Professional Web Applications Themes

HttpContext.Current.User not available in the redirected page - ASP.NET Security

I am trying to use Forms Authentication and Role-Based Security: I have two pages: login.aspx and Default.aspx. -------------------------- This is what I have in the submit event handler of my login.aspx (it has an id and pwd fields): UserDAL user = new UserDAL(); if( user.Authenticate(id,pwd)) { HttpContext.Current.User = new GenericPrincipal(User.Identity, user.GetUserRoles(id)); FormsAuthentication.RedirectFromLoginPage(id,false ); } -------------------------------- Everything works fine uptil here. User is authenticated, and Gets the proper roles from the db. The problem is when I redirect to Default.aspx. I have the following code in the page_load event handler: private void Page_Load(object sender, System.EventArgs e) { string userId = Context.User.Identity.Name; ...

  1. #1

    Default HttpContext.Current.User not available in the redirected page

    I am trying to use Forms Authentication and Role-Based Security:
    I have two pages: login.aspx and Default.aspx.
    --------------------------
    This is what I have in the submit event handler of my login.aspx (it has
    an id and pwd fields):

    UserDAL user = new UserDAL();
    if( user.Authenticate(id,pwd))
    {
    HttpContext.Current.User = new GenericPrincipal(User.Identity,
    user.GetUserRoles(id));
    FormsAuthentication.RedirectFromLoginPage(id,false );
    }
    --------------------------------
    Everything works fine uptil here. User is authenticated, and Gets the
    proper roles from the db.

    The problem is when I redirect to Default.aspx.
    I have the following code in the page_load event handler:

    private void Page_Load(object sender, System.EventArgs e)
    {
    string userId = Context.User.Identity.Name;
    if(User.IsInRole("SR"))
    DisplayAuthorizedLinks(AccessLevel.SR_ALLOWED);
    else if(User.IsInRole("CR"))
    DisplayAuthorizedLinks(AccessLevel.CR_ALLOWED);
    else if(User.IsInRole("FULL"))
    DisplayAuthorizedLinks(AccessLevel.FULL_ACCESS);
    else if(User.IsInRole("ADMIN"))
    DisplayAuthorizedLinks(AccessLevel.ADMIN_ACCESS);
    }

    At this point, User roles are complete empty. I Can't figure out what is
    the case. Seems like context is not being transferred to the other page.

    I'll appreciate any help.
    Thanks
    Ali
    Ali Khawaja Guest

  2. #2

    Default RE: HttpContext.Current.User not available in the redirected page

    Hi Ali,

    You may try the way in following article to see if it will work:

    HOW TO: Implement Role-Based Security with Forms-Based Authentication in
    Your ASP.NET Application by Using Visual C# .NET
    [url]http://support.microsoft.com/default.aspx?scid=KB;EN-US;Q311495[/url]

    Luke
    Microsoft Online Support

    Get Secure! [url]www.microsoft.com/security[/url]
    (This posting is provided "AS IS", with no warranties, and confers no
    rights.)

    MSFT Guest

Similar Threads

  1. HttpContext.Current.User.IsInRole
    By Julia in forum ASP.NET Security
    Replies: 2
    Last Post: April 6th, 05:50 PM
  2. How secure is HttpContext.Current.User.Identity.Name ?
    By Mark D. in forum ASP.NET Security
    Replies: 0
    Last Post: August 16th, 07:33 PM
  3. creating custom HttpContext.Current.User.Identity
    By dSchwartz in forum ASP.NET Security
    Replies: 6
    Last Post: February 21st, 10:40 AM
  4. Replies: 4
    Last Post: December 18th, 10:44 AM
  5. HttpContext.Current.User vs. Thread.CurrentPrincipal
    By Michael Ames in forum ASP.NET Security
    Replies: 1
    Last Post: November 14th, 06:47 AM

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139