Securing your site with web.config
page 4 of 5
by . .
Average Rating: This article has not yet been rated.
Views (Total / Last 10 Days): 23288/ 52

Username & Password Storage

U/P Storage

There is another way to get username and password data rather than from a database or what we did before. By using the <credentials> tag we can provide usernames and passwords for users.

<credentials passwordFormat="Clear">
<user name="philipq" password="password" />

This goes within the <authenticate> tags and you can just add more users and needed. The passwordFormat can be Clear, MD5 or SHA1 which is the format that the passwords are encrypted in.

You then have to modify your login.aspx code like this -

<script language="VB" runat="server" />
Sub btn_click(sender as object, e as eventargs)
If FormsAuthentication.Authenticate(uname.text, pword.text) Then
FormsAuthentication.SetAuthCookie(uname.text, true)
lblmsg.Text = "Invalid username or password"
End If
End Sub

The Authenticate method takes in the username and password and returns true or false.

View Entire Article

User Comments

Title: great   
Name: jhon
Date: 2004-09-09 3:51:04 AM
this is great!!!!!
Title: great   
Name: great
Date: 2004-09-09 3:50:17 AM
this is great!!!!!!11

Product Spotlight
Product Spotlight 

Community Advice: ASP | SQL | XML | Regular Expressions | Windows

©Copyright 1998-2021  |  Page Processed at 2021-03-08 7:11:01 AM  AspAlliance Recent Articles RSS Feed
About ASPAlliance | Newsgroups | Advertise | Authors | Email Lists | Feedback | Link To Us | Privacy | Search