Security :: Authenticate User Logged In One Website And Redirect To Other?

Apr 8, 2010

i want to interlink between 2 applications of mine.. suppose a user has logged in one of my application and me store his username and password in cookies...nd nw i want to use those values in the cookies to log-in in other website without entering the username and password again for the other website. i mean to i want to skip the login page of other website.

protected void btnclick_Click(object sender, EventArgs e)
{
HttpCookie username = new HttpCookie("UserName", "a");
HttpCookie password = new HttpCookie("Password", "a");
Response.Cookies.Add(username);
Response.Cookies.Add(password);
Response.Cookies["UserName"].Expires = DateTime.Now.AddHours(1);
Response.Cookies["Password"].Expires = DateTime.Now.AddHours(1);
}

this is the code for storing values in cookie on click of a button. nw in 2nd application on page load i am using this code.

HttpCookie userName = Request.Cookies.Get("UserName");
HttpCookie password = Request.Cookies.Get("Password");
if (userName != null && password != null)
{
if (Membership.ValidateUser(userName.Value, password.Value))
{
FormsAuthentication.RedirectFromLoginPage(userName.Value, false);
}
}

here m able to get the username nd password but don't how to validate that username and password so that i can skip the login page of this application..m not sure about the code in BOLD above if its rite or worng.. and for Login i am using ASP login Control
in both applications.

View 3 Replies


Similar Messages:

C# - Programmatically Login To A Website And Redirect The User To The Logged In Page?

Mar 15, 2010

Right now, I have all the employees of my company login to an external website using the company id, username and a password. We are trying to integrate it into an intranet portal which should provide seamless access to this website without requiring the user to enter these credentials.

Is there any way of doing this programmatically (.NET C#)? Very similar to screenscraping, Can I simulate the appropriate POST action and then redirect the user to the logged in page?

View 3 Replies

Security :: How To Redirect Logged In User Based On Role

Nov 25, 2010

I want to know how can i redirect a user to a different page when he tries to access a page restricted to another role?

The scenario is as follows:

I have a folder "Gestao" that only allows users in role "Administrator"

[Code]....

If an anonymous user tries to access that folder he is redirected to the login page, but if a logged in user whose role is "friend" tries to access this folder he is also redirected to the login page. I want to redirect him to a page showing a message that he has no permission to access that page/area.

How can I do that? Should i have code on the Page_load event of the login page checking the user role and then redirect him to the correct page? Or is there some otherway to do this?

View 2 Replies

Security :: Creating A Website For Reset The Password If Authenticate User?

Mar 7, 2010

I am creating a website for reset the password in one of the application from the back end.

I have created a webpage with only one button called "RESET".

If user click the button, it should check the user have already access the application from the "USER" table. If no access, the message appears "You do not have an access."

If yes, next step whether the user have authenticate. If yes update the encrypted password from new table called "UMRESET" to the application table "USER" password.

View 2 Replies

Web Forms :: Authenticate Current Logged In User In Asp 3.5 - Error CS1061

Jan 26, 2010

I want to check that the user trying to log-in is authenticated and it belongs to a certain role. For this I have wrote the following code

protected void btnLoginButton_Click(object sender, EventArgs e)
{
/
if (this.User.Identity.IsAuthenticated && this.User.IsInRole("Admin"))
{
Response.Redirect("~/Admin/Default.aspx");
}
if (this.User.Identity.IsAuthenticated && this.User.IsInRole("Editor"))
{
Response.Redirect("~/Editor/Default.aspx");
}
if (this.User.Identity.IsAuthenticated && this.User.IsInRole("Moderator"))
{
Response.Redirect("~/Moderator/Default.aspx");
}
}

But when I ran this code it gave me this error error CS1061: 'Page' does not contain a definition for 'User' and no extension method 'User' accepting a first argument of type 'Page' could be found (are you missing a using directive or an assembly reference?) I have already added following directives to cs page-

using System;
using System.Data;
using System.Configuration;
using System.Collections;
using System.Web;
using System.Web.Security;
using System.Web.UI;
using System.Web.UI.WebControls;
using System.Web.UI.WebControls.WebParts;
using System.Web.UI.HtmlControls;

Can anybody tell what directie I should add for "this.User" <P.S> My application is web based and it is in ASP.Net 3.5(C#).

View 6 Replies

Security :: Redirect Logged In Users To Another Webpage In Visual Studio?

Apr 2, 2010

In the web.config file i have put some code in so that when users log in they will be re-directed to another part of the website which only registered users can access. for the admin part only the admin can log in and it takes him to the admin section and that works fine. it is only this that is causing me problems.

the code i inserted for which the user needs to be diverted to is:

<location path ="UserLoggedInFindUs.aspx">
<system.web>
<authorization>
<deny users ="?"/>

[Code]....

