Unable to unlock account despite the use of UnlockUser() method.

Question

4.00/5 (1 vote)

See more:

I am creating an e-commerce website project using asp.net. I had created a login.aspx file which inside contain a login control(build inside LoginView). And user would had they account locked if they had 2 invalid password attempts within 1 min(for testing purposes). I managed to achieve this, and in the ASPNETDB, the "IsLockOut" column had changed to "True".

However, I have encountered problem with unlocking user's account. I have used the UnlockUser() method but it seem not to be working. Even if one minute had passed, user still could not logged in into the system.

This is my code behind :

protected void Login1_LoggingIn(object sender, LoginCancelEventArgs e)
{
    System.Web.UI.WebControls.Login Login1 = (System.Web.UI.WebControls.Login)LoginView1.FindControl("Login1");
    TextBox UserName = (TextBox)Login1.FindControl("UserName");

    //Check to see if the current user exists
    if (Membership.GetUser(Login1.UserName) != null)
    {
        //Check to see if the user is currently locked out
        if (Membership.GetUser(Login1.UserName).IsLockedOut)
        {
            //Get the last lockout  date from the user
            DateTime lastLockout = Membership.GetUser(Login1.UserName).LastLockoutDate;

            //Calculate the time the user should be unlocked
            DateTime unlockDate = lastLockout.AddMinutes(Membership.PasswordAttemptWindow);

            //Check to see if it is time to unlock the user
            if (DateTime.Now > unlockDate)
                Membership.GetUser(Login1.UserName).UnlockUser();
        }
    }
}

web.config:

<add name="ASPNETDBConnectionString1"
    type="System.Web.Security.SqlMembershipProvider"
    connectionString="Data Source=.\SQLEXPRESS;AttachDbFilename=|DataDirectory|\ASPNETDB.MDF;Integrated Security=True;User Instance=True"
    minRequiredPasswordLength="8"
    minRequiredNonalphanumericCharacters="0"
    requiresUniqueEmail="false"
    requiresQuestionAndAnswer="true"
    passwordFormat="Hashed"
    enablePasswordRetrieval="false"
    enablePasswordReset="true"
    maxInvalidPasswordAttempts="2"
    passwordAttemptWindow="1"

    />

Posted 8-Jul-12 2:42am

mathidioticz

Updated 8-Jul-12 2:44am

Wes Aday

v2

Add a Solution

Comments

kornakar 9-Jul-12 3:03am

Have you debugged the code so that you're sure that the UnlockUser method actually gets called?

SASS_Shooter 11-Jul-12 15:35pm

Have you also debugged your code to confirm that the UnlockUser method is being invoked as Administrator???? Only administrators can unlock user acccounts!

Add your solution here

Treat my content as plain text, not as HTML

Preview 0

…

Existing Members

Sign in to your account

...or Join us

Download, Vote, Comment, Publish.

Your Email
Password
Forgot your password?

Your Email
This email is in use. Do you need your password?
Optional Password

I have read and agree to the Terms of Service and Privacy Policy
Please subscribe me to the CodeProject newsletters

When answering a question please:

Read the question carefully.
Understand that English isn't everyone's first language so be lenient of bad spelling and grammar.
If a question is poorly phrased then either ask for clarification, ignore it, or edit the question and fix the problem. Insults are not welcome.
Don't tell someone to read the manual. Chances are they have and don't get it. Provide an answer or move on to the next question.

Let's work to help developers, not make them feel stupid.

This content, along with any associated source code and files, is licensed under The Code Project Open License (CPOL)