Security :: Login Page And Maintaining User Through Out The Session
Apr 12, 2010
Once user enter credentials i want his name to be appear on top.User should be maintained through out the pages of website until he choose to sign out.And also diff users will have diff access to some parts of website, like only manager can delete the content.
Have a project where I need to access a RSS feed. The issue is this RSS feed, you need to be logged in as a user. They have a simple web form (login + password).
1) Post a web form with my login and password
2) Maintaining Session (w/successful login), do an additiional GET to retrieve the RSS feed.
I am doing this in an ASP.Net page so it all happens server side in VB.Net
I have written custom code for login and logout...When use clicks on logout button the current session is closed and user is redirected to a login.aspx page...The problem is that when a user click a back button on internet explorer it the previous page he was navigating is shown to him...(altough he cant perform any operation as session is null and their is condition in page load that if session is null user should be redirected to login page)May i have to clear cache of client ??
I have made a web page in which there is login screen when user login it goes next page but my problem is if i directly enter the url of that page it open. I want it should not open unless the user log in...
I have an option in my website to logout from session and redirect to login page. So I get redirected and if I try to login again it seems like it tries to redirect me to login page over and over, until I click some page in menu and login and it does works. so, doesn't the login control always redirect to same DestinationPageUrl? here the logout code:
i am having login.aspx as start up page (In Admin Panel) . In login Page i am giving a value to session and i am checking that value in all pages page_load event, if expires it will redirect to login page. Consider if that session doesn't expire, at that time if i try to enter into page inside Admin Panel directly from website for first time, it should redirect to login.aspx but it will take me to that particular page (Since Session doesn't expire).
I have a login ascx module that needs to handle logged in users.
I am solving this by enabling Session("IdUser") to take Id_User from my database if login and password are correct.
Ok, this works rather OK, but I am using the same button for login and logout, so when I login user I need manualy to reload the page before handler me.load have new values for current session, does anybody know how I can solve this isue.
How can I send a user to a login page for login where you don't have control(like windowslive) and then after authentication return to the original page?
I got a role call "Staff", staff registration is done by admin so when creating a new staff only need their name, user name, password and e-mail. After registering, i wan to redirect the staff to the creating profile page to input their contact number and self-description which is a must for later use. For first time login staff, how do i compare and see if the contact and description profile is empty or not? If it is empty, then redirect to the create profile page, else just go to staff page.
I trying to do like making each different role redirect to their own page once they had login. For now when the user login they will remain in the same page showing the login template. How do i do that?
When the user clicks a button and the user has been inactive for too long (session is gone), then redirect the user to the login page and back to the current page after logging in?
Is there a built in solution to this or do I have to do it manually? If so, how?
I was reading some tutorials on Internet and Go through some Scott articles. I learn how to make form security with different types and roles. Now I wanted to know is it possible to secure asp.net control as per user login or just web page and directories.
I have two application (one of this is mojo portal): [URL] for some users when they login into "app" then the login in "mojo" doesn't work and viceversa. I've set the machinekey into web.config file. When the users remove all cookies and session data the login works again. The two application are into a Web Farm. Should be ARR the problem?
Let's say I have 2 computers and has internet connections. let's say in computer 1 I visit the my page and i log-in as User1 and I go now to computer 2 and i do the same thing in computer 1. All i want to do is to kill the session in computer 1 because i log-in in computer 2.
I'm using Forms authentication in my application but I'm not using the Membership that's built into .NET.
How do I automatically send user to login page when his/her FormsAuthenticationTicket expires? I just don't want a user log in and leave a page on their computer screen long after their session has expired. I'd like to make sure that as soon as the user's FormsAuthenticationTicket has expired, I send them to login page.
I wanted to know how to add the feature- that user should be redirected to an error page where the error will be display, upon entery wrong username/password when trying to login through an asp.net login control?
1. how to redirect the user to an error page upon entering wrong username/password (from a login control which is placed on master page)?
2. how to pass the error to the error page so it can be displayed there?
i m currently creating an article module, and i want if user wana comment on to the any particular artical, than he should login any of his mail id like gmail, yahoo hotmail etc and than post his or her comment and after than comment should go into the DB.