DotNetNewsgroup.com  
web access to complete list of Microsoft.NET newsgroups
   home   |   control panel login   |   archive  |  
 
  carried group
academic
adonet
aspnet
aspnet.announcements
aspnet.buildingcontrols
aspnet.caching
aspnet.datagridcontrol
aspnet.mobile
aspnet.security
aspnet.webcontrols
aspnet.webservices
assignment_manager
datatools
dotnet.distributed_apps
dotnet.general
dotnet.myservices
dotnet.nternationalization
dotnet.scripting
dotnet.security
dotnet.vjsharp
dotnet.vsa
dotnet.xml
dotnetfaqs
framework
framework.clr
framework.compactframework
framework.component_services
framework.controls
framework.databinding
framework.drawing
framework.enhancements
framework.interop
framework.odbcnet
framework.performance
framework.remoting
framework.sdk
framework.setup
framework.webservices
framework.windowsforms
framework.wmi
frwk.windowsforms.designtime
lang.csharp
lang.jscript
lang.vb
lang.vb.controls
lang.vb.data
lang.vb.upgrade
lang.vc
lang.vc.libraries
  
 
start date: Tue, 21 Aug 2007 18:10:54 +0100,    posted on: microsoft.public.dotnet.framework.aspnet        back       

Thread Index
  1    chris fellows
          2    Nathaniel Greene am
          3    Steve C. Orr [MCSD, MVP, CSM, ASP Insider]
          4    chris fellows


Login mechanism for web apps    
I am writing a generic login mechanism for our web apps using ASP.NET / C# 
(VS2005). Various web pages need to present a login dialogue for the user to 
re-enter their application-level username & password every 20 minutes.  The 
dialogue would pop up, the user would enter their login details again and 
they would return to where they were previously in the web app.  This 
dialogue would be displayed (if necessary) on page load. Ideally the login 
dialogue will be a popup.  Authentication will require access to a database.

Is there an easy way to implement this so that only minimal changes are 
needed to web pages for them to use this mechanism?  I want to avoid having 
the same code in every web page that needs to use the mechanism.  Is there 
any way to share this code, possibly in a C# dll?
Date:Tue, 21 Aug 2007 18:10:54 +0100   Author:  

RE: Login mechanism for web apps    
If you are using .NET 2.0 you should probably just use the Web Parts / 
Membership provider. This takes care of everything for you and you can 
control whether the user remains logged in, and when the user should time 
out. 
This also provides a very seamless integration with your existing website - 
meaning that all you have to do is add the login page, and in your 
configuration deny anonymous access to the folders and set the login page. 
Then the only condundrum would be if  you already have an existing user base 
and the matter of syncing the two. 
It also comes with a built in site administration, which is albeit pretty 
shitty - quick and dirty. 

"chris fellows" wrote:


> I am writing a generic login mechanism for our web apps using ASP.NET / C# 
> (VS2005). Various web pages need to present a login dialogue for the user to 
> re-enter their application-level username & password every 20 minutes.  The 
> dialogue would pop up, the user would enter their login details again and 
> they would return to where they were previously in the web app.  This 
> dialogue would be displayed (if necessary) on page load. Ideally the login 
> dialogue will be a popup.  Authentication will require access to a database.
> 
> Is there an easy way to implement this so that only minimal changes are 
> needed to web pages for them to use this mechanism?  I want to avoid having 
> the same code in every web page that needs to use the mechanism.  Is there 
> any way to share this code, possibly in a C# dll? 
> 
> 
>
Date:Tue, 21 Aug 2007 11:22:02 -0700   Author:  

Re: Login mechanism for web apps    
The typical solution is to use Forms Authentication, which is built into 
ASP.NET.
Here's more info:
http://www.dotnetbips.com/articles/2fdd29a0-9313-4439-9e24-4e2a9f2cb897.aspx
http://www.dotnetbips.com/articles/8de08fdb-1150-47f5-9831-133dd25b308b.aspx

Combine that with the new login controls of ASP.NET 2.0 and you've got
pretty much everything you need with virtually no code required.  Here's
more info on that:
http://SteveOrr.net/articles/SecureYourSite.aspx

-- 
I hope this helps,
Steve C. Orr,
MCSD, MVP, CSM, ASPInsider
http://SteveOrr.net


"chris fellows"  wrote in message 
news:%23pV18YB5HHA.1212@TK2MSFTNGP05.phx.gbl...

>I am writing a generic login mechanism for our web apps using ASP.NET / C# 
>(VS2005). Various web pages need to present a login dialogue for the user 
>to re-enter their application-level username & password every 20 minutes. 
>The dialogue would pop up, the user would enter their login details again 
>and they would return to where they were previously in the web app.  This 
>dialogue would be displayed (if necessary) on page load. Ideally the login 
>dialogue will be a popup.  Authentication will require access to a 
>database.
>
> Is there an easy way to implement this so that only minimal changes are 
> needed to web pages for them to use this mechanism?  I want to avoid 
> having the same code in every web page that needs to use the mechanism. 
> Is there any way to share this code, possibly in a C# dll?
>
Date:Wed, 22 Aug 2007 02:53:14 -0700   Author:  

Re: Login mechanism for web apps    
For the Login control, how do you control when the login dialogue appears? 
What changes would you make to the pages that would need to use it? Do you 
have to redirect them to the login page and then redirect them back from the 
login page?

Can a user be forced to re-enter the login details every N minutes?

Can the Membership do the authentication via a webservice which would 
authenticate the user on the database? (We may want to make our 
authentication mechanism available to VB6 applications too.)
Date:Wed, 22 Aug 2007 18:54:52 +0100   Author:  

Google
 
Web dotnetnewsgroup.com


COPYRIGHT ?2005, EUROFRONT WORLDWIDE LTD., ALL RIGHT RESERVE  |   Contact us