I know how to grab the users windows login. I would like to use this to establish permissions for a user on my site. In order for this to be valid, I need for the user to have to verify their network password.
Is there any way to compare the password entered against the windows authentication? I would also like to be able to call the user by name instead of a login. Is there a way to get this from an Outlook address book or something?
I've been reading a lot recently on how to make up a login page. I got the form down right and i'm not sure how to get it online (mywebsite) and work properly. i know that you have to have a database of some sort too to check the login in values against but yet again i'm stuck on that.
View Replies View Relatedim working on a login authentiction for an ASP site , but im stuck as things do not work . It seeems to me that the Response.Redirect line is not being reached because when i click on LOGIN , nothing happens. Code:
View Replies View RelatedI have a secure site and created an asp page to create a word doc header and footer, when a user goes to the page they get prompted to login then when they click on open they get prompted to login again.
Im guessing its something with the basic authentication and the header footer files being in different locations.
i would like to secure my database from been modified by any users on the network.
I am using asp as my user interface. Is there any codes that i can use to allow certain users to login to my asp webage and use my interface to modify my database access?
I have a problem with basic authentication. I redirect a user from a page to another.
I don't want to get the NT prompt login, I want the user to be logged in automatically.
I want to send the username/password to the page.
I have read something about cookies and sending username/password through
the header.
With the new Windows Update 832894 it is no longer possible to use
http(s)://username:password@server/resource.ext
Is there any other way to redirect to another page and pass the username and
password.
IIS raises login dialog box prompt on browser for resources protected using basic authentication. That login prompt gives user 3 attempts to enter correct userid/password. IIS throw 401.1 error if third attempt fails. Does anyone know how to change this number of attempts. Is it possible or impossible to do ?
View Replies View RelatedI'm facing a situation where my team leader wants me to create some ASP code that will pull the user's ID (which is no problem - request the LOGON_USER server variable) and THEN pull that user's NT Permissions to determine what kind of permissions the user will have when he/she comes onto the website. There is to be no logon screen at all. The permissions cannot be determined via a database or through cookies. Only NT Authentication can be used.
I have a small hunch that the HTTP_AUTHORIZATION server variable might provide a clue, but the value of that variable is a bunch of (encrypted?) gibberish that means nothing to me, except probably the NTLM part at the beginning. Is there a way to decode the value of that variable into something coherent that I can use in my code?
how do i make my user authentication case sensitive?
View Replies View Relatedhow to create a user security and authentication. I mean in a form of logging in or registration automatically in to a database in access.
View Replies View RelatedThis is a question that has probably been answered before on the
newsgroup but probably in fragments. This is what I would like to do,
and I only have a very vague idea where to find the answer. Directions
would be useful.
1. Users arrive at the site. If they are registered they log in. If not
they sign up for registration.
2. The authentication information such as username and password are
held in a db, for security reasons the password should not be passed in
plain text.
3. When the user is logged in the session information should be held in
a cookie so that if the user returns in a short period of time they
will automatically be logged in. The cookie will also be used to
personalise certain parts of the site.
I have a SQL table with two fields (userID, and userName). I would to create a UserVerification page that would you either the AUTH_USER or LOGON_USER to validate their access. If they have access, send them page to the page(s) they tried to open and display the userName, etc; if not, redirect to an not authorized page. The trouble I am having (other than being fairly new to ASP) is:
How do I set up two session variables - one to hold the authorized status and second to hold the UserName from the UserVerfication page. Secondly, how to you set up the verification page to redirect them back to the requesting page, if authorized.
USER AUTHENTICATION (LOGIN/LOGOUT procedure)
When the user LOGS IN his user name, access rights and other
user-related information is stored into Session variables
Session("access") = "blabla"
Session("login") = "nickname"
when the user LOGS OUT (or the session expires) this
information is discarded
Session("access") = ""
Session("login") = ""
NOTE: I do NOT use IP address for user authentication.
PROBLEM:
After the first user logs in to my site, any other user (different PC behind that NAT) that opens internet browser (MSIE) and visits my site is ALREADY logged in as the first user!
It seems that the problem is only restricted to users that are "hidden" behind single IP address (using NAT). The logging works perfectly for any not behind NAT user. It acts as if only one cookie file was created for all users that access my site from behid NAT; as if the cookie was created on the NAT router and not directly on client's computer.
I have fields on a datebase called user_info with fields name, acctid, pw and blah blah blah. On the website I asked the visitors to input 0000 if they were not a client. I don't
really understand how if...then, if...else works. How can I get it to validate the name, pw, acctid
and if it equals 0000 to i guess (request.redirect "/client.bronzefactory/")?
The next thing is... the client page, for them to sign up if they haven't yet. On the database their acctid is going to be listed but nothing else. I'm guessing I have to use the update syntax right?
How would that work? I enter aa123456 and it does a = seach and redirect to a page where they fill it out and sumbits a update right? Is the statement something like this "UPDATE user_info SET name, pw= '" & name &'", '" & pw &'" where acctid= '?' <---how do i get the acctid there?
It's been a long time since I tried to solve this problem.I'm working for the INTRANET of my company, and I need to get the user login.I tried with Request.ServerVariables("LOGON_USER") or ("AUTH_USER"), but they don't work.The strange thing is that they work with Windows NT, but not with Windows 2000 Professional.
