• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1061
  • Last Modified:

Asp.Net c# web page refresh causes invalid login attempt

I am currently working on an ASP.NET c# web application.
I am using the ASP.NET website administration tool for my security.
At this time i do not have any custom HttpModules.


Everything seems to work except after i have authenticated a user and logged in, if that user refreshes his/her page a number of times the account is automatically locked out.

For now i have been going into the aspnet_Membership table to set the value for IsLockedOut to False
and the FailedPasswordAttemptCount to 0

Can somebody tell what is causing this and how to differentiate between a legitimate failed login attempt and when a user refreshes the web page?
0
dayiku
Asked:
dayiku
  • 3
1 Solution
 
Anurag ThakurTechnical ManagerCommented:
it means that the session information of the logged in user is getting lost or corrupted on page load as you said that when the user refreshes his/her page the account gets locked.
and your website admin tool has been configured to lock the user after invalid attempts for login
http://msdn.microsoft.com/en-us/library/6tc47t75.aspx
http://msdn.microsoft.com/en-us/library/aa478949.aspx
0
 
dayikuAuthor Commented:
How do i determine if the session is lost?
Is there a configuration that will prevent the loss of the session information?
I use session variables for processing user requests and so far, i have not noticed and problems with them
0
 
Anurag ThakurTechnical ManagerCommented:
on login you might have set the username or id in the session
if the session is lost then you have to check Session["UserName"] != null before doing anything for that user
if you have set the user name in session then the null value indicates session is lost
0
 
Anurag ThakurTechnical ManagerCommented:
the ideas for the problem were provided and even after that the authors queries were answered regarding how to check for whether session is available or not
0

Featured Post

Free Tool: Subnet Calculator

The subnet calculator helps you design networks by taking an IP address and network mask and returning information such as network, broadcast address, and host range.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now