View 2 Replies

Security :: How To Authenticate Website With Data At Tbl_Roles Table

Jan 11, 2011

I have tbl_Roles table.

How do I authenticate my website with data at tbl_Roles table.

View 4 Replies

Security :: Authenticate This Website With Form Authentication Configured In IIS?

Feb 26, 2010

Here are the structure of my web site:

Login.aspx in the root path
UserInfor.aspx and 1.txt in the sub-directory folder named 'Restricted'

Authenticate this website with form authentication configured in IIS, and does not allow anonymous to get into the Restricted folder with the web.config file.

I think it should work this way, if I manually access the 1.txt in the browser, I should be able to view the content, and if I go to the modules configuration for this applicaiton in IIS7, find the 'UrlAuthorization' module, and cancle the listbox for 'invoke for requests to asp.net ...', I should be directed to the loginurl setting in the root web.config file when I access the 1.txt file without logging, however, I still can see the content of 1.txt.

View 9 Replies

Security :: How To Authenticate User With Password

Dec 14, 2010

Im building a home page where logged in users shall buy products. To be able to get to the buy page the user already has to be logged in. But when he shall execute the buy he has to reenter his password again to check the user a second time. How do I check if his entered password matches his user password? Im using the ASP Membership library and I have passwordFormat="Hashed".

View 3 Replies

Security :: Authenticate User By Using FormsAuthentication.SetAuthCookie?

Mar 12, 2010

I Need to Authenticate a User by using FormsAuthentication.SetAuthCookie and Check User is Authenticated in Another page Load How to Do this anyone?

Login Page

if (txtuname.Text == "mike")
{
FormsAuthentication.SetAuthCookie("mike", true);
Response.Redirect(FormsAuthentication.DefaultUrl);
}
Welcome Page
PageLoad()
{
}

View 1 Replies

Security :: Running Application Under The Security Context Of The Logged In User (LDAP Authentication)

Mar 17, 2011

We are using membership provider for LDAP authentication. It is working as it should.

But what all configuration settings I have to do so that
all the future requests to this application run under the security context of the Logged in user account not through the some default user set in IIS.

We need to have this working because all the permissions on the database are based on the logged in user.

We are using form authentication for LDAP authentication. And having impersonation = true in web.config.

View 1 Replies

Security :: Authenticate User Using The Central Authentication Service?

Mar 25, 2010

how to authenticate a user using the central authentication service?

I created a login page to enter the user name etc. I have the server for the authentication.

View 1 Replies

Security :: Access Denied For Logged User (anonymous User Is Fine)

Jan 7, 2011

I deployed a website where a logged user or an anonymous user can select data and download a XML file. The website generate the XML file in the server and then deliver it.

It works fine in my development environment, but after deployment, the anonymous user can download the file, but the logged user receive this error:

System.UnauthorizedAccessException: Access to the path 'd:HostsLocalUserheringerwebsiteUpload20110107094051.xml' is denied.

It is weird that as anonymous i can do it.

The website server help states this:

"Grant write, modify, delete access rights on website's folder

Your website executes under unique user account that by default has full control over the website's folder.
So your application can create, open, read, write and delete files and folders inside of your root folder.

There is no need and no way to change this permissions.

If, when running ASP.Net application, you still unable to create file or update it, you have to check your Web.Config file for "<Identity impersonate..." tag and remove it.

The only exception is when the application tries to modify a file or folder in "Application_Start" event of Global.asax file. This is by design that user authenticated only after the Application_Start even. Before the user is authenticated your website runs under an identity of Application Pool which is "Network services". That account doesn't have access to the folder of your website.

To make it work you eather have to move the code that tries to modify files or folders out of the "Application_Start" event of the Global.asax file or inside the event you'll need to impersonate your user by code."

But i am not using impersonate and the tag is not in my web.config.

View 2 Replies

Security :: Add Another Custom Dropdownlist In Login Control To Authenticate The User?

Aug 13, 2010

how can add another dropdown inside the login control and authenticate the user on the basis of user name,password,and location.

is there any other way?

View 5 Replies

Security :: Manual Authenticate And Set User Roles Temporarily For Session?

Feb 25, 2010

Im creating an application where the user table is stored outside the database, therefore i wont need to use the built-in asp.net user tables. However i would still like to use all the features the asp.net membership security provides i.e. restrict users from certain pages using the web.config

I would like to authenticate the user manually and set roles to that user temporarily only for that session. Is this possible?

View 1 Replies

Security :: Log Out User When Logged In Somewhere Else?

