I have a very odd problem. I have a web app that uses the .NET Membership API to provide login functionality. This works fine on my local dev machine, using WebDev 4.0 server. I'm using .NET 4.0 with some URL Rewriting, but not on the pages where login is required. I have a Windows Server 2008 with IIS7 However, the Membership API se...
I need a control that will accept an email address and password/verify with a password strength indicator. Has anyone seen a similar type control? ...
After I have the initial ASP.NET MVC 2 website and the default Membership provider up, how do I start adding features specific to an user? Like, say, we want to let users choose their favorite products and we want to remember these choices somehow or add a favorite color property to an user? Where should these customizations go and how...
Hi, I am creating a new Silverlight 4 business application using RIA services. This will be using a SQL-Server 2005 DB. There is no AD setup so I am required to use SQL Server Authentication. The details that the user uses to login to the system will be used to hit the SQL Server. E.g., if username="TestUser" and password="Password"...
I have an ASP.Net 4.0 application, and within it is a folder called "Forum", setup as a sub application in IIS 7. This forum package implements a custom provider for .net membership. The forum is running in .net 3.5. I'd like to setup the main site so that when users login, it logs them into both my site and the forum site. Both the main...
Hi all, I'm trying to plan a series of websites that all share many of the resources such as css/jscript/images/content etc. For this reason I wanted to run all of the websites under the same application and IIS profile, but depending on the URL being used change the masterpage and theme/skin. The ASP.NET membership database seems as i...
Hi, I'm implementing a Announcement system that is loosely based on this article: http://www.4guysfromrolla.com/articles/110409-1.aspx One of the changes the i need to do is to show a modalpopup (using the ModalPopupExtender) after the user login if the user got announcement to read. The pop-up does not show because the user get redi...
Hi, I have an ASP.NET project where I want to keep the membership (SQL Provider) in a separate database and the Roles/Profiles will be per application. Question What is the KEY that relates between the Membership database and the Roles/Profile database? Is it the UserID or UserName? I opened up the tables in separate expolrer and noti...
Scenario: I have an ASP.NET MVC 2 site using ASP.NET Forms Authentication. The site includes a Silverlight 4 application that needs to securely call internal web services. The web services also need to be publically exposed for third party authenticated access. Challenges: Securely accessing webservices from Silverlight using ...
We are creating a new site using ASP.NET membership provider for user registration and log in. Our old system encrypted user passwords so that we could recover them if we needed to. I am having a great deal of trouble figuring out if it is possible to use ASP.NET membership functions to simply encrypt the password when the user register...
I am using ASP.NET membership, and in particular a copy of the membership code included in the MVC project. I am also using elmah to log exceptions. I am getting flooded with the following when people sign out. System.Web.HttpException: Server cannot set status after HTTP headers have been sent. Here is the stack trace sent System.We...
I am trying to register a new user and also understand how to get the new userID so i can start creating my own user tables with a userID mapping to the asp.net membership user table. Below is my code: [AcceptVerbs(HttpVerbs.Post)] public ActionResult Register(string userName, string email, string position, string password, strin...
I have a microsoft membership provider. in my application I'm using the variable which saving in cookie (tried session). The problem what I have: my variable expired before a authentication automatically logout. How can I set the time of membership provider automatic logout and expiring variable after the same time, 30 mins for example....
I need to update existing users IsApproved status in the aspnet_Membership table. I have the code below that does not seem to be working. The user.IsApproved property is updated but it is not saving it to the database table. Are there any additional calls I need to make? Any suggestions? Thanks. /// <summary> /// Updates a user...
I have a membership provider in my web.config with the passwordStrengthRegularExpression attribute set. I dropped an asp:CreateUserWizard in a page and tried to create a user with a weak password (ie didn't match the regex in the web.config). The validation fails and displays the message Password length minimum: 7. Non-alphanumeric ...
What is the best practice? Any samples? I did a search and could not find anything. I am thinking an Xml file with prohibited words which I could check against during registration and also be used elsewhere on the site to check for prohibited words. The easy and quick way I thought was in the AccountModel.cs file and adding an attribut...
In the ASP.NET MVC site I am building, I have some methods where the users who use them have to be in a certain role (as it happens, if they're not, it means that they're suspended from the site). To accomplish this, I'm using the [Authorize(Roles="RoleName")] attribute without any difficulties. However, I don't quite understand what ha...
I'm contemplating how I should implement authorization and authentication with ASP.NET and MVC2. Lets refer to this as a user system. I have seen three types of solutions in the wild: Use the built-in ASP.NET Membership system (NerdDinner) Roll your own (Shrinkr) Create an abstraction layer for the ASP.NET membership (Tekpub's mvcstar...
Really sorry because this is almost "please send me the code" - although really it's "please send me a link to another discussion" I am setting up a .net membership system and need to validate users from the email address they provide via a "click here to validate your account" type link. Just wondered if anyone knew of any good tutori...
I'm using asp.net's built-in membership provider with security q'n'a enabled against a SQL Server 2005 db, and when requesting a password reminder, the process is never completed for some users (works fine for some). In those cases, when the user submits their answer, the page reloads, showing their security question again, but never ver...