Security :: Login Status - Login Returns Bad URL

Sep 18, 2010

I have a website secured using Forms:

[Code]....

My login page is the usual login.aspx so I don't need to set the loginurl.I have a standard loginsatus control to display the current status and allow the user to login/logout.

[Code]....

On the my development machine this works fine. However when I release it to a test site when I click the "login" link the request sent to the server includes as number of percentage-coded / so the request looks something like this:

http://wwwmysitehere.com/%2flogin.aspx%3fReturnUrl%3d%252fDefault.aspx

(returns a "A potentially dangerous Request.Path value was detected from the client (?)." error)

or without the "Default.aspx" returnurl:http://wwwmysitehere.com%2flogin.aspx%3fReturnUrl%3d%252f

(returns page not found)

View 4 Replies


Similar Messages:

Security :: Secured Site Using The Login Control / Do Not Want Them Redirected Based On Their Login Status?

Mar 24, 2011

I am doing a simple secured site using the login control. I would like users to be redirected to their dashboard page once they log in, but after that if they choose to browse I do NOT want them redirected based on their login status. I am using the generic template provided in VWD with the basic login setup in the template including the tabbed ASP menu control - nothing fancy, nothing custom. This is intended to be something very simple and quick. Here is the code I am using for the page load...

[Code]....

So if I do this code WITHOUT the "IsPostBack", logged in users are always redirected to their dashboard and cannot see the hompage. However with that IsPostBack test, the redirect after initial login doesn't work.

I know this is extremely basic and simple, but I am restarting with this stuff after a year away, and I need a nudge.

View 4 Replies

Security :: Logout From Site Without Login Status

Jul 12, 2010

How to logout from web site without any login status? i mean when my loginstatus control is not visible i want a method that makes the user loged out.

View 1 Replies

Security :: Login Status And Control Not Logging In?

Oct 10, 2010

Is there something here messing up my login functionality? I can't log in. Before when I was logged in, I couldn't log out. It seems to have started when I clicked on "Remember me". Could there be something conflicting with web.config and the aspnetdb profile provider service setting that was initially set regarding profiles/roles/access?

[Code]....

View 5 Replies

Security :: How To Get Login Status Controls To Display A Log In Option

Jun 17, 2010

I have the following log in status controls on the top of my master page. It displays the logged in as, manager log in, and Log out options.However, when a user is not logged in, there is nothing displayed there. When the user is NOT logged in, is there a way to display a "Login" text link that takes you to the log in page and then "disappears" once the user is logged in?

[Code]....

View 1 Replies

Security :: Login Status Error When User Logs Out?

Apr 10, 2010

i am using membership to create an account page that a user enters after logging on.

In the page load of "MyAccountPage.aspx" I have the following which gets the userid and add it as a paremeter

Guid userid = (Guid)Membership.GetUser().ProviderUserKey;"ClientId"].DefaultValue
= userid.ToString();
ObjectDataSource7.SelectParameters[
"ClientId"].DefaultValue = userid.ToString();

This works fine - I have now added to the page a LoginStatus as when they arrive they are loggen in. The problem is when the user clicks the Logg off link I get the error on the page below -

Object reference not set to an instance of an object. Description: An unhandled exception occurred during the execution of the current web request. review the stack trace for more information about the error and where it originated in the code.

Exception Details: System.NullReferenceException: Object reference not set to an instance of an object.

Source Error:

[Code]....

Is this because the page load is trying to get the logged on user ID

but they have just logged out?

How can I allow the User to logg out without getting the error?

View 4 Replies

Security :: Login Plus Custom Login Using The Standaard Login Controls?

Apr 12, 2010

After reading a book I brought on ASP.net I fould the login controls to be very nice.I have set it up in my application so that customers can login using the standaard login controls and things were going smooth.But in my schema for my application I also have a table for customers (firstName, LastName, DOB, etc).And of course the customersID is used as a foreign key to tables such as Orders, Addresses (Home, Work, Postal).

