Google Authentication...
I have a MVC 5 App which is calling a WebAPI. The WebAPI uses bearer tokens for authentication. There is one method(action) in the WebAPI which I want to use the token returned by Google for...
View ArticleManaging Roles when using Windows authntication & Form authentication
As i know that when using Form Authentication with asp.net mvc web applications, then asp.net mvc will automatically create a membership database the stores the user name, password, roles, etc. and I...
View ArticleIdentity remove some item
HiI am trying to get to know the Identity and I can see that in Internet are only solutions for add item to model, column to database. But what in situation when I want to remove unneeded variable from...
View ArticleMigrating from classic asp authentication to .net
I'm currently developing a new site to migrate from classic asp that runs an authentication script and sets lots of custom session variables it pulls from a SQL table depending on who the user is in...
View ArticleHow to add role to user after logging in.
Am using forms authentication to sign in users which works very well, now I want certain users to access some folders basing on their roles. But I dont know how to add roles to users after i have...
View Articlewinhttpcertcfg and private key access issue with client certificates
Hi, I am trying to setup a client certificate such that my asp.net web app can call web service using client cert. So i setup a cert.pfx in the localmachine\my store. Now i also gave the application...
View ArticleHTTP Error 401. The requested resource requires user authentication.
I am having an issue using Windows Authentication in IIS 7.5. I am getting a "HTTP Error 401. The requested resource requires user authentication" error when accessing my page. The funny thing is, when...
View Article"No IUserTokenProvider is registered." When calling...
I tried to generate a password reset token with the following code: string Id = UserManager.FindByName("userName").Id; string code = UserManager.GeneratePasswordResetToken(Id);This resulted in the...
View ArticleASP.NET Identity
Hello,Can anybody help me more on ASP.NET Identity feature, Previously it was ASP.NET Membership and Role Provider and now thare are latest changes with new fetaure.What are the possible ways/steps to...
View ArticleHIPAA compliant
In this thread:http://forums.asp.net/t/1982675.aspx?HIPAA+Compliant+ArchitectureIt was mentioned that data isolation is a requirement. I have not seen a CFR or NIST document that states that...
View Articlesession ID chanegs on each postback
Hi friends,my queation is why session ID changes on each postback?here is my web.config:<authentication mode="Forms"><forms loginUrl="login.aspx" timeout="30" protection="All" name=".ASPXAUTH"...
View ArticleAsp.Net Forms Authentication and SecureAuth
Hi All...Does anyone have experience with Asp.Net Forms Authentication and SecureAuth?I had a call with the salesman and he left me a bit confused... SecureAuth apparently implements 2-factor...
View ArticleRe attaching a back up of an ASPNETDB
Hello,I have a project with 2 databases, one of which is the ASPNETDB.mdf.I have uploaded it OK and that all works fine. The club want to control the addition new profiles, so what I was going to do...
View ArticleRoles Working In Test Environment, but not on Server
I am using MVC 3 in Visual Studio 2012, I have set up roles so I can authenticate access to different parts of the website. Works wonderfully on my PC. My connection string is to the live server only,...
View Articlehandler invocation order
Hi Before my own AuthenticationHandler is executed I would like to execute my own DelegatingHandler (I would like to assign a session-id in my DelegatingHandler first). How can I do that?...
View ArticlePassword Change from one location and Security
Hi, I am creating an asp.net web application with "Remember Me" option during Login and it has an Edit Profile module where users can change their passwords. Here is the scenario. 1. I logged into the...
View Articleowin signin, not appearing as logged in until refresh/redirect
For an MVC5 application using owin authentication, we have an account activation link that a user receives via email. Once the link is clicked, they're taken to the MVC site which activates the...
View Articleweb service security issue?
is there security issues with posting data to same website web service? it is not https - just normal. can posted data be intercepted?
View Articleuse asp.net web api token to authenticate my asp.net mvc application
I have created a new web api project with individual user account authentication.I followed this post and everything worked as...
View ArticleAssigning Roles at User Creation
Hello,This is a topic that I have seen a lot of matrial on, but a lot of the solutions go beyond what I need. Even my most basic code is not working and I cannot figure out why.I wish to add a role to...
View Article