C# Multiple Login Pages Based On Which Folder User Attempts To Access?
Jul 15, 2010
I have developed an application in ASP.NET 3.5 which utilizes the Membership and Roles Providers and Forms Authentication to manage user access and profiles.
There are various area's of this application that are only to be used by an admin users whom login using their email and password and the rest of the users log in using their telephone number and password via their iPhone.
For simplicities sake, I would like to have two different login pages, one that is formatted for the iPhone and performs the correct validation for users adding a telephone number and the other for the application administrators.
I want to redirect the user to their respective login page based on which folder they are attempting to access. For example say I have an application structure like this
I want to display a menu (which will be strongly typed with it's own unique model) across all pages only if a user is logged in.What menu items are available depend on the user's role and also I'll need to hit the repository to get numbers like "x Messages", etc
Been scratching my head for a simple solution here. Don't want to create something that need changes all over the place.All my controllers derive from a BaseController, all my Models from BaseViewModel....probably where I'll be implementing functionality for this.
I have login page, users enter their username and password ... I want when users enter their password wrong after 3 time they can't enter password until 24 hours after that they can try it again, How i can do it?
I have a simple intranet site. It has a role based authorization in the web.config file.
Any user's in a specific role called as "Apr-Sales-Writers" will be authorized to use those pages. If not, they will not be authorized. So far so good. Works fine. But we added additional functionality where a new active directory group (means new role) has to be added and user's belonging to this new AD group should be given access to only specific .aspx pages on the intranet site. I am using a web.sitemap and it looks like this.
If the user's belong to say AD group "Apr-Sales-Writers", they should access only default.aspx and salesData.aspx pages. User's belonging to new AD group (which I did not include in the web.config file below), should have access to other .aspx pages.
I am creating a new application..I created a login page successfully..Now I need to modify the login page ..Only 3 attempts only allowed for a user ..If the user wrongly enters the password more than 3 times(within 5 min) his account must be blocked..And error message must be shown as You cant access your page.
Language-Asp.net(c#) 2008 Sql Server 2005 well i designed a simple login form which checks the user and password with sql server but now i want to make it a little bit more secured basically i want if a user attempts wrong password with more then 3 /5 times. his id or username should be locked(which i will be running a update procedure) or he must be redirect to denied.htm and one more thing he should be able to get only n only 3/5 attempts whether he opens firefox browser,internet explorer ,safari,google chrome or any other browser
The simplest example is when you try to log to this site. So basically i would like to do the same thing.
But since i'm now to this area... So any thoughts? Do i capture the session?The viewstate,The ip?Is there a standard way on web.config and - or on the login button that i'm missing?
well i designed a simple login form which checks the user and password with sql server
but now i want to make it a little bit more secured
basically i want if a user attempts wrong password with more then 3 /5 times.
his id or username should be locked(which i will be running a update procedure) or he must be redirect to denied.htm
and one more thing he should be able to get only n only 3/5 attempts whether he opens firefox browser, internet explorer ,safari,google chrome or any other browser
In one of my website I need to prevent direct access to non .aspx pages in a protected folder. Authentication works fine if I am going to [URL] but in one case my users are uploading html pages in that folder and if somebody cut and paste [URL]the page can be seen without the authentication process to be activated.
I have table called ROLE with fields (id,name,permission) example values (1001,madhu,hr)
I have another table called LOGIN with fields(id,DOB,password) example values(1001,24101989,madhukumar)
What i want is , if i login using the LOGIN table ,it check the id and permission in the ROLE table , if the permission is 'hr' it enable to access the menu , or if the permission is any other it just print the error message ("no permission")
Note: menu is placed in master page , but login is not in the master page ...
I have read the many posts of people trying to use two different login pages: one for users and one for admins. My question is very different. I have a Site.master page with a LoginView and LoginControl. I then have three root level pages Default.aspx, About.aspx, and Contact.aspx that derive from the Site.master. All three pages are set in the web.config to be allowed to all users. I then have a MemberPage in a Member folder which is only accessible to authenticated users. What I want to have happen is to be able to login from either the Default, About, or Contact pages and then be directed to the MemberPage.
Now when the guest user tries to access this he is redirected to the Login page. I want the user to either sho a popup that user cannot access it or just stay on the same page with some error message in a label on that page... Here is more code in webconfig
I set up a secured folder in my website. When I access this folder via web page, it pop up a windows login form to ask for user name and password. I would like to code the asp.net page or java script to access this secured folder with username and password without pop up the login form. find the method for asp.net page accessing the secured folder automatically.
I have a login control in my login page. The user can attempt to login unsuccessfully for 5 times after that the user account will get locked and the administrator can unlock the locked user.
Here, i need to display the login attempt count along with the error message "your login attempt failed". I have tried with the viewstate but it is not working fine.
i have a problem with forms authentication. i have a website and want to restrict access to an especific folder. i want the access to this folder be made via the login form this is what i have in the web.config
Can I have some codes in login attempts. For example, the user tried to login for three consecutive times and then he failed. The session he gets will be locked for about 30 seconds.
// create a connection with sqldatabase [code]......
so a user like Staff or even Administrators loging to same Index.aspx. i want to change it to different web pages. how to change sites for each user types. i have seperate user types. and i have taken UserType in the Authentication function.
I have atleast 10 websites that have different css,html,javasacripts and webconfig. But the same code behind files.With this design everything is hard to maintain. So I decided to work on it and I started moving all the queries in the code beghind file to stored procedures. Since every website uses the same database.
What I have decided is to make use of themes and multiple master pages? IS this the best way to go about it?
Also lets say I have two templates. There is site A and site B. both using different templates. And have pages Home About Us and Contact.
Now would I be creating three different masterpages? for each template so 6 in total? ( since none of the templates are supposed to look the same)
or Should I just create two masterpages? if so how would I manage the html of the page so it looks different?
I'm using the built-in membership controls and classes to manage authorization and authentication in my app. Here's what I want to do: If the user is in "Manager" role, I want to send him/her to the manager page no matter where he/she came from. If the user is in "Supervisor" role, I want to send him/her to supervisor page no matter where he/she came from. However, if the user is not in any role, just a registered member, I want to send him/her back to where he/she came from as stated in ReturnUrl. If no, ReturnUrl is specified, I will send him/her to the home page.
On my login page, I'm using the Login server control but in my code behind, there's no method wired to the control because the control takes care of everything. I assume I need to add a method and wire it to the submit button, is that right? If so, I'll have to really handle the login event which means I'll need more info about how to do that.
I'm creating a login page. I want to limit the number of login attempts, say not more than 5, in case of wrong.I want to do it without using the asp:loghin controls and the membership.How can restrict it??
I have folder in my asp.net website ..namely admin
i have following pages inside admin folder ... login.aspx, home.aspx, welcome.aspx ...
i want if user directly open page ... welcome.aspx or anyother page inside admin folder then it automatically redirect to login.aspx till they login using admin id and pass ...
how to do this setting in web.config...using authorization vb.net