Handling unique constraints in asp.net
Hi Folks,I have table in SQL Server which has two columns that must be unique (Email Address, and Username), I am traying to find a way to handle their uniqueness seprately.What I mean is if a user...
View ArticleAbout Impersonation
Hi All, I want to upload file into network shared location from Machine 1 to Machine 2. I' m getting error message when saving file into network location as "Logon failure : Unknown...
View ArticleHow to Protect Password in web.config
Dear All,In My Web Application, I am connecting to SSRS for generating report. I read the username and password from web.config where password is readable format. I found some approach using...
View ArticleMd5 encrytpion
Hey guys,I want to make my web app more secure so I chose md5 in order to encrypt my passwords.I'm trying to understand how exactly it works . So , correct if I'm wring, when someone enters his...
View ArticleOAuth
Hi, all!I have some questions on the OAuth implementation included with the latest ASP.NET:1) How could we implement OAuth token storage, so that the web application can make requests on behalf of an...
View ArticleSession Management
Hi, I'm just doing some research on session management. I talked to my project manager about how we manage user sessions. I'm not sure what she is saying or if she knows much about the issue.I told...
View ArticleCreateUserWizard: Automatically logs out when the wizard detects a duplicate...
I have a createuserwizard where I can create username.The problem is, when I created a username and password, and hit 'Create User,' if there is already a duplicate username, it will show the error...
View ArticleMultiple roles need different data access layer or repository permissions
I am building an MVC application that uses a database repository to access data. My application has more than one role for security.Based on roles, I need to restrict DATA access in a repository (which...
View ArticleNeed to try out LDAP/Active Directory queries from web app without having a...
I've just been posed a question by a customer and I'm trying to do some research and would like to do some proof-of-concept tests before committing to a response.We host an ageing intranet which was...
View ArticleForms Authentication Ticket Version Number in .Net 4.0/4.5
What is the significance of the Version Property of the FormsAuthenticationTicket class? In most of the web tutorials I have seen that the version property is set to 1 but msdn states that the default...
View ArticleASP .Net Identity and Database Relationships
Hello,I'm using the out of the box authentication with an MVC 5 project and EF 6. This works great and saves alot of time, but I'm struggling on how to get it linked up to my custom database...
View ArticleConverting encrypted passwords to hashed passwords - problem
Hello all,I have a database of 65,000 users - all of which have their passwords stored using ASP.NET's 'Encrypted' formats. For reasons that I wont go into, we now need to convert all these passwords...
View ArticleUsing WIF, IClaimsPrincipal only gets One Claim in RP Application even if...
Hi,I am returning 2 Claims from the STS Application (Name & Role) but RP is only showing 1 claim (Name).FederationMetadata.xml is Issuing those two claims. What am I missing:My STS code looks like...
View ArticleASP.NET Identity cookie authentication fails for sub-domain authentication
We're using ASP.NET Identity but have make a very small extension to the cookie authenticator to enable sub-domain authentication i.e. we set the auth cookie to bear a hostname like.domain.com (note...
View ArticleHow to tell if a logged in Active Directory user is in a cetain AD group
I have an app that forces Windows Auth. I'll describe below the set up, I want to be able to modifiy my menu based on the AD group that the logged in user is in. I have 2 groups allowed into the app...
View ArticleRedirect unauthorised user to message page in ASP .Net.
I am using ASP .Net (C#) login control Form Based authentication for users and administrator, I have folder Secure and Public, after passing authentication, administrator can access secure and public...
View Articleclient certificate for WCF
I have defined a web client for an external web SOAP service secured by a certificate and user name and password.I want to use the following code to instantiate the web client and set the credential...
View ArticleSystem.ArgumentNullException: Value cannot be null. Parameter name: hostname...
Hi Team,I run a 2-payment transaction code for stripe platform and i getting following error :-System.ArgumentNullException: Value cannot be null. Parameter name: hostname at...
View Articlefind the more secure way of saving user’s files
Hi,My web site users upload some sensitive data to my hosting space. I am anxious about the security of those files. So I am seeking for the best way to protect them.Someone says saving files in the...
View Articleweb app request to web service on different box
so i have an app on a webserver, user clicks a button i send a System.net.webrequest to a webservice on a different box in the network that then sends an xml response.problem:works on local maching...
View Article