Security :: Login Plus Custom Login Using The Standaard Login Controls?
Apr 12, 2010
After reading a book I brought on ASP.net I fould the login controls to be very nice.I have set it up in my application so that customers can login using the standaard login controls and things were going smooth.But in my schema for my application I also have a table for customers (firstName, LastName, DOB, etc).And of course the customersID is used as a foreign key to tables such as Orders, Addresses (Home, Work, Postal).
The thing is how to i associate an asp.net login to a customer name in my table so that the CustomerID can be used through the application by knowing who is logged in.
View 7 Replies
Similar Messages:
Jan 21, 2010
I've set up a system with forms based authentication and using the asp:Login control. When I put in an invalid password I get the approriate invalid password message. However when I put in a valid password, it does nothing...just returns to the login page again. I'm triple checked the login info. There is no error message, and the invalid attempts counter doesn't increment. When I put a break point in the Login_LoggedIn event of the Login form, it hits it, but User.Identity.IsAuthenticated is false. I'm not 100% sure it should be true at this point, as I'm pretty new to .NET but it seems kind of odd.
My user database is stored in a sqlserver 2005 db that already existed. I've added a new connection for it.In the authorization I have
<authorization>deny
users="?"/><authorization>
View 2 Replies
Jul 5, 2010
We have created a windows application which is distributed amongst our clients. The application uses SQL Server 2008 as the back end and each client uses their own database on their own server. The databases are all exactly the same but each clients data is specific only to them.
We would like to offer our clients the ability to log-in to our website which would then login to their own database so that when they are out in the field they can perform similar tasks to what they can do with the windows app.Each of the clients databases has a user table containing their login details, permissions etc.
Our server is running on IIS and has SQL Server 2008 installed but it only contains our data and nothing of the clients.How should we go about this?
What I mean is do we need to make each client have an additional login to our main server which would then hold each clients individual connection strings etc which would then be used to connect to there specific database and then they would need to login again?? Seems like a nightmare for the user.
View 13 Replies
Oct 12, 2010
how to make login control allow users to login by either username or email address
View 1 Replies
Mar 24, 2011
I am doing a simple secured site using the login control. I would like users to be redirected to their dashboard page once they log in, but after that if they choose to browse I do NOT want them redirected based on their login status. I am using the generic template provided in VWD with the basic login setup in the template including the tabbed ASP menu control - nothing fancy, nothing custom. This is intended to be something very simple and quick. Here is the code I am using for the page load...
[Code]....
So if I do this code WITHOUT the "IsPostBack", logged in users are always redirected to their dashboard and cannot see the hompage. However with that IsPostBack test, the redirect after initial login doesn't work.
I know this is extremely basic and simple, but I am restarting with this stuff after a year away, and I need a nudge.
View 4 Replies
Aug 13, 2010
i m currently creating an article module, and i want if user wana comment on to the any particular artical, than he should login any of his mail id like gmail, yahoo hotmail etc and than post his or her comment and after than comment should go into the DB.
View 3 Replies
Jan 11, 2011
i doing on a 3 tier project a that required a login page, Im not sure how the flow go for the 3 tier...This is my BLL
[Code]....
This is my DAL
[Code]....
And lastly here is the aspx page
[Code]....
When i try to insert my NRIC and password, it's like not passing through the statement, it just say login sucessfully eventhough i put the wrong NRIC/Password/Not valid..
View 3 Replies
Sep 27, 2010
I have two application (one of this is mojo portal): [URL] for some users when they login into "app" then the login in "mojo" doesn't work and viceversa. I've set the machinekey into web.config file. When the users remove all cookies and session data the login works again. The two application are into a Web Farm. Should be ARR the problem?
View 2 Replies
May 25, 2010
I've created a page to add users, using the CreateUserWizard, I use the Login Control to login.
I have setup the config file to use my SQL server, not express
<remove name="LocalSqlServer"/>
<add name="LocalSqlServer" connectionString="Data Source=xxxx.xxxx.xxxx.xxxx;Initial Catalog=aspnetdb;Persist Security Info=True;User ID=xxxx;Password=xxxxxx" providerName="System.Data.SqlClient" />
I go to the create user page, add a user.
I can SEE the user on the database using Server Management Studio...
I go to signon and get "Your login attempt was not successful. Please try again."
I have not customized the login control in any way. (OR the createuserwizard)
HOW can I tell where the Login tool is going to get userid and password info?
How can I tell if it is not finding the user or the password does not match?
View 2 Replies
May 7, 2015
What if, I'm not using the LOGIN CONTROL but rather creating a Custom Control for Login. Is it possible to have user roles and a site map that redirects to its own destination when the user login?
View 1 Replies
May 26, 2010
I need to create an application with Forms Authentication and/or Windows Authentication. If the application is set to use mixed authentication (Forms + Windows Auth) and the user don't have a Windows user account, the login will fail and he must be redirected to a forms login page. How can I do this?
Are there any different way to provide mixed authentication?
View 1 Replies
Apr 12, 2010
A Login.aspx has been created to enforce security on several forms of a web site.How can it be best called by each form at page load and return to that form after succesful login? How could that requirement be declared in web.config?
View 3 Replies
Apr 16, 2010
I am using Membership with Login control.
