membership

SSO across different domains

How can I implement single sign on across domains? I have two or more domains and I want all of them to authenticate through one server using SqlMembershipProvider (ASP.NET 2.0 membership database) I have domain foo.com which hosts the asp.net membership database and another domain bar.com which wants to authenticate through foo.com. I f...

.NET Membership

Hi I am trying out the membership features for .NET and I am using the ASP.NET Web application Administration Tool. My question is where is the user data being stored? I checked my databases and I cannot find it anywhere. I also tried to look for any information within Providers in the admin tool but I still could not locate a path. ...

Login Membership .NET

Hi I was wondering what is the best way to force the user to login when arriving at a website, in .net. I have set up the Membership features and I was wondering what is the best way to ensure that no matter what address the user arrives at, they must first get authenticated before proceding to the page they requested. Any resources wi...

What is the best way to implement a 'Forgot your Password?' page?

I am using the Membership features in ASP .NET 2.0. I was wondering how I would implement a Forgot your password page when my application is configured to allow only authenticated users. Right now the only page that can be accessed is the login page. I want un-athenticated users to be also allowed to access the forgot your password pa...

.NET Membership Create User W/O Question Answer

Hi, can someone tell me how I can use the CreateUser method in the Membership class without having to assign a question and answer? I have disabled it in the web config: requiresQuestionAndAnswer="false" I need the status output from the CreateUser method but the overload requires a question and answer, can anyone suggest how I can g...

Membership, MembershipProvider and MembershipUser relations in ASP.NET?

I store user data in a MSSQL table called Users. What I want to is to have accessible all user's data for actually logged user (email, address, phone, if the user is subscriber etc.). I don't want to use profiles so I decided to use custom MembershipProvider (or do you know some better, less painful way?). What I don't understand is Me...

ASPNETDB management tools

Is there any tools to manage deployed ASP.NET application's aspnetdb.mdf file similar to Visual Studio's WSAT ("hummer-globe" button)? Installations of the Visual Studio and SQL Managment tools on the server are not possible. ...

How can I support anonymous users with my application?

I need to implement a user authentication system that supports anonymous users, like how this site works. Can it be done with the default asp.net membership provider? if not, what are some of the things I need to do? ...

ASP Membership Odd Problem

I am using the Membership API in ASP .NET and I have encountered the following problem on my staging server. The application works fine on my local machine. The data tables are stored on a SQL Server. Both my local and staging server point to the same DB server. When I deploy to my staging server I get the following error: Parser E...

ASP .Net Membership Access Rules

Hi I have setup Access Rules on my local server and they work fine. However when I deploy them on to my staging server the rules are not in effect. Where are the rules stored? Both my local and staging server point to the same DB server. Thank you for any insight. I set the Access Rules in the ASP.Net Web Application Administration ...

How do I use single login for multiple web apps

I want to log in for 1 application and use the same login token to authenticate the second application. I have used the same application name so both applications use the same membership provider..... I have 2 web applications, using asp.net 3.5, c#, hosted in IIS 7.0. I use the aspnet_membership provider for authentication/authorizatio...

How to update last login date if "Remember Me" set?

When a user logs in to my site, the date of the visit is stamped in the database (User table). This is handled by the (custom) membership provider. However, if the user checks the "Remember me?" option when logging in, they are (naturally) not prompted to log in on subsequent visits. As the membership provider is not employed in this sit...

Asp.Net Roles without Roles Provider not working?

Hallo, i have created a web site with Asp.Net by using Sql Membership Provider, sitemap and security trimming enabled. Based on these i have set web.config files into directories for allowing or not the users access according to their roles. After some time i removed the MembershipProvider and i creted by hand the "standard" login proc...

Integrating custom membership provider in existing solution

I have the source for the sqlMembershipProvider and the sqlRolesProvider that MS ships and I want to modify it to use my own tables and schema. I have an existing solution that will use this provider and I'd like to debug the provider code within that solution until I'm sure it works. How do I set up my provider code in a project with...

MVC Membership and RC 1.0 ?

Hey guys, Does the project - http://www.codeplex.com/MvcMembership - work with the latest release of RC 1.0 ? Does anyone know whether its been upgraded or ? i.e. seems the source hasn't been upgraded in a while and I thought it was being actively developed? Just wondering if anyone has implemented it, got it working - cares to update...

Get group membership fast

I am trying to figure out whether the current windows user either is local administrator or can use UAC to "attain" that group membership. What I've come up so far looks like this: var adminIdentifier = new SecurityIdentifier("S-1-5-32-544"); var current = WindowsIdentity.GetCurrent(); bool isAdmin = current.Groups.Contains(adminIdent...

AspNetSqlMembershipProvider and PasswordRecovery Control

Hi, My scenario is I have a asp.net 2.0 application web application which had the AspNetSqlMembershipProvider properties as: enablePasswordRetrieval="false" and passwordFormat="Hashed" But now the need has risen to store user's passwords unencrypted as clear text and display them to Superusers. I have done this by changing the AspNetSq...

ProviderKey the only option for unique identifier in MembershipUser object?

I'm trying to integrate an existing schema into a custom provider but the MembershipUser object only seems to have ProviderKey, an object, based on a uniqueIdentifier. How can I store my existing set of ID's for my users in this object as well and pull them from the DB when I get user information? I need the legacy key to access all my...

Thinking about scrapping my idea of writing a custom membership and roles provider. Opinions?

I've got a web app I'm building in ASP.NET that has the following security requirements: Must be able to integrate with a master authentication scheme that passes back a unique key to the application to indicate a user has logged in via a third-party site. Must be able to use existing user/roles tables. May use forms authentication and...

Storing custom user information in an authentication ticket instead of in Membership provider

I've been looking at implementing a custom SQL Server-based membership provider and one of my problems is that the membershipUserObject is keyed on a GUID. Since I'm using an existing ID as a key to roles and user data, this presents an interesting problem. I'd like your opinion on which option -- or whether there's another option I ha...