Ask a Question related to ASP.NET Security, Design and Development.
-
Gary #1
Implementing "Forget Me"
We have implemented "Remember Me" with the following call:
FormsAuthentication.RedirectFromLoginPage(txtUsern ame, cbRememberMe.checked)
We have a need now to allow users to be voluntary forgotten. Is there
anyway we can programatically take back the cookie we issued?
thanks,
Gary
Gary Guest
-
CFINPUT type="radio" w/ "value" requires "label"
On a Flash form, when you specify type='radio' and value='whatever', the value of the 'value' attribute will be displayed as a label if no 'label'... -
Implementing "Remember Me"
Our site uses forms authentication where we always store the username in a session("UserName"). We get that username from the logon screen. Now we... -
ANN: Improve your "Contract First" Web services development experience: WsContractFirst v0.2 - forget about wsdl.exe
OK, here we go ... I am happy to announce version 0.2 of a tool - a Visual Studio .NET Add-In - called WsContractFirst. The first bits (version 0.1)... -
Make text boxes "forget" values
Hi Jonathan! I believe that the IsPostBack property is what you're looking for. You can add code to the page_load event that looks something... -
"Start" "Program" "Menu" list is empty
For what ever reason my list of installed programs in my "Start" "Programs" menu is empty. Anyone know how to restore the list. Thanks for your... -
Steven Cheng[MSFT] #2 RE: Implementing "Forget Me"
Hi Gary,
Thank you for posting here. Based on your description, you want to let the
customer manually remove the FormAutentication's login cookie info when
they've logined before and chose the "remember me". Please correct me if I
misunderstanding your problem.
As for the FormAuthentication of ASP.NET. When you call the
FormsAuthentication.RedirectFromLoginPage(txtUsern ame,
cbRememberMe.checked), the user's login cookie(token) will be genrerated.
And the "cbRememberMe.checked" will control whether to persisit the client
login cookie for the next time user visit the web application. However,
this rely on that the user haven't logon out during the last visit, because
when the user logout, the login cookie and token is no longer valid. And in
Form Authentication, you can call the "FormsAuthentication.SignOut()" to do
the logout operation. As for the problem in this issue, I think you may
programatically call the "FormsAutenticaion.SignOut()" to terminate the
user's login cookie. How do you think of this means?
Please try out my suggestion to see whether it is helpful. If you have any
questions on my description, please feel free to post here.
Steven Cheng
Microsoft Online Support
Get Secure! [url]www.microsoft.com/security[/url]
(This posting is provided "AS IS", with no warranties, and confers no
rights.)
Steven Cheng[MSFT] Guest
-
Steven Cheng[MSFT] #3 RE: Implementing "Forget Me"
Hi Gary,
Have you had any progress on this issue or have you resolved it?
Please feel free to post here if you need any assistant.
Steven Cheng
Microsoft Online Support
Get Secure! [url]www.microsoft.com/security[/url]
(This posting is provided "AS IS", with no warranties, and confers no
rights.)
Steven Cheng[MSFT] Guest
Reply With QuoteSimilar Questions and Discussions
Posting Permissions
- You may not post new threads
- You may post replies
- You may not post attachments
- You may not edit your posts
