falahati_sina
asked on
ASP.NET 2.0 Login Control - Remember password not working?
We have built an ASP.NET application, where we use the standard ASP.NET 2.0 Login control.
When I checkmark the "remember my password" within the login control, the Web-page still does not remember me... I am using Internet Explorer 6.0.
What is this checkmark thought to do, and where lies my problem.
Actually, when I checkmark this and close my web-page without logging out I need not to login again when opening page in another Internet Explorer, but this "remembering" seems to me somehow strange... What should happen, or where could lay my mistake.
Thanks,
Sina Falahati
When I checkmark the "remember my password" within the login control, the Web-page still does not remember me... I am using Internet Explorer 6.0.
What is this checkmark thought to do, and where lies my problem.
Actually, when I checkmark this and close my web-page without logging out I need not to login again when opening page in another Internet Explorer, but this "remembering" seems to me somehow strange... What should happen, or where could lay my mistake.
Thanks,
Sina Falahati
mattisflones
This control uses cookies, do you allow that?
"Actually, when I checkmark this and close my web-page without logging out I need not to login again when opening page in another Internet Explorer"
Try closing all IE windows, and you should experience something totally different.. The session state gets preserved even if you close the one window.
Try closing all IE windows, and you should experience something totally different.. The session state gets preserved even if you close the one window.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Timeout is allways 30 mins as default for cookies.
And, there is no saved cookie in this case, that you can see from the original Q.. "remember me does not work"..
And, there is no saved cookie in this case, that you can see from the original Q.. "remember me does not work"..
"remember me does not work"..
It was stated that if the browser is closed without logging out and the browser is reopened that credentials aren't required. This means the cookie is working.
It was stated that if the browser is closed without logging out and the browser is reopened that credentials aren't required. This means the cookie is working.
No, it does not..
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thanks for your comments...
I found the following comment: http://forums.asp.net/thread/1424012.aspx
Which suggests, that "remember me" on ASP.NET means actually "keep me logged in"...
"
I was convinced that this control was not working in my website -- but that was because I had a misconception of what was supposed to be happening.
Now, there's no guarantee that that is what's happening with others, they may well have other issues.
Here's what I expected to see:
I log into the website. Visit a page. Log out.
Next time I come back, my username and/or my password are "pre-filled" in the fields.
That didn't happen, of course. When I returned the fields were blank as the day I dropped them into the form.
But I listened to what Randy was saying and I thought, wait a sec... and I did a little testing.
What DOES happen for me (and I just tested it in both IE6 and FF) is that:
I log into the website. I don't log out of the website.
I log off Windows or reboot. I come back. I'm still logged in and go straight to the restricted page (which has a login name showing me I'm logged in) without stopping at the login.
If I uncheck the 'remember me' box and log off Windows (or presumably wait out the session) and then try to go to the restricted page, I have to log back in.
So what I'm going to do is change the "Remember me" caption to "Keep me logged in"...
Now, that might not be what's happening for others -- but it really got to the heart of my issue.
So, thanks to Randy."
And ...
"If I check "Remember me" when I log in and don't explicitly log out, I stay logged in beyond the end of the session, in IE 6 or FF, with cookies enabled. (I can reboot, etc, come back and still be logged into the website.)
However, if I log off the website, then I'm logged off, period. And the log in fields are, indeed, blank. (Of course, that's excluding any Firefox tricks.) "
Would you agree?
Thanks, Sina
I found the following comment: http://forums.asp.net/thread/1424012.aspx
Which suggests, that "remember me" on ASP.NET means actually "keep me logged in"...
"
I was convinced that this control was not working in my website -- but that was because I had a misconception of what was supposed to be happening.
Now, there's no guarantee that that is what's happening with others, they may well have other issues.
Here's what I expected to see:
I log into the website. Visit a page. Log out.
Next time I come back, my username and/or my password are "pre-filled" in the fields.
That didn't happen, of course. When I returned the fields were blank as the day I dropped them into the form.
But I listened to what Randy was saying and I thought, wait a sec... and I did a little testing.
What DOES happen for me (and I just tested it in both IE6 and FF) is that:
I log into the website. I don't log out of the website.
I log off Windows or reboot. I come back. I'm still logged in and go straight to the restricted page (which has a login name showing me I'm logged in) without stopping at the login.
If I uncheck the 'remember me' box and log off Windows (or presumably wait out the session) and then try to go to the restricted page, I have to log back in.
So what I'm going to do is change the "Remember me" caption to "Keep me logged in"...
Now, that might not be what's happening for others -- but it really got to the heart of my issue.
So, thanks to Randy."
And ...
"If I check "Remember me" when I log in and don't explicitly log out, I stay logged in beyond the end of the session, in IE 6 or FF, with cookies enabled. (I can reboot, etc, come back and still be logged into the website.)
However, if I log off the website, then I'm logged off, period. And the log in fields are, indeed, blank. (Of course, that's excluding any Firefox tricks.) "
Would you agree?
Thanks, Sina