I have a little dilemma that maybe you can help me sort out. I've been working today in modifying ASP.NET's Membership to add a level of indirection. Basically, ASP.NET's Membership supports Users and Roles, leaving all authorization rules to be based on whether a user belongs to a Role or not. What I need to do is add the concept of...
Lets say that you have websites www.xyz.com and www.abc.com. Lets say that a user goes to www.abc.com and they get authenticated through the normal ASP .NET membership provider. Then, from that site, they get sent to (redirection, linked, whatever works) site www.xyz.com, and the intent of site www.abc.com was to pass that user to the...
I have a ASP.Net 2.0 website that is currently using a custom MembershipProvider and the standard login control. I would like to replace the login control with the one from DotNetOpenId. I override the ValidateUser which checks the username and password, but I shouldn't need to implement this when using OpenId. Is it possible to use O...
Hello! How can I access UserId in ASP.NET Membership without using Membership.GetUser(username) in ASP.NET Web Application Project ? Can UserId be included in Profile namespace next to UserName (System.Web.Profile.ProfileBase). Thanks in advance ...
How do you setup an asp.net sql membership role/membership provider on a production machine? I'm trying to setup BlogEngine.NET and all the documentation says to use the ASP.NET Website Administration tool from Visual Studio but that isn't available on a production machine. Am I the first BlogEngine user to use it on a non-development bo...
Hi, I'm building an ASP.NET MVC applicaiton that will have custom role and membership providers. I have been looking into adminstration tools to save us some time, WSAT has crossed my path. It looks good at a glance, it's all open source and very simple if it doesn't work I can fix it myself. First question is have any of you used W...
There seem to many ways to skin this particular cat - but which is the best and easiest to implement. It would seem that the ASP.net Membership Provider is the one that will save more time, so my questions are: What are the pros/cons of Membership? How do you integrate the auto generated user db with your own custom made db? e.g custo...
I'm using the asp.net SqlMembershipProvider and LinqToSql in a hobby/learning application. I have some user properties that I'm keeping in LinqtoSql, so my flow is: Membership.CreateUser -> MyClass.AddUserDetails. I'd like to wrap the whole thing in a transaction, so if the myclass bit fails I can roll back the membership bit. Any sugges...
I'm not very experienced at using ASP.NET, but I've used built in membership providers for simple WebForms application, and I found them PITA when trying to extend the way they work (add/remove few fields and redo controls accordingly). Now I'm preparing for MVC (ASP.NET MVC or Monorail based) project, and I'm thinking - is there a bette...
I have a bit of a hybrid situation on my hands. I'm writing an intranet asp.net web app. I don't want to use full blown Windows Authentication, because I don't have proper groups set up in Active Directory to be able to authenticate users simply based on what group they are in. Up until now, I had created a membership database, and was m...
Hi there, Is the asp.net membership system used over wcf (transport security turned on) enough for high security internet scenarios with thousands of clients spread all over the internet? I'm just evaluating possible solutions and wanted to know if this might fit in this category. If not, what would be the best method to provide high ...
I'm looking for some examples for asp.net mvc that use the integrated asp.net forms-authentication based membership providers with edit and post scenarios. I'm looking for best practices here. Let's say I have a Contacts table in my database with a Name field, and a UserId field which is tied to the aspnet_Users UserId field. I thought ...
Hi all, I am working on a simple portal application using the ASP.NET membership and login controls. I would like to use the PasswordRecovery control to send emails containing forgotten passwords, however my portal requires localization. I have an existing Content Management System that I am pulling the localized strings out of and I wo...
Hello all, We have an intranet asp.net web application which uses the OOTB ASP.net membership and role providers. Now we are planning to expose the application to internet, by moving the web server to the DMZ as represented in the following (crappy) text diagram External Internal internet --- Fi...
I am using SqlMemberShipProvider and it works well, but I wish that the MembershipUser had some additional properties such as FirstName, LastName, Phone Number, etc. What is the best way to go about this? Do I have to create a custom membership provider or is there a better way to add additional functionality to users? ...
I'm trying to unit test a piece of code that needs a currently logged in user in the test. Using the .Net 2.0 Membership Provider, how can I programmatically log in as a user for this test? ...
What solutions have people come up with to develop their web applications offline when they made the decision to use OpenId for site membership? Couple of ideas: Create two login pages one for OpenId and one for ASP.NET Membership Create local OpenId provider with test accounts Any thoughts? ...
I'm using the SqlMembershipProvider to carry out my ASP.NET website's user management. In particular, the site needs to be multi-lingual (globalized!). When I create users using Membership.CreateUser it's good that I get exceptions for things like duplicate emails, duplicate usernames etc. But what I want is to re-use that exception tex...
I want to user Role based security through the authorization section in the web.config file. Using Membership, my application will allow for new Roles to be created, and thus, the pages they can access need to be set dynamically. Can I programatically alter this section in the web.config to manage this? If so, how? ...
I'm using asp.net membership, and need to make a call to Membership.GetUser() while I have another open SQL connection, but my code dies at that call. I have MultipleActiveResultSets=True in the connection string that is used by both my code and the Membership provider. It appears that the Membership class is ignoring the MARS part of ...