Authentication using web.config Credentials

Wednesday, April 22, 2009

In one of my projects I have been asked to implement temporary security on sepcific module for internal usage and it was also suggested that I will not be putting more efforts on the same. First thing came in my mind was Membership/RoleProvider, but as I advised my planned solution they surprised me with the decision that I will not be using these providers and I should be using something more simpler and I was like Duh!!!

Any way I started thinking about a much more simpler solution as I have been alotted the biggest time period ever of 10-15 minutes max for this task :).

OK now I guess I should come to the point. During this process I realised that web.config credentials can be a good option as I personally don't wanted to implement any hardcoded authentication. It is very straight forward and simple but I had some problems implementing that solution so I thought to blog about how to authenticate using credentials incase if any one require the same.

All you need to do is to add some credentials in your web.config like this:

In the code block it can be authenticated like this:

if (FormsAuthentication.Authenticate(this.txtUserName.Text, this.txtPassword.Text))
{
  FormsAuthentication.SetAuthCookie(this.txtUserName.Text, false);
  FormsAuthentication.RedirectFromLoginPage(this.txtUserName.Text, false);
}
else
{
  Response.Write("Invalid login details. Please try again.");
}

I hope it will be helpful for others as well. And yes it can be done in 15 minutes :)

really a gud thing!! thnx a lot

Mukesh RAna - Wednesday, April 22, 2009 11:59:52 AM

Excellent,

Right when I needed...amazing that you have posted this only a couple of hours ago!

Bradut Dima - Thursday, April 23, 2009 4:40:25 AM

This is really nice stuff. I will try now.

satalaj - Thursday, June 4, 2009 5:17:01 AM

Great post, just what i needed. it was so long ago i did a site with only one user so i forgot who to do..

thanks

Jedi302 - Friday, November 13, 2009 1:48:23 PM

Bad times make a good man.

-----------------------------------

crestron ipad appDA - Wednesday, December 22, 2010 8:55:06 AM

-----------------------------------------------------------
You really are a incredibly intelligent particular person!

ipad case - Monday, January 3, 2011 6:32:53 PM

Please let me know if you are searching for a writer for your blog. You've some truly wonderful articles and I believe I could be a good asset. For those who ever desire to take a few of the load off, I'd completely enjoy to write some content for your weblog in exchange for a link back to mine. Please shoot me an e-mail if interested.

Bradly YonkoskeDA - Wednesday, June 29, 2011 2:36:59 PM

A simpler solution:

private void LoginEmployees_Authenticate(object sender, System.Web.UI.WebControls.AuthenticateEventArgs e)
{
if (FormsAuthentication.Authenticate(LoginEmployees.UserName, LoginEmployees.Password))
{
// Valid login
e.Authenticated = true;
}
else
{
// Invalid login
e.Authenticated = false;
}
}

yrleu - Wednesday, March 7, 2012 6:55:27 AM

cool, simple and effective explanation. thanks!

Romko - Monday, July 2, 2012 10:08:53 AM

Nice blog its really help me ,
but how to authenticate it using database username and password.

Saurah Saxen - Tuesday, August 14, 2012 4:43:58 PM

10 Comments