Solved

ASP.NET recording user id in SQL Server

Posted on 2012-03-13
9
419 Views
Last Modified: 2012-03-14
Hello,

I have a simple ASP.NET page that I want to capture the AD account a user is logged in with and record it in a SQL Server database.   I have the following SQLDataSource defined below.   I tried using SUSER_SNAME(), but realized that this only provided the account that I used to establish the database connection and not the AD account.   Is there an easy way to get the AD account and pass it into a Insert Parameter?   Does anyone have an example?

Thanks!
john


<asp:SqlDataSource ID="insTransaction" runat="server" ConnectionString="<%$ ConnectionStrings:MARTConnectionString %>"
     
InsertCommand="INSERT INTO TT_TRANS(ProjID, EmpID, TRANDATE, Hours, Description, Billed, CreatedBy) VALUES (@ProjID, @EmpID, @TDate, @Hours,@Desc,'N',SUSER_SNAME() )"
oninserted="insTransaction_Inserted">

<InsertParameters>
<asp:ControlParameter ControlID="DropDownList2" Name="ProjID" PropertyName="SelectedValue" />
<asp:ControlParameter ControlID="DropDownList1" Name="EmpID" PropertyName="SelectedValue" />
<asp:ControlParameter ControlID="TextBox1" Name="TDate" PropertyName="Text" />
<asp:ControlParameter ControlID="TextBox2" Name="Hours" PropertyName="Text" />
<asp:ControlParameter ControlID="TextBox3" Name="Desc" PropertyName="Text" />
</InsertParameters>
</asp:SqlDataSource>
0
Comment
Question by:jzlamal
  • 7
  • 2
9 Comments
 
LVL 35

Expert Comment

by:YZlat
ID: 37715236
first you will need to disable anonymous access and then use  User.Identity.Name  to retrieve the windows logged in name
0
 
LVL 35

Accepted Solution

by:
YZlat earned 500 total points
ID: 37715297
actually this

System.Security.Principal.WindowsIdentity.GetCurrent.Name

will giv you your currently logged in user in the format DOMAIN\Username
0
 

Author Comment

by:jzlamal
ID: 37715320
Sorry, but I am new to ASP.NET.   How would I put this into the insert parameter for the SQLDatasource?  Can you give me an example?

Thank you!
John
0
Announcing the Most Valuable Experts of 2016

MVEs are more concerned with the satisfaction of those they help than with the considerable points they can earn. They are the types of people you feel privileged to call colleagues. Join us in honoring this amazing group of Experts.

 
LVL 35

Expert Comment

by:YZlat
ID: 37715321
to get username without domain use

Dim usr, arrusr() As String
        usr = System.Security.Principal.WindowsIdentity.GetCurrent.Name
        arrusr = usr.Split("\")
        usr = arrusr(1)

Open in new window

0
 
LVL 35

Expert Comment

by:YZlat
ID: 37715347
try this:

InsertCommand="INSERT INTO TT_TRANS(ProjID, EmpID, TRANDATE, Hours, Description, Billed, CreatedBy) VALUES (@ProjID, @EmpID, @TDate, @Hours,@Desc,'N',System.Security.Principal.WindowsIdentity.GetCurrent.Name.Substring(System.Security.Principal.WindowsIdentity.GetCurrent.Name.IndexOf("\") + 1))" 
oninserted="insTransaction_Inserted">

Open in new window

0
 
LVL 35

Expert Comment

by:YZlat
ID: 37715403
or try something like this:

InsertCommand="INSERT INTO TT_TRANS(ProjID, EmpID, TRANDATE, Hours, Description, Billed, CreatedBy) VALUES (@ProjID, @EmpID, @TDate, @Hours,@Desc,'N',@ADUser )" 
oninserted="insTransaction_Inserted">

<InsertParameters>
<asp:ControlParameter ControlID="DropDownList2" Name="ProjID" PropertyName="SelectedValue" />
<asp:ControlParameter ControlID="DropDownList1" Name="EmpID" PropertyName="SelectedValue" />
<asp:ControlParameter ControlID="TextBox1" Name="TDate" PropertyName="Text" />
<asp:ControlParameter ControlID="TextBox2" Name="Hours" PropertyName="Text" />
<asp:ControlParameter ControlID="TextBox3" Name="Desc" PropertyName="Text" />
<asp:ControlParameter Name="ADUser" PropertyName="Text" DefaultValue='<% System.Security.Principal.WindowsIdentity.GetCurrent.Name.Substring(System.Security.Principal.WindowsIdentity.GetCurrent.Name.IndexOf("\") + 1))
oninserted="insTransaction_Inserted">
%>'> />
</InsertParameters>
</asp:SqlDataSource>

Open in new window

0
 
LVL 35

Expert Comment

by:YZlat
ID: 37715444
or you can do that from code using

insTransaction.InsertParameters("ADUser").DefaultValue = System.Security.Principal.WindowsIdentity.GetCurrent.Name.Substring(System.Security.Principal.WindowsIdentity.GetCurrent.Name.IndexOf("\") + 1))

Open in new window

0
 

Author Comment

by:jzlamal
ID: 37715618
Tried to use the example with the ADUser control parameter.   Is there a different type of parameter I should be using?   When I tried this, it said I needed to specify the controlid....  

Thanks!
John
0
 
LVL 35

Expert Comment

by:YZlat
ID: 37715688
can you post the code for the rest of your page?
0

Featured Post

Networking for the Cloud Era

Join Microsoft and Riverbed for a discussion and demonstration of enhancements to SteelConnect:
-One-click orchestration and cloud connectivity in Azure environments
-Tight integration of SD-WAN and WAN optimization capabilities
-Scalability and resiliency equal to a data center

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article discusses the ASP.NET AJAX ModalPopupExtender control. In this article we will show how to use the ModalPopupExtender control, how to display/show/call the ASP.NET AJAX ModalPopupExtender control from javascript, how to show/display/cal…
In an ASP.NET application, I faced some technical problems. In this article, I list them out and show the solutions that I found.  I hope it will be useful. Problem: After closing a pop-up window, the parent page should be refreshed automaticall…
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …
Two types of users will appreciate AOMEI Backupper Pro: 1 - Those with PCIe drives (and haven't found cloning software that works on them). 2 - Those who want a fast clone of their boot drive (no re-boots needed) and it can clone your drive wh…

830 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question