Sep 1, 2010

Our users are only only allowed to log into our site from one location at a time. If they attempt to login from a second location, how do I log them out of the first location?

View 1 Replies

Security :: User Being Logged Out Straight Away?

Jun 9, 2010

I have been creating a website using the SQLMembershipProvider. I have been using an administration account to create the back-end system for generating the users fine for about 2 weeks. I now have more users created and I can log in fine. However, when I log in as the newly created users, they can get to the page they are after, but if they refresh the page or redirect to another page, they get redirected to the login page. I have checked permissions, iis recycler, session state and security setting in my web.config (posted below) but nothing has fixed it. It cannot be IIS because it does it on my development machine as well as on the actual webserver and it works fine for the admin user.

Ttype="System.Web.Configuration.ScriptingSectionGroup, System.Web.Extensions, Version=3.5.0.0, Culture=neutral, PublicKeyToken=31BF3856AD364E35">
<section name="scriptResourceHandler" type="System.Web.Configuration.ScriptingScriptResourceHandlerSection, System.Web.Extensions, Version=3.5.0.0, Culture=neutral, PublicKeyToken=31BF3856AD364E35" requirePermission="false" allowDefinition="MachineToApplication"/>
[code]...

View 4 Replies

Security :: How To Sign In As Another User While Already Logged In

May 30, 2010

I have used membership provider to implement my system. The system administrator can list the users. What I want to do is, administrator should be able to sign-in as the selected user. I can sign out administrator by FormsAuthentication.Signout but how can I sign in as the selected user? Passwords are hashed so I can not retrieve the passwords.

View 3 Replies

Security :: How Does Each Page Get The User That Is Logged In

May 21, 2010

I've successfully made a custom membership provider that connects, queries, and updates my custom Oracle database. I found a good sample on MSDN. I also found documentatio on the provider itself. However, I cannot find anywhere example calls you have to make for the different actions within the web pages themselves. Where can I find that?

For example

How do I check if a user is already logged in? What do I do when a user hits the login button? How does each page get the user that is logged in? etc.I am not using the asp login control. I have custom form, custom data, and custom graphics.

View 3 Replies

Security :: Getting Logged In Domain User

Apr 5, 2010

All I'm trying to do is pull the current user's login name from Active Directory. I've tried User.Identity.Name.ToString, which returned nothing at all. I tried Environment.UserName.ToString, Which returned "NETWORK SERVICE" which is not the firstname.lastname username that I was expecting.

View 3 Replies

Security :: Check User Is Logged In Or Not?

Apr 14, 2010

I have one application for collection centres in the city in which ADMIN will have access to all pages in it.In which I have added functionality for admin to see Online users/offline users collection and there collection center name.How can i see the users online automatically when they will be logged in on application.Like we all see in google talk, yahoo messanger, etc like that onlyI also want to keep the option like whether to view only online user or offline users etc.I have tried the following code for getting the Ip address for the computer..But I am unable find how user should be shown as active

ip=Request.ServerVariables("HTTP_X_FORWARDED_FOR") ;
if (!string.IsNullOrEmpty(ip))
{

[code]...

View 8 Replies

Security :: Delete User Who Is Logged In?

Jul 19, 2010

If a user who is logged in wants to delete his own account, why does login status still show him loggedIn even when user has been actually deleted.What I want is when user deletes his account he should get logged out also at the same time ....How do i log him out ?

[Code]....

Line 25: Call deleteSelectedUser()Line 26: Line 27: If User.Identity.Name = LstBoxUserList.SelectedItem.Text ThenLine 28: FormsAuthentication.SignOut()Line 29: Call deleteSelectedUser()

View 5 Replies

Security :: Logged In User Data?

Aug 21, 2010

I'm using the defualt membership provider, i created a table and used the gridview on the logged in user page to show his information such as address e-mail phone zip code etc,, how can i do this without writing a code?

View 6 Replies

Security :: Display Logged In User Details

Jan 13, 2010

i have a login form where it validates 'username' and 'password' against a datbase table. After a user logs in, i would like to show their details such as image, name, etc in a detailsview.

View 16 Replies

Security :: Creating New User Changes Logged In Credentials

Nov 23, 2010

In my application, I have users request accounts, and then an admin goes in to approve or reject the account. When the admin approves the account, the create user wizard is used. After the user is created, I set the new user's role, and update a few other items in my database for user tracking, and send out an email to notify the new user of their account status. Here's the kicker: Once this new user is created, the admin, is now logged in as the new user. How is this happening? And how do I stop it? Here is my CreatedUser code, scrubbed of non-pertinent code.
[Code]....

View 1 Replies







Copyrights 2005-15 www.BigResource.com, All rights reserved