View Replies View RelatedHow can i tell which link has been clicked on a previous page, I have tried request.querystring, the thing is I have two different links posting to the same script ie
test.asp?site=main
test.asp?subsite=subsite
Or is there a away I can use the same query string and on the next page execute different sql querys. I hope This makes sense, if any more information is needed, feel free to ask.
I am trying to create a user login page that once a user has been logged in there name will appear on all pages in the top right hand corner. This is what i have so far the user logins in through my user page and then this page loads up Code:
View Replies View RelatedI have a page that logs the user in (the code will be below). When they log in correctly, or even incorrectly, they get directed to default.asp. The login is working correctly however because when I log in with a false name and password I cannot proceed to checkout. How can i direct the user (ONCE they are signed in correctly) to a customer page(custpage.asp) instead of my homepage(default.asp)? Code:
View Replies View Relatedi there i would like to ask how do i redirect the user to a page. Let's say i have an email sent to the user with a link and when the user clicks on it, the user will be brought to the loggin page and be directed viewAll.asp page. However, normaly hwne the user longs in the user will be brought to the view.asp page.
Cos currently when the user logs in the user is brought to the view.asp page regardless of the link
the database works is it checks over a database and verifies the username & pass with code. Then the user enters the site and there's a seperate table to keep a record of when users log in and log out.
Well basically I'd like to know if and how I could apply a filter using asp code? I'd like to filter out everything but <%Session("name")%> (which displays their username) so that user logged in can view their own records.
i have a log in page where the user has to log in to view any other files. when the user logs in i've set the default to view the view.asp page.however i realized that if the user was on the add.asp page and the seesion times out.. when the user relogs in again.. he would be brought to the view.asp page.
View Replies View Relatedi've developed a application in asp i want to restrict the user to login more than one at the same time i mean if user is already login then if he try to login on another window at the same time the message should b displayed u r already login.
View Replies View RelatedThe error i get is as follows:
Microsoft OLE DB Provider for ODBC Drivers
error '80040e4d'
[Microsoft][ODBC SQL Server Driver][SQL Server]Login
failed for user 'webuser'.
/dsn_inc1.asp, line 25
how can create user registration page and log in page. does anyone have any tutorials on this, links?
View Replies View RelatedI have been browsing the forums here and also on hotscripts.com and cant seem to find what I am looking for. I am trying to create a login form that will keep the user on the same page, give and error message on a bad attempt(got that part), and give a welcome message to the logged in user, and alow them to stay logged in based on their group access.
My site is .asp and my DB is Access. The registration form is already done. Cant figure it out from 3web either. Thanks for reading.
Is there a way to display NT login user name in a asp page?
View Replies View Relatedi've previously asked for a toturail or refrence to help me build up a user management :
login/register/remember passwoed / logout.
We have an intranet which is personalized using a cookie which we set. I have an outside vendor who is developing an application which will live on a seperate server. Is there a way they can read the cookie which we set to log user into their application so that we can make it a seamless transition?
View Replies View Relatedi have created a script that queries a database for a username and password, and if they are valid sets a session variable to TRUE and redirects to another page. the table which contains the user information is called "Users" with the fields "UID", "PWD", "FIRSTNAME", "LASTNAME", and "EMAIL". my question is, how can i set a session variable to use the FIRSTNAME record for the particular user that logs on? my code is below. I've already got a session variable to display the UID record in the BookingSysV1UserName session variable.
View Replies View RelatedI have an email containing link say (somelink.asp) A user clicks on this link (say from outlook). because this user is not logged into the site, the request goes to somelink/login.asp.
The user then logs in. After successful login I would like to take this user to the link he clicked on originally. Is this possible without having to pass the lionk url as part of the query string?
I have a simple ASP code that i am trying to use in order to get records from a database in SQLserver 2000 and display it in html format.
I named the file index.asp and placed it in the home directrory for IIS. When i type in http://localhost/index.asp, i get 500 errors. On viewing the IIS logs, i am noticing the following errors:
2005-10-31 20:05:16 W3SVC1 127.0.0.1 GET /index.asp |47|80040e4d|Login_failed_for_user_'test'
After searching on the internet, I have already checked "SQL Server and Windows" authentication in SQL Server security.
here is the code that i am using to connect to the database: Code:
I am creating my student website. I have completed with student registration parts (student enrolment form, personal details) but now my client requirement is that if any student come to my website , he/she needs to register first so if they log on next time , screen will comes up with their all details.
I tried to create login page and if they are not in database , they can register on my website. But I could not able to create in my website. There might be more users so need to have loop in my code.
Once user log in their name and password , it will search in database and if database found that record in it , that page will redirect to my website page which will comes up with perticular student information.
project details : XHTML (Front End), Java Script (Validation), ASP (Connectivity), MS ACCESS (DATABASE).
I am doing a webpage which allows different users from various departments to do a search/print information of people within their own department. I have a login page for user to key in the correct password and id before they enter the system. However, in order for the restriction to take place, I will have to ensure that the system recognises the person that is logged into the system.
View Replies View Related