How to show error message for login fail

Question

5.00/5 (1 vote)

See more:

hi,

I am trying the execute the code which throw's an error, if user fails to login after 3 attempts using the following code below:

C#

private Task<HttpResponseMessage> Unauthorized(HttpRequestMessage request)
        {
            var response = request.CreateResponse(HttpStatusCode.Unauthorized);
            response.Headers.Add(BasicAuthResponseHeader, BasicAuthResponseHeaderValue);
            var task = new TaskCompletionSource<HttpResponseMessage>();
            task.SetResult(response);
            return task.Task;
        }

        private api_login ParseAuthorizationHeader(string authHeader)
        {
            string[] credentials = Encoding.ASCII.GetString(Convert.FromBase64String(authHeader)).Split(new[] { ':' });
            if (credentials.Length != 2 || string.IsNullOrEmpty(credentials[0]) || string.IsNullOrEmpty(credentials[1])) return null;

            return new api_login()
            {
                username = credentials[0],
                password = credentials[1],
            };
        }

        private bool TryGetPrincipal(string userName, string password, out IPrincipal principal)
        {

            // data access in a repository or separate layer/library.
            api_login user = repository.Validate2(userName, password);

            int failedAttempts = 0;
            if (user.username != null)
            {
                // once the user is verified, assign it to an IPrincipal with the identity name and applicable roles
                failedAttempts += 1;
                principal = new GenericPrincipal(new GenericIdentity(user.username), null);
            }

            else if (failedAttempts == 3)
            {
                //error message code
               
            }
            principal = null;

            return false;
        }
           
    }

** Updated Code **

C#

else if (user.username == null)
            {
                //throw new HttpResponseException(Request.CreateErrorResponse(HttpStatusCode.NotFound, String.Format("this identity does not exist")));
                throw new HttpResponseException(HttpStatusCode.NotFound);
               
            }

I tried adding "HttpResponseException" but I cannot seem to get error message on the client-end, except its a blank screen, when I type in the incorrect user credentials. Please help.

Thanks in advance.

Posted 25-Feb-14 23:57pm

miss786

Updated 26-Feb-14 22:30pm

v2

Add a Solution

Comments

ZurdoDev 26-Feb-14 7:54am

Failed attempts should be kept track of in the database, in my opinion.

Where exactly are you stuck?

miss786 26-Feb-14 9:04am

Thank you for your response back. I am not sure, how to go about constructing a code to throw custom errors, if the username does not match or if the username is null. Is their some specific library, i should look into for creating custom error handlers? Thank you for your 'failAttempt' variable feedback, i shall also look into that. Any help much appreciated.

ZurdoDev 26-Feb-14 9:30am

I don't understand why you want custom errors. However, an easy way is to do

throw "This is a custom error."

miss786 27-Feb-14 4:32am

Thank you for your reply. Apology for not making my question clearer, but I would like to show exception, when the user fails to login on the client-side. I updated my code but I still cannot see any error message, when i leave the user credentials blank or input incorrect values. Thank you for your help.

1 solution

Add a Solution

Add your solution here

Treat my content as plain text, not as HTML

Preview 0

…

Existing Members

Sign in to your account

...or Join us

Download, Vote, Comment, Publish.

Your Email
Password
Forgot your password?

Your Email
This email is in use. Do you need your password?
Optional Password

I have read and agree to the Terms of Service and Privacy Policy
Please subscribe me to the CodeProject newsletters

When answering a question please:

Read the question carefully.
Understand that English isn't everyone's first language so be lenient of bad spelling and grammar.
If a question is poorly phrased then either ask for clarification, ignore it, or edit the question and fix the problem. Insults are not welcome.
Don't tell someone to read the manual. Chances are they have and don't get it. Provide an answer or move on to the next question.

Let's work to help developers, not make them feel stupid.

This content, along with any associated source code and files, is licensed under The Code Project Open License (CPOL)

Pranav-BiTwiser · Answer 1 · 2014-02-27T06:59:00

Solution 1

ScriptManager.RegisterStartupScript(this,GetType(),"showalert","alert('Only alert Message');",true);

Posted 27-Feb-14 6:59am

Pranav-BiTwiser