Authentication and Authorization

Question

0.00/5 (No votes)

See more:

Hi every body:

In my website,
when the unauthenticated user press on the link that redirect to asp.net page specific for authenticated users only,

in the first time he press ,
it redirect him to the page (that is the problem),
but when the unauthenticated user press again on another link specific for authenticated users it redirect to login page or redirect it to the page which display that : Internet Explorer cannot display the webpage.

I have two questions here:

1)- In first time he press the link:
why it redirect him to the authenticated page although he is un authenticated

2)- When he press again:
why it go to page that Internet Explorer cannot display the webpage
and not to the login page

thanks........

up

Posted 16-Dec-10 16:34pm

MrLonely_2

Updated 13-Jan-11 11:02am

v6

Add a Solution

Comments

Abdul Quader Mamun 16-Dec-10 22:36pm

Spelling check.

3 solutions

Add a Solution

Add your solution here

Treat my content as plain text, not as HTML

Preview 0

…

Existing Members

Sign in to your account

...or Join us

Download, Vote, Comment, Publish.

Your Email
Password
Forgot your password?

Your Email
This email is in use. Do you need your password?
Optional Password

I have read and agree to the Terms of Service and Privacy Policy
Please subscribe me to the CodeProject newsletters

When answering a question please:

Read the question carefully.
Understand that English isn't everyone's first language so be lenient of bad spelling and grammar.
If a question is poorly phrased then either ask for clarification, ignore it, or edit the question and fix the problem. Insults are not welcome.
Don't tell someone to read the manual. Chances are they have and don't get it. Provide an answer or move on to the next question.

Let's work to help developers, not make them feel stupid.

This content, along with any associated source code and files, is licensed under The Code Project Open License (CPOL)

Wild-Programmer · Answer 1 · 2010-12-16T18:40:00

Solution 3

Please explain this in your code:

XML

<deny users="?, *"/>

It is confusing, blocking all unauthorized and then block all :confused:

Posted 16-Dec-10 18:40pm

Wild-Programmer

Comments

MrLonely_2 17-Dec-10 4:15am

it is not the problem......
i change it and the problem still........

Wild-Programmer · Answer 2 · 2010-12-16T17:07:00

Solution 1

It seems like there is some setting problem in your web.config file. Check that authorization is set in web.config as below:

XML

<authorization>
    <allow users="*" />
    <deny users="?" />
<authorization>

Could you please post the code to add more detail to your question?

Posted 16-Dec-10 17:07pm

Wild-Programmer

Updated 16-Dec-10 17:12pm

v2

Comments

MrLonely_2 16-Dec-10 23:15pm

i added the code for u...
i am waiting..............

MrLonely_2 · Answer 3 · 2010-12-16T17:15:00

Thanks for your replay...

This code i added it to Global.asax page

C#

protected void Application_AuthenticateRequest(object sender, EventArgs e)
    {
        if (Request.IsAuthenticated)
        {
            HttpContext.Current.User = new System.Security.Principal.GenericPrincipal(
                User.Identity, Globle.GetUserRoles(User.Identity.Name));
        }
    }

and this code is under the login button:

C#

protected void btnSignin_Click(object sender, EventArgs e)
    {
        if (Globle.AuthenticateUser(txtEmail.Text, txtPassword.Text))
            FormsAuthentication.RedirectFromLoginPage(txtEmail.Text, false);
    }

this code is in web.config file inside members folder:

XML

<authorization>
            <allow roles="Admin,Members"/>
            <deny users="?"/>
        </authorization>

this code is in web.config file inside admin folder:

XML

<authorization>
            <allow roles="Admin"/>
            <deny users="?, *"/>
        </authorization>

i am waiting for u and every body....

Authentication and Authorization

3 solutions

Solution 3

Solution 1

Solution 2

Add your solution here

Preview 0

Existing Members

...or Join us