windows authentication and mssql server

[Tjoep]

Hi,

I've got this asp project, Authentication mode is set to Windows and the
identity impersonate is enabled.
Is there any way to find out what user is logged in? I was thinking about
something like the User.Identity object. But when i check the User.Identity,
it is logged-in as an annonymous user (spelling?)

The main thing I want to do with my project is the following:
a user opens the page and authenticates with his windows password, then he
is shown all his projects. That is, the projects he is allowed to see. All
the data of the projects are stored in an mssql database.We connect to the
database with a connectionstring that states "Trusted_Connection=true".

But somehow al the users see every project from the database.
Any help is appreciated.


best regards,
Bart

 

[Paul Clement]

¤ Hi,
¤
¤ I've got this asp project, Authentication mode is set to Windows and the
¤ identity impersonate is enabled.
¤ Is there any way to find out what user is logged in? I was thinking about
¤ something like the User.Identity object. But when i check the User.Identity,
¤ it is logged-in as an annonymous user (spelling?)
¤
¤ The main thing I want to do with my project is the following:
¤ a user opens the page and authenticates with his windows password, then he
¤ is shown all his projects. That is, the projects he is allowed to see. All
¤ the data of the projects are stored in an mssql database.We connect to the
¤ database with a connectionstring that states "Trusted_Connection=true".
¤
¤ But somehow al the users see every project from the database.
¤ Any help is appreciated.

Did you configure the web application (in IIS) for either Basic or Integrated Windows
authentication?


Paul
~~~~
Microsoft MVP (Visual Basic)

 

[Dominick Baier [DevelopMentor]]

Hello Tjoep,

grab a copy of ShowContexts.aspx [1] - this exactly shows you under which
identities your app is running - you know there are three ones in ASP.NET
you have to deal with -

Process Identity
Thread Identity
Context.User


[1] http://www.pluralsight.com/toolcontent/show_contexts.zip

 

[swat]

If you have Anonymous enabled in IIS and impersonation enabled in the
config file, WindowsIdentity.GetCurrent().Name will return
IUSR_<machinename> and User.Identity.Name will be an empty string.

What you want is to get both User.Identity.Name and
WindowsIdentity.GetCurrent().Name returning the currently logged on
user. To do this, you need to disable Anonymous in IIS (and only enable
Windows Integrated) and enable impersonation in the config file.

HTH.

 

[Tjoep]

Hi all,

I found my mistake, the anonymous acces was indead enabled.
Thanks for all your quick responses. seems to me, I can now succesfully read
the identity.

Bart