Authenticating a user by secure login

H

H

I have designed a C# application that will populate a database with customer
information and email a randomly generated password to them. I would like
them to have the ability to update their details on a form via secure login.
I'm looking for a web tutorial or book recommendation that can explain the
correct way to validate an email address and password from a database and
allow the changed password to be written back. It would also be useful to
know how to process forgotten passwords.
 
G

Gopal \(FMS, Inc.\)

The following link on Microsoft's website may be of some help:
http://msdn.microsoft.com/library/d...uide/html/cpconSimpleCookieAuthentication.asp
Item # 4 of the article is where you will have to implement your custom
validation of the email address and password against your database.

As far as the forgotten passwords is concerned, I would take the following
approach. I would implement code that retrieves password from the database
given an email address and use SMTP (look up SmtpMail.Send function) to
automatically email out the password to the email. This ensures that the
email address is genuine and only the person that has ownership of the email
account has access to the webpage. http://ASP.NET may be a good resource for
this.

Hope this helps.
--
Gopal Rangaswamy
Microsoft Certified Solutions Developer
FMS, Inc.
<http://www.fmsinc.com/consulting>
<http://www.fmsinc.com/dotnet/SourceBook/>
 
H

H

Just what I was after, thanks

Gopal (FMS said:
The following link on Microsoft's website may be of some help:
http://msdn.microsoft.com/library/d...uide/html/cpconSimpleCookieAuthentication.asp
Item # 4 of the article is where you will have to implement your custom
validation of the email address and password against your database.

As far as the forgotten passwords is concerned, I would take the following
approach. I would implement code that retrieves password from the database
given an email address and use SMTP (look up SmtpMail.Send function) to
automatically email out the password to the email. This ensures that the
email address is genuine and only the person that has ownership of the email
account has access to the webpage. http://ASP.NET may be a good resource for
this.

Hope this helps.
--
Gopal Rangaswamy
Microsoft Certified Solutions Developer
FMS, Inc.
<http://www.fmsinc.com/consulting>
<http://www.fmsinc.com/dotnet/SourceBook/>
Click to expand...
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Problem with a login script, SESSION user rights and put this together so it works with the other pages and MySQL. Code examples. 2
Authenticating windows user 1
Login 2
How to Create a random password generator in a separate window 4
Insight on a coding project. 1
Create user within the Login Control 1
Create user Wizard / Login Control 2
Cannot open database "aspnetdb" requested by the login. 0

Members online

Total: 27 (members: 2, guests: 25)
Robots: 339

Forum statistics

Threads
473,755
Messages
2,569,536
Members
45,014
Latest member
BiancaFix3

Latest Threads

Top