How to apply Roles & Members based read/write securtiy to Pages, Sections,...
I've built a number sites using classic ASP type security and have continued using the same methods in ASP.NET. However, I now am looking for recommendations for a better or best practice way of doing...
View Articlepenetration testing for .net web application
Does microsoft provided any penetration testing tool for IIS .net web application ?Any ideas ?
View Articlelogin failed after changing password
Hi...Can you tell me what is wrong with the following code? It changes password with the new one, saves it successfully to the DB, sends an email to the user BUT when I try to login with the new...
View ArticleONE DATABASE TO BE VIEW FOR USER1 LOGIN OTHER DATABASE HIDE FOR USER1 LOGIN
HI,I created a login ( USER1 ) IN SQL SERVER 2005. We Have a Database Called TRANSDATA and 40 more databases. I want when USER1 login to Sql sever ,The TRANSDATA only visible to USER1 login and...
View ArticleImplement Custom FormsAuthenticationModule and replace the default
I cannot find any information on how to implement custom FormsAuthenticationModule.Specifically, I want to implement a MyFormsAuthentication that mirrors most features ofFormsAuthenticationModule, or...
View Articlecalling my asp.net mvc action method from external applications in a secure...
I have two asp.net mvc web applications; one is an ERP system for managing our assets and the other is a scanning service that offers services to scan servers and vms and update the ERP database with...
View ArticleHow to populate a dropdown list with the usernames from an organizational...
Hello All. I found this thread (http://forums.asp.net/t/1651004.aspx) and it appears to be on track with what I would like to accomplish. However, I need to modify the code to provide the users...
View ArticleWhen one has checked identety against Active Directory noone else can do that
HiI use Active Directory to log on to my webpage. The user enter username and password and then I check with AD and if ok I set a session variable, get some settings from the systems database and then...
View ArticleSecurely calling an asp.net mvc action method Using WebClient or calling it...
I have the following ScanServer() action method inside my asp.net mvc web application, which exposes a WebService :-[HttpPost] public async Task<ActionResult> ScanServer(string FQDN) { string...
View ArticleImpersonation seems to cache credentials and give them to other users!
Hi all,I'm currently developing my first ASP.Net site, which is a single page site that will be intranet published to allow end users to carry out VMM functions by running Powershell commands on a...
View ArticleWeb Config Authorization
I have only a few users with admin privileges to edit. That's why I decided to include the authorization in the web config file. In the .For administration purpose I created an admin folder and I added...
View Articlehow set a method, before open a directory?
hihow set a method, before open a directory?- using asp.net web form- without membership (user,role)example :/admin_page or /admin_page/content or /admin_page/optionsbefore show Default.aspx (or All...
View ArticleIs it secure to send emails from my website using gmail smtp over http
I have the following method to send email from my asp.net mvc-5 web application as part of a contact us section :- [HttpPost] public ActionResult Contact(Contact c) { // if (ModelState.IsValid) {...
View ArticleLogin failed for user 'DomainName\ComputerName1$'.
My Application is hosted on Server1. My database is on Server2I am getting Login failed for user 'Domainname\Server1$'. Error.I have windows and forms authentications enabled .How can I fix this issue.
View ArticleActive Directory single sign on in asp .net web application
HiI have active directory installed in the server and my system is registered with active directory. Normally I have logged into the system as an active directory user.I have a web application (asp...
View ArticleOWIN and Authorization Code Grant Flow - Always Bad Request (Invalid Grant)
I've set up the following in Startup.Auth.cs: public partial class Startup { public void ConfigureAuth(IAppBuilder app) { // Enable the Application Sign In Cookie. app.UseCookieAuthentication(new...
View ArticleHow to centralize user management in membership?
Hello All,I want to build 6 websites (website1,website2,etc..), But I want to manage all users specific to application in common place.Lets say, In web app1 is only for user management and common site....
View ArticleSeparate internet and intranet users data access
I am in the process of deploying an asp.net application hosted by one of our company server. It will be made accessible without login to staff via intranet and to external partners via internet....
View ArticleChange password to LDAP account (not AD)
<div paragraphname="paragraph0">Hi,</div> <div paragraphname="paragraph1">I have a problemona webpagetrying tochange the password ofan account on aLDAPserverLinux.</div> <div...
View ArticleBest practice to encrypt data using Dot Net?
Hey everyone, I am designing a ERM (Electronic Medical Record) system and I was hoping someone knew off hand two things.1. What is the process of encrypting/decrypting data using a helper class? Code...
View Article