the onclick atttribute but I use this as each row is a hyperlink to another page.
Just trying to think of an alternative method; is it possible to change the color to be somehow transparent on the drag?
View 5 Replies