The thing is how to i associate an asp.net login to a customer name in my table so that the CustomerID can be used through the application by knowing who is logged in.

View 7 Replies

C# - Login Image Url For Login Status?

Nov 4, 2010

i have a login control ,it works perfectly,,and i put login status, i get a specific problem when i specify the login image URL for my login status ,,the login control can't redirect me to the default page even when iam the right person ,it even does not enter the logging event in this case ,,when i remove the image URL every thing is okay, i wanna to use image url to clarify the status..i note some thing:

when i enter the user name and password and click enter through keyboard i logout and the focus is on the login status control ,, when i click on the button every think is okay

View 2 Replies

Security :: Forms Authentication With Route Handling - Error Routes Not Recognized, Returns To Login

Oct 1, 2010

I just created a small site with form authentication with route handling. Without forms authentication, the pages route just fine. With forms, it returns back to the login page as it is not one of my allowed locations specified in my web.config file.

I know I probably need to write a custom route handler. Does anyone have an example I can follow for this?

View 1 Replies

Security :: Login Form Rejecting Valid Login With Forms Based Security And Membership Service

Jan 21, 2010

I've set up a system with forms based authentication and using the asp:Login control. When I put in an invalid password I get the approriate invalid password message. However when I put in a valid password, it does nothing...just returns to the login page again. I'm triple checked the login info. There is no error message, and the invalid attempts counter doesn't increment. When I put a break point in the Login_LoggedIn event of the Login form, it hits it, but User.Identity.IsAuthenticated is false. I'm not 100% sure it should be true at this point, as I'm pretty new to .NET but it seems kind of odd.

My user database is stored in a sqlserver 2005 db that already existed. I've added a new connection for it.In the authorization I have

<authorization>deny
users="?"/><authorization>

View 2 Replies

Security :: Allow Clients To Login To Website And Connect To Specific Server Based On Login

Jul 5, 2010

We have created a windows application which is distributed amongst our clients. The application uses SQL Server 2008 as the back end and each client uses their own database on their own server. The databases are all exactly the same but each clients data is specific only to them.

We would like to offer our clients the ability to log-in to our website which would then login to their own database so that when they are out in the field they can perform similar tasks to what they can do with the windows app.Each of the clients databases has a user table containing their login details, permissions etc.

Our server is running on IIS and has SQL Server 2008 installed but it only contains our data and nothing of the clients.How should we go about this?

What I mean is do we need to make each client have an additional login to our main server which would then hold each clients individual connection strings etc which would then be used to connect to there specific database and then they would need to login again?? Seems like a nightmare for the user.

View 13 Replies

Security :: How To Make Login Control Allow Users To Login By Either Username Or Email Address

Oct 12, 2010

how to make login control allow users to login by either username or email address

View 1 Replies

Security :: Create A Login Window From Where User Could Login From Their Gmail Or Others Id And Write

Aug 13, 2010

i m currently creating an article module, and i want if user wana comment on to the any particular artical, than he should login any of his mail id like gmail, yahoo hotmail etc and than post his or her comment and after than comment should go into the DB.

View 3 Replies

Security :: Login Sql Statement / Tier Project A That Required A Login Page>

Jan 11, 2011

i doing on a 3 tier project a that required a login page, Im not sure how the flow go for the 3 tier...This is my BLL

[Code]....

This is my DAL

[Code]....

And lastly here is the aspx page

[Code]....

When i try to insert my NRIC and password, it's like not passing through the statement, it just say login sucessfully eventhough i put the wrong NRIC/Password/Not valid..

View 3 Replies

Security :: ARR Login Fail But When Users Remove All Cookies And Session Data The Login Works Again

Sep 27, 2010

I have two application (one of this is mojo portal): [URL] for some users when they login into "app" then the login in "mojo" doesn't work and viceversa. I've set the machinekey into web.config file. When the users remove all cookies and session data the login works again. The two application are into a Web Farm. Should be ARR the problem?