It worked just fine untill this week, but now it fails to login.
the odd think is that it do login from localhost, but when trying to login through the profuction site it fails to login. this is happens to all users.
View 5 Replies
Feb 22, 2010
Let's say I have 2 computers and has internet connections. let's say in computer 1 I visit the my page and i log-in as User1 and I go now to computer 2 and i do the same thing in computer 1. All i want to do is to kill the session in computer 1 because i log-in in computer 2.
how to do that in asp.net?
View 7 Replies
Mar 16, 2010
I'm new to ASP.NET. I have a custom login form on my web with login and password fields and OK button. I use my own MembershipProvider to authenticate user. The login control form is in the upper right corner of page and if user is successfully authenticated, I need to display his name and html link "Logout", instead of it.
How can I get programatically user status and use it in condition for displaying login form/login status?
View 3 Replies
Feb 7, 2011
I have built a login form that does not use the asp.net 'login' control.
in my code behind i have this:
[Code]....
but this does not seem to maintain my user loged in... as soon as the user navigates to the next page he is loged out again...
View 3 Replies
May 13, 2010
[Code]....
the page on submit will try to check the credentials on database instead of my web.config like i need. How to achieve that.
View 7 Replies
Jun 14, 2010
While i was using asp.net2.0 login control on IIS6.0 (WINDOWS SERVER2003) ON INTRANET FOR Login it shows login failed even it was working right on asp.net development server. i was using asp.net membership provider for this
View 2 Replies
Oct 21, 2010
I have a login page for my users. And I want my admin login to have its own page. Right now I have to login as an admin in the same page as the users.
How can I have 2 login on my site? I get an error if I have authentication forms on both my web.configs.
View 6 Replies
Sep 18, 2010
I have a website secured using Forms:
[Code]....
My login page is the usual login.aspx so I don't need to set the loginurl.I have a standard loginsatus control to display the current status and allow the user to login/logout.
[Code]....
On the my development machine this works fine. However when I release it to a test site when I click the "login" link the request sent to the server includes as number of percentage-coded / so the request looks something like this:
http://wwwmysitehere.com/%2flogin.aspx%3fReturnUrl%3d%252fDefault.aspx
(returns a "A potentially dangerous Request.Path value was detected from the client (?)." error)
or without the "Default.aspx" returnurl:http://wwwmysitehere.com%2flogin.aspx%3fReturnUrl%3d%252f
(returns page not found)
View 4 Replies
Mar 11, 2010
In debug mode in VS 2008, the login page can go to the default page.
But now when deployed to IIS in windows 7, the login page cannot go to the default page and remain in login page after login.
I don't know why there is different behavior between these two.
In web config,
<authentication mode="Forms">
<forms name="FormsAuthDB.AspxAuth" defaultUrl="~/Default.aspx" loginUrl="~/Login.aspx" protection="All" timeout="20" path="/"/>
</authentication>
View 1 Replies
Nov 9, 2010
I have a test form that I've placed the login and loginname tools on. The login portion appears to work correctly in that if the user puts in the wrong info it alerts, if the info is correct all is well and the correct URL is accessed. The problem is that the username control that I placed on the page does not in fact show the username.
View 3 Replies
Oct 11, 2010
I am working on implementing a custom membership provider that works against an existing schema in my database and have a few thoughts/question.The login control will automatically call the ValidateUser method of the membership provider, so no matter how I implement the provider the only thing the login control cares about the bool value returned by this method. What I am confused about is there could be numerous reasons why a login attempt failed; user is locked out, too many tries in a period of time, etc. There is no way that I see to convey that to the control so it could display the proper message. Other properties of the membership provider such as PasswordStrengthRegularExpression have absolutely no effect on the login control as well (out of the box), I would have hoped that it would automatically somehow translate into regular expression validators, but that doesn't seem to be the case. So it seems that I need to initialize the login control properties with these settings out of the provider configuration if I want them to take on the control itself.
If the only thing that the Login control does out of the box (without manually handling events and doing the initialization as described above) is call the ValidateUser method on the membership provider, I see no way to convey back to the Login control why the validation failed or even doing things like throttling the validation requests based on a certain time window. Ultimately my question is why would I even use the membership provider then in conjunction with the login control? It seems like it was only designed for a Yes/No type response, which is very restrictive. If I want to build in logic with different messages back to the user I need to handle the login control events and call my own authentication classes that will handle all of my business requirements as well as return a custom error message back to the Login control to display to the user so they know why their attempt is invalid.
Unless I am wrong in my assumptions, it seems that the interface between the Login control as the membership API is too restrictive to be useful. Perhaps the API works better for other auth controls like ChangePassword better but for the actual Login control I don't see the point.
View 1 Replies
Nov 11, 2010
im trying to authenticate with LDAP for the 1st time. I used this URL as my guide: http://msdn.microsoft.com/en-us/library/ff650308.aspx
Im using VS 2010, .NET 4.0
Here's my web.config:
[Code]....
I have a Login.aspx page with a Login control.
I have create 1 user in my Active Directory with a login name of "john.doe" inside the Container name "Users"
The problem is It won't login and returns this message:
"Your login attempt was not successful. Please try again."
View 3 Replies
Feb 2, 2010
how to create a login form using the login controls present in the toolbox?
or should i o for creating the layout of the login myself and then code it accordingly?
View 7 Replies