Hii , when I used forms based autehntication using in MVC application at that time after login page redirect to "account/login" page what I can do for solution

Question

0.00/5 (No votes)

See more:

C#

[Authorize]
        public ActionResult Home()
        {

            return View();
        }
        public ActionResult Login()
        {
            return View();
        }
       
        [HttpPost]
        
        public ActionResult Login(User_info ui,string returnUrl)
        {
            if (ModelState.IsValid)
            {
                using (CRM_DBEntities crm = new CRM_DBEntities())
                {
                    var details = crm.User_info.Where(a => a.Username.Equals(ui.Username) && a.Password.Equals(ui.Password)).FirstOrDefault();

                    if (details != null)
                    {
                        FormsAuthentication.SetAuthCookie(details.Username, false);
                        if (Url.IsLocalUrl(returnUrl) && returnUrl.Length > 1 && returnUrl.StartsWith("/")
                    && !returnUrl.StartsWith("//") && !returnUrl.StartsWith("/\\"))
                        {
                            return Redirect(returnUrl);
                        }
                        else
                        {
                            return RedirectToAction("Home", "crm");
                        }
                        //Session["Username"] = details.Email.ToString();
                        //return RedirectToAction("Home","crm");

                    }
                    else
                    {
                        ModelState.AddModelError("", "The user name or password         provided is incorrect.");
                        return View();
                    }

                }
            }


            return View();
        }
        [Authorize]
        public ActionResult Logout()
        {

            FormsAuthentication.SignOut();
            return RedirectToAction("Index","Home");
        }

What I have tried:

<system.web>
    <authentication mode="Forms">
      <forms loginUrl="~/crm/Login" defaultUrl="~/" timeout="20" slidingExpiration="true"/>
    </authentication>

Posted 16-Feb-17 23:50pm

jay gandhi

Updated 17-Feb-17 2:13am

Karthik_Mahalingam

v3

Add a Solution

Comments

F-ES Sitecore 17-Feb-17 6:16am

You need to implement the "remember me" feature when you login, I don't have the code to hand but I believe it's a property you add to the method to log the person in as to if you want the login to be persisted or not. That should keep them logged in until they log out.

jay gandhi 17-Feb-17 6:48am

i have also tried FormsAuthentication.SetAuthCookie(details.Username, true); but still same issue arrised ... what can i do other

Richard Deeming 17-Feb-17 11:37am

You're storing passwords in plain text. Don't. You should only ever store a salted hash of the password, using a unique salt per record.

Secure Password Authentication Explained Simply[^]
Salted Password Hashing - Doing it Right[^]

If you used the built-in Identity[^] framework, rather than trying to roll your own, it would take care of this sort of thing for you.

1 solution

Add a Solution

Add your solution here

Treat my content as plain text, not as HTML

Preview 0

…

Existing Members

Sign in to your account

...or Join us

Download, Vote, Comment, Publish.

Your Email
Password
Forgot your password?

Your Email
This email is in use. Do you need your password?
Optional Password

I have read and agree to the Terms of Service and Privacy Policy
Please subscribe me to the CodeProject newsletters

When answering a question please:

Read the question carefully.
Understand that English isn't everyone's first language so be lenient of bad spelling and grammar.
If a question is poorly phrased then either ask for clarification, ignore it, or edit the question and fix the problem. Insults are not welcome.
Don't tell someone to read the manual. Chances are they have and don't get it. Provide an answer or move on to the next question.

Let's work to help developers, not make them feel stupid.

This content, along with any associated source code and files, is licensed under The Code Project Open License (CPOL)

F-ES Sitecore · Answer 1 · 2017-02-17T00:42:00

Solution 1

Change

FormsAuthentication.SetAuthCookie(details.Username, false);

to

FormsAuthentication.SetAuthCookie(details.Username, true);

Posted 17-Feb-17 0:42am

F-ES Sitecore