View 2 Replies

Security :: Using ASP Tools For Login And Create User / Login Tool Is Going To Get Userid And Password Info?

May 25, 2010

I've created a page to add users, using the CreateUserWizard, I use the Login Control to login.

I have setup the config file to use my SQL server, not express

<remove name="LocalSqlServer"/>
<add name="LocalSqlServer" connectionString="Data Source=xxxx.xxxx.xxxx.xxxx;Initial Catalog=aspnetdb;Persist Security Info=True;User ID=xxxx;Password=xxxxxx" providerName="System.Data.SqlClient" />

I go to the create user page, add a user.

I can SEE the user on the database using Server Management Studio...

I go to signon and get "Your login attempt was not successful. Please try again."

I have not customized the login control in any way. (OR the createuserwizard)

HOW can I tell where the Login tool is going to get userid and password info?

How can I tell if it is not finding the user or the password does not match?

View 2 Replies

Security :: Catch A Failed Login Attempt (Windows Auth) And Redirect To A Forms Login Page?

May 26, 2010

I need to create an application with Forms Authentication and/or Windows Authentication. If the application is set to use mixed authentication (Forms + Windows Auth) and the user don't have a Windows user account, the login will fail and he must be redirected to a forms login page. How can I do this?

Are there any different way to provide mixed authentication?

View 1 Replies

Security :: Make Login.aspx Called By A Form At Page Load And Return To It After Successful Login

Apr 12, 2010

A Login.aspx has been created to enforce security on several forms of a web site.How can it be best called by each form at page load and return to that form after succesful login? How could that requirement be declared in web.config?

View 3 Replies

Security :: Login Doesn't Work - Trying To Login Through The Production Website?

Apr 16, 2010

I am using Membership with Login control.

It worked just fine untill this week, but now it fails to login.

the odd think is that it do login from localhost, but when trying to login through the profuction site it fails to login. this is happens to all users.

View 5 Replies

Security :: Killing The Session / Login When Attempting To Login In Different Computer?

Feb 22, 2010

Let's say I have 2 computers and has internet connections. let's say in computer 1 I visit the my page and i log-in as User1 and I go now to computer 2 and i do the same thing in computer 1. All i want to do is to kill the session in computer 1 because i log-in in computer 2.

how to do that in asp.net?

View 7 Replies

Security :: How To Replace Login Form With Login State

Mar 16, 2010

I'm new to ASP.NET. I have a custom login form on my web with login and password fields and OK button. I use my own MembershipProvider to authenticate user. The login control form is in the upper right corner of page and if user is successfully authenticated, I need to display his name and html link "Logout", instead of it.

How can I get programatically user status and use it in condition for displaying login form/login status?

View 3 Replies

Security :: How To Authenticate And Login A User Without Using The Login Control

Feb 7, 2011

I have built a login form that does not use the asp.net 'login' control.

in my code behind i have this:

[Code]....

but this does not seem to maintain my user loged in... as soon as the user navigates to the next page he is loged out again...

View 3 Replies

Security :: Login Control That Authenticate On Login In Web.config?

May 13, 2010

[Code]....

the page on submit will try to check the credentials on database instead of my web.config like i need. How to achieve that.

View 7 Replies

Security :: Login Control On IIS6.0 Login Failed

Jun 14, 2010

While i was using asp.net2.0 login control on IIS6.0 (WINDOWS SERVER2003) ON INTRANET FOR Login it shows login failed even it was working right on asp.net development server. i was using asp.net membership provider for this

View 2 Replies

Security :: User Login And Admin Login On The Same Site?

Oct 21, 2010

I have a login page for my users. And I want my admin login to have its own page. Right now I have to login as an admin in the same page as the users.

How can I have 2 login on my site? I get an error if I have authentication forms on both my web.configs.

View 6 Replies







Copyrights 2005-15 www.BigResource.com, All rights reserved