ASP.NET recording user id in SQL Server

Hello,

I have a simple ASP.NET page that I want to capture the AD account a user is logged in with and record it in a SQL Server database.   I have the following SQLDataSource defined below.   I tried using SUSER_SNAME(), but realized that this only provided the account that I used to establish the database connection and not the AD account.   Is there an easy way to get the AD account and pass it into a Insert Parameter?   Does anyone have an example?

Thanks!
john


<asp:SqlDataSource ID="insTransaction" runat="server" ConnectionString="<%$ ConnectionStrings:MARTConnectionString %>"
     
InsertCommand="INSERT INTO TT_TRANS(ProjID, EmpID, TRANDATE, Hours, Description, Billed, CreatedBy) VALUES (@ProjID, @EmpID, @TDate, @Hours,@Desc,'N',SUSER_SNAME() )"
oninserted="insTransaction_Inserted">

<InsertParameters>
<asp:ControlParameter ControlID="DropDownList2" Name="ProjID" PropertyName="SelectedValue" />
<asp:ControlParameter ControlID="DropDownList1" Name="EmpID" PropertyName="SelectedValue" />
<asp:ControlParameter ControlID="TextBox1" Name="TDate" PropertyName="Text" />
<asp:ControlParameter ControlID="TextBox2" Name="Hours" PropertyName="Text" />
<asp:ControlParameter ControlID="TextBox3" Name="Desc" PropertyName="Text" />
</InsertParameters>
</asp:SqlDataSource>
jzlamalAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

YZlatCommented:
first you will need to disable anonymous access and then use  User.Identity.Name  to retrieve the windows logged in name
YZlatCommented:
actually this

System.Security.Principal.WindowsIdentity.GetCurrent.Name

will giv you your currently logged in user in the format DOMAIN\Username

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
jzlamalAuthor Commented:
Sorry, but I am new to ASP.NET.   How would I put this into the insert parameter for the SQLDatasource?  Can you give me an example?

Thank you!
John
CompTIA Network+

Prepare for the CompTIA Network+ exam by learning how to troubleshoot, configure, and manage both wired and wireless networks.

YZlatCommented:
to get username without domain use

Dim usr, arrusr() As String
        usr = System.Security.Principal.WindowsIdentity.GetCurrent.Name
        arrusr = usr.Split("\")
        usr = arrusr(1)

Open in new window

YZlatCommented:
try this:

InsertCommand="INSERT INTO TT_TRANS(ProjID, EmpID, TRANDATE, Hours, Description, Billed, CreatedBy) VALUES (@ProjID, @EmpID, @TDate, @Hours,@Desc,'N',System.Security.Principal.WindowsIdentity.GetCurrent.Name.Substring(System.Security.Principal.WindowsIdentity.GetCurrent.Name.IndexOf("\") + 1))" 
oninserted="insTransaction_Inserted">

Open in new window

YZlatCommented:
or try something like this:

InsertCommand="INSERT INTO TT_TRANS(ProjID, EmpID, TRANDATE, Hours, Description, Billed, CreatedBy) VALUES (@ProjID, @EmpID, @TDate, @Hours,@Desc,'N',@ADUser )" 
oninserted="insTransaction_Inserted">

<InsertParameters>
<asp:ControlParameter ControlID="DropDownList2" Name="ProjID" PropertyName="SelectedValue" />
<asp:ControlParameter ControlID="DropDownList1" Name="EmpID" PropertyName="SelectedValue" />
<asp:ControlParameter ControlID="TextBox1" Name="TDate" PropertyName="Text" />
<asp:ControlParameter ControlID="TextBox2" Name="Hours" PropertyName="Text" />
<asp:ControlParameter ControlID="TextBox3" Name="Desc" PropertyName="Text" />
<asp:ControlParameter Name="ADUser" PropertyName="Text" DefaultValue='<% System.Security.Principal.WindowsIdentity.GetCurrent.Name.Substring(System.Security.Principal.WindowsIdentity.GetCurrent.Name.IndexOf("\") + 1))
oninserted="insTransaction_Inserted">
%>'> />
</InsertParameters>
</asp:SqlDataSource>

Open in new window

YZlatCommented:
or you can do that from code using

insTransaction.InsertParameters("ADUser").DefaultValue = System.Security.Principal.WindowsIdentity.GetCurrent.Name.Substring(System.Security.Principal.WindowsIdentity.GetCurrent.Name.IndexOf("\") + 1))

Open in new window

jzlamalAuthor Commented:
Tried to use the example with the ADUser control parameter.   Is there a different type of parameter I should be using?   When I tried this, it said I needed to specify the controlid....  

Thanks!
John
YZlatCommented:
can you post the code for the rest of your page?
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
ASP.NET

From novice to tech pro — start learning today.