MVC5 Authentication logs off after 5 minutes when published
Hi, I created new website using ASP.NET MVC5 using Invidual User Accounts authentication and it works fine when running on IIS Express (VS2013) but when i publish it, the user gets logged out after 5...
View ArticleWindows Authentication for one user is being used across all users
Hello,I have a simple .Net 4.0 application which requires users to log in with their Windows credentials. I have the application set to only authenticate with Windows authentication. All other modes...
View ArticleOwin UserInfo
What is the best practice to store userinfo in Owin? SimpleMembership creates UserInfo table. What is its equivalent in Owin?
View ArticleCreate User Wizard problem
I am using the create user wizard to create users on my site. To the best of my knowlage there is no built in way to do regex on a username so I did the regex in the code behind page and redirected if...
View ArticleHow to Customize User's Profile in ASP.NET Identity System without migration?
Hello,I have to use ASP.NET Identity System in Web Forms Application (VS 2013). It feels me tedious using Migrations and creating new fields in AspNetUsers Table.Please help me and community is there...
View ArticleReplay Attack in WebForm and WebService(.asmx)
My attacker is firing the same request multiple times from fiddler and its inserting the number of times the hacker firing it in a loop.It think this is replay attack. Can anyone tell me how to prevent...
View ArticleUnable to add aspnet acct to securoty tab
I am trying to add the following as aspnet acct under security tab: WHEELIE\ASPNETIs not getting recognized, i have done the same for few years on other servers. wheelie is teh machine name.Is there...
View ArticleSSO integration and RoleProvider
Good afternoon,I have a ASP.net application that has a custom RoleProvider which I wrote to lookup roles in a custom table and this has been working fine for quite a while.However, we just got a client...
View ArticleRecommended Security Architecture
I'm starting to work on an MVC 5.1 application, and I'd like to build a Web API project in order to back it with the aim to enable other clients to use the API in the future. The MVC application will...
View ArticleQuestions about ASP.NET Identity
Hi,I'm reading about OWIN and ASP.NET Identity in VS 2013 and I have a lot of questions, could someone point the right direction for me ? Thank you !Most of the questions are based on the article...
View ArticleWIF Logout - How to?
I create principal like this:ClaimsIdentityCollection identities = new ClaimsIdentityCollection(); identities.Add(new ClaimsIdentity(claims, "Forms")); var principal = new ClaimsPrincipal(identities);...
View ArticleHow do you secure an ASP.NET folder by Role?
I am using Forms Based Authentication. I want to implement this:<location path="~/SavAdmin"><system.web><authorization><allow roles="Savitas Admin"/><deny users="?"...
View ArticleI get error when I use myConnection insted of DefaultConnection
<div class="userinput">I can't understand this if I use name = DefaultConnection as in this example here it works <connectionStrings> <add name="DefaultConnection"...
View ArticleStore does not implement IQueryableRoleStore in ASP.Net Identity
Hello,I am tying to bind a dropdownlist with all roles in asp.net web forms app (VS 2013)...with following bind method...public IQueryable<IdentityRole> BindRoles() { var roles =...
View Articlemembership provider to web service database - shared hosting
Hi all,I'm new to learning about membership providers and cant seem to find enough information to get this working. The scenario is that i am using shared hosting and as such the conn string passwords...
View ArticleSending sensitive data using web service over https
I've a web service which is deliverying senstive data to the clients. I'm using it overhttps and it requires the users to send their userid and password (plain text) as parameters to get data....
View ArticleChange Name of FedAuth Cookie in WIF?
Is there a way to change the name of the WIF FedAuth cookie like you can with FormsAuth?Thanks
View ArticleCheckValidationResult for ICertificatePolicy
Can anyone point me to documentation on what CheckValidationResult does, if you don’t write your own? I want to add code that will dump out some information about the certificate, service point, and...
View ArticleVirtual Directory File Access. Access Denied
My development machine: MS Windows 7 Prof. IIS 75. Visual Studio 2008 Prof.My CURRENT (after many variations) setup: Within IIS, I have an application, MyDSS that has a virtual directory, AppFiles,...
View ArticleMixing custom Web API IAuthenticationFilter with ASP.NET Identity 2.0 in an...
I have an MVC 5 site that also contains an API that's using Web API 2. I want to use Identity 2.0 to control access to the web pages - simple. But I want to use Basic Authentication or some other...
View Article