asp.net-membership

问题 I use Login control and membership asp.net 4. and create user with passwrod = "12345678", my password hash in database is "h8A5hga0Cy93JsKxYnJl/U2AluU=" and passwordsalt is "UhVlqavmEX9CiKcUXkSwCw==". Then I use this code for hash password in other project: public string HashPassword(string pass, string salt) { byte[] bytes = Encoding.Unicode.GetBytes(pass); byte[] src = Encoding.Unicode.GetBytes(salt); byte[] dst = new byte[src.Length + bytes.Length]; Buffer.BlockCopy(src, 0, dst, 0, src

问题 I am working on a site that needs to restrict access to pages and documents (.pdf, .doc, etc.) to registered users. We are using the ASP.NET Membership classes to do this. But, I'm having trouble getting it to work how I would like if someone clicks a link to a document before they are logged into the site. Currently, they will be taken to the login page and upon successful login, the document will be served in a new window, but they will still be sitting at the login screen when they close

问题 Update: Forgot to mention that the app only breaks and shows that error when I try to login as asp.net membership user (sql membership provider), before that everything is fine and the app communicates with the sql just fine. I'm writing an asp.net app that's using asp.net sqlmembership and connecting to a SQL Server 2008 database remotely via VPN, Connection string: add name="MonoSqlServer" connectionString="Data Source=MONO; Initial Catalog=SMSPortal;Integrated Security=SSPI;" This works

问题 I have to design a CMS where a set of credentials can only be used once. So if a user has logged in from his computer, no-one can login with his credentials from another location until that user logs out. Now using the asp.net membership provider out the box, the IsOnline method returns a boolean that reflects the timeout window vs. the last activity date. This is not a viable option for me, because if the user just closes the browser after logging in, IsOnline will still be true. But his

问题 Can I force a log out through SQL for asp.net membership account? 回答1: No record of currently logged in users are stored in Forms Authentication mode so it would be impossible to log out a user by some SQL execution alone. Note that a data store like SQL is only used during the actual credential authentication step of the Forms Authentication lifetime: Forms authentication control flow http://i.msdn.microsoft.com/Aa480476.formsauth(en-us,MSDN.10).gif Forms Authentication generally utilizes

问题 I setup aspnet_regsql in my SQL Server called SYM\SQLEXPRESS but it is in the remote computer. As you know, there are some tables created automaticly (Users, Roles, Membership etc). How can I introduce asp.net login controls to this database. Should I change something in web.config ? (SYM means 10.10.10.8) I wathched this video series. http://www.asp.net/security/videos They just drag&drop login controls in to page. And the database created automaticly. But created their local machine. My

问题 Does anyone know how i can get the oAuth part on the ASP.NET membership moved to my MS SQL DB, rather than use localdb which its seems to be doing by default? I have my users all set up in my SQL db, however the UsersOpenAuthAccounts and UsersOpenAuthData are stored in a localdb. I am using ASP.NET 4.5, not the MVC framework... just incase that helps. Update: When i change my connection string to "DefaultConnection" the oAuth" tables are then created in my DB. I suppose this will do. But how

问题 I'm trying to store a custom UserProfile class in an ASP.NET MVC4 Internet application. UserProfile class is named "Usuario" and looks like this: [Table("Usuarios")] public class Usuario { [Key] [DatabaseGeneratedAttribute(DatabaseGeneratedOption.Identity)] public int UserId { get; set; } public string UserName { get; set; } [EmailAddress] public string Correo { get; set; } public string Twitter { get; set; } public string Perfil { get; set; } public string LinkedIn { get; set; } public List

问题 I am using AspNet Membership Provider in MVC 3. I am facing issue in change password. I have two functionality in my project Forgot password : ask security question and based on security answer change password. Admin change password: a admin can change password of any user without knowing old password or security answer. Now the issue is that for functionality # 1, i have to make changes in web config for making requiresQuestionAndAnswer="true" for change password so that i can change

问题 I am trying to set minimum password requirements for my membership provider in Umbraco. Currently my web.config membership section looks like this: <membership defaultProvider="UmbracoMembershipProvider" userIsOnlineTimeWindow="15"> <providers> <clear /> <add name="UmbracoMembershipProvider" type="umbraco.providers.members.UmbracoMembershipProvider" enablePasswordRetrieval="false" enablePasswordReset="true" requiresQuestionAndAnswer="false" defaultMemberTypeAlias="Another Type" passwordFormat