how to block user after 3 invalid login attempts

Question

0.00/5 (No votes)

See more:

SQL-Server

VS2010

i want to block user after 3 invalid attempts. and i've a table which contains 2 columns usernaem and password.

Posted 5-Feb-13 22:15pm

brinda f5

Add a Solution

3 solutions

Add a Solution

Add your solution here

Treat my content as plain text, not as HTML

Preview 0

…

Existing Members

Sign in to your account

...or Join us

Download, Vote, Comment, Publish.

Your Email
Password
Forgot your password?

Your Email
This email is in use. Do you need your password?
Optional Password

I have read and agree to the Terms of Service and Privacy Policy
Please subscribe me to the CodeProject newsletters

When answering a question please:

Read the question carefully.
Understand that English isn't everyone's first language so be lenient of bad spelling and grammar.
If a question is poorly phrased then either ask for clarification, ignore it, or edit the question and fix the problem. Insults are not welcome.
Don't tell someone to read the manual. Chances are they have and don't get it. Provide an answer or move on to the next question.

Let's work to help developers, not make them feel stupid.

This content, along with any associated source code and files, is licensed under The Code Project Open License (CPOL)

DaveAuld · Answer 1 · 2013-02-05T22:34:00

Rather than roll your own, you could always look at the membership services frameworks within .Net.

Alternatively,
Add an integer FailedLogin column, increment that each failed login, set to 0 on successful login.

Add a Boolean Locked column, if failed count exceeds your trigger level, set to true.

There are other ways of doing this, but that is probably the simplest.

Muthuraja Irullandi · Answer 2 · 2013-02-05T22:43:00

Hi,
In below code I have explained the logic , how to implement that. If you need any clarifications do let me know.

C#

int NoOfLoginAttempt = 0;
       private void btnLogin_Click(object sender, EventArgs e)
       {
          //Get the User name & Password from the text box
           //Connect to database and get the user details
          if(FOUND )
          {
               if(Password is matched)
               {
                   if(NoOfLoginAttempt ==3)
                   {
                       //connect to database and set the blockFlag=true;
                       //Inform the user that, your account is blocked.
                   }
                   else
                   {

                       NoOfLoginAttempt++;
                       //Show message box to usr to re-enter the password again
                   }
               }
          }
       else
        {
           //show the message box "user not exist"
       }
   }

Best Regards
Muthuraja

Tadit Dash (ତଡିତ୍ କୁମାର ଦାଶ) · Answer 3 · 2013-02-05T23:24:00

Solution 3

Follow the answer Block user for 15 minutes after 5 login attempts[^], which suggests to use SqlMembershipProvider[^].

Thanks...

Posted 5-Feb-13 23:24pm

Tadit Dash (ତଡିତ୍ କୁମାର ଦାଶ)

how to block user after 3 invalid login attempts

3 solutions

Solution 1

Solution 2

Solution 3

Add your solution here

Preview 0