eramgarden

in 1.1, Global.asax has a code behind : globalasax.vb where I could have "imports" and it had Intellisense.. Using 2.0 and I dont see a ".vb" file. I had to type in code below with no Intellisense: Sub WindowsAuthentication_OnAuthenticate(ByVal Source As Object, _ ByVal e As WindowsAuthenticationEventArgs) Dim userIdentity As String userIdentity = e.Identity.Name() End Sub Am I missing something?

i think u need to redirect them to a "session time out" page in web.config.

Thanks. Makes sense.

I was reading: http://msdn.microsoft.com/msdnmag/issues/02/04/ASPSec/default.aspx And it has: If your application requires no special protection�if all of its pages can be freely browsed by anyone and none are personalized for individual users�you needn't bother with application-level security. Just grant Everyone access to the application's files and be done with it. We first wanted to use Forms Authentication, them decided on Windows authentication as users dont want to keep logging in. Users can access all the pages. No restirctions. This an application for clients. My question is: If users can access all pages and there's no restiction, then I dont need Windows Authentication OR any kind of authentication? Just have users double click