Forms Authentication and Active Directory

S

- Steve -

I have forms based authentication working, using my Active Directory for
authentication.

I have a web page that creates a user in active directory. When I was using
IIS authentication it worked fine, now it doesn't. I'm assuming it's
running in the context of the IIS anonymous user. How can I get it to run
as the user that logged in with the forms based authentication?

--

Steve Evans
Email Services
SDSU Foundation
(619) 594-0708
 
S

- Steve -

That appears to be what I want to do.

I'm implementing the "Impersonate the Authenticating User in Code" and I
have one small problem.

The second line of code is (this is in C#)
impersonationContext =
((System.Security.Principal.WindowsIdentity)User.Identity).Impersonate();

What the heck is User.Identity? I can't find the type or namespace? Is
this simply the username that is logged in. Should I be using
HttpContext.Current.User.Identity.Name


--

Steve Evans
Email Services
SDSU Foundation
(619) 594-0708


Here is how you will need to do it, scroll down to "Impersonate a Specific
User in Code"

http://support.microsoft.com/default.aspx?scid=kb;en-us;306158
--Michael
 
R

Raterus

I think you are looking at the wrong example, you're looking at code for IIS authenticated users, not Forms Authenticated users. You'd essentially be impersonating the already impersonated user! That line of code you mentioned is equilavent to <identity impersonate="true"> in web.config, and yes User.Identity is HttpContext.Current.User.Identity.

But none of that really matters for Forms Authentication. For you, you need to scroll down to the little bit more messy code, "Impersonate a Specific User in Code". You'll have the username/password they used to log onto your website, so just plug it in and have at it.

--Michael
 
S

- Steve -

Well I can get there username with HttpContexct.Current.User.Identity.Name,
but how can I get their password? Remember I'm using forms based
authentication against my AD. If I can read their password somehow in plain
text then I'm home free. I had it in plain text back at the logon.aspx
page, but is there a safe way to send that over to another page or store it
somewhere that I can retrieve?

--

Steve Evans
Email Services
SDSU Foundation
(619) 594-0708


I think you are looking at the wrong example, you're looking at code for IIS
authenticated users, not Forms Authenticated users. You'd essentially be
impersonating the already impersonated user! That line of code you
mentioned is equilavent to <identity impersonate="true"> in web.config, and
yes User.Identity is HttpContext.Current.User.Identity.

But none of that really matters for Forms Authentication. For you, you need
to scroll down to the little bit more messy code, "Impersonate a Specific
User in Code". You'll have the username/password they used to log onto your
website, so just plug it in and have at it.

--Michael
 
S

- Steve -

Oh also I tried to use the Authenticating User in Code section and where I
was having troubles compiling I simply but
HttpContexct.Current.User.Identity. It compiled fine but during runtime I'm
told that it's an invalid cast.

--

Steve Evans
Email Services
SDSU Foundation
(619) 594-0708


I think you are looking at the wrong example, you're looking at code for IIS
authenticated users, not Forms Authenticated users. You'd essentially be
impersonating the already impersonated user! That line of code you
mentioned is equilavent to <identity impersonate="true"> in web.config, and
yes User.Identity is HttpContext.Current.User.Identity.

But none of that really matters for Forms Authentication. For you, you need
to scroll down to the little bit more messy code, "Impersonate a Specific
User in Code". You'll have the username/password they used to log onto your
website, so just plug it in and have at it.

--Michael
 
S

- Steve -

Now you've got me confused.

Over at the logon.aspx.cs I can access tbPassword.Text and get the plaint
text password.

Now I can store that in viewstate in logon.aspx.cs but then how would I
access it over at my createAccount.aspx.cs file?

Thanks for all the help by the way.

--

Steve Evans
Email Services
SDSU Foundation
(619) 594-0708


Save their password in the session right after they log in, it's safe there.
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Forms Based Authentication, Except on Certain Files 1
Forms authentication with Active Directory 0
External web service and Active Directory - which authentication type? 5
Pass Credentials when opening Link 3
Forms Authentication for single directory 1
Storing Variable for use in different page 5
Active Directory authentication 3
Gracefully Handling Logged Out User 6

Members online

No members online now.
Total: 23 (members: 0, guests: 23)
Robots: 225

Forum statistics

Threads
473,756
Messages
2,569,540
Members
45,025
Latest member
KetoRushACVFitness

Latest Threads

Top