Accessing data via different methods and security
We have a central repository of data in sql server. Whole state should be able to access this data. Sometimes the result set is as simple as one row of data and sometimes it might be millions of...
View ArticleASP.Net Identity and Anonymous / Guest Users
I am using an extended implementation of ASP.Net Identity to run my website user accounts, where email address is used for the login name. As part of my checkout process I want to be able to offer...
View ArticleASP.NET WEB API:How can I use windows authentication for authenticating users...
I was working on a sample ASP NET WEB API project, named "Using Web API 2 with Entity Framework 6", given in MSDN (Please refer the link...
View ArticleHow to provide access only to authenticated user to particular folder in...
I am working on ASP.NET web application hosted on IIS 7.I have to provide access to only authenticated users to a particular list of pdf kept in a folder "PdfFiles" in root directory.I was trying below...
View ArticleWhat is the direct way to setup Authorization Roles in MVC?
[Authorize(Roles="Administrators")]Can this subject be explained directly? Without 500 pages of details on how authorization worked in 1997 and the inner if/then/else mechanism of each abstract method...
View ArticleHttps pages in websites not running on port 80
Hi,I have a question about redirects and port numbers.I have a web forms application which, for testing purposes, needs to be on any port but 80.(Real company site has to remain on 80 until we...
View ArticleAny security concern to let end user to upload PDF forms to a web server?
Would anyone help me to think any security concern to let end user to upload document (filled PDF forms) to a web server in a MVC project?I should restrict the file type to PDF, also restrict the max...
View ArticleIs there an add-in to manage user roles?
I have a working MVC app and would like to add roles to users. Is there any kind of add-in that can be used that would provide a screen to allow users to be given an Authentication Role?
View ArticleWhy can't users authenticate after deploying locally the ASP.NET 4.6...
<div> <div class="post-text" itemprop="text">In my ASP.NET Web Forms application I am using ASP.NET Identity 2.2 for the membership system. The Development stage works as expected. Users...
View ArticleSharing form authentication ticket between 2 applications
I am trying to share form authentication ticket between 2 applications and host on 2 different domains(each sitting on different server) I made sure the machine keys are same on both application....
View ArticleAccess to shared folder with an asp.net application using forms authentication
Hi,We have an ASP.Net application which uses forms authentication. I am trying to access a shared folder using the application and facing access denied errors.Can you help me understand how to setup...
View ArticleFile authorization fails on jQuery.js
I am running several similar web sites on IIS 7. I am testing with Firefox, so that I can act as users other than me. I have been doing all my work on site 1. I can log in as network users...
View ArticleMultiple authentication
HiWe are developing a ASP.net application that will be hosted on an intranet server and exposed to outside world through firewall.For requests coming in from the intranet, the app should use windows...
View ArticleTo get userdetails from Acive directory
hi,I am working on access user details from Active directory. I have tried this below code. but when I trying to access the user details, I am not getting any result. Please verify the code below and...
View ArticleHow to reset hash salt password asp.net c#
hi I'm new to c#, I would like to know how to make password change functionality so user can change there password any time, but i'm facing problem when I want to change password it says password is...
View ArticleShould I validate encrypted form data?
Sup! This has been haunting me for a while. I usually pass some Ids encrypted like this:public class StringEncrypt : IEncrypt { public Func<string> GetUserID; public StringEncrypt() { GetUserID =...
View ArticleLdap Authentication Change Password
public bool PasswordChange(string domain, string username, string pwd, string newpassword) { string _domain = domain; string domainAndUsername = domain + @"\" + username; DirectoryEntry psrwd = new...
View ArticleIdentityServer3 - deploy to IIS 8
Hi,Has anyone run across any documentation of deploying IdentityServer3 to a Windows 2012 R12 IIS 8 site? I can get the application to run on my dev box just fine.I deploy to the IIS 8 server. The...
View ArticleFolder Access with ADFS Implemented
Hi All,I have a website that users authenticate using our ADFS portal, how can I restrict file access to only allow a single user. I have tried using the name and email claims however I can not get it...
View ArticleManage Users and Roles
Hi Folks,I am using identity 2.0, but with MySql (adapted from http://www.asp.net/identity/overview/extensibility/implementing-a-custom-mysql-aspnet-identity-storage-provider) which is working fine.I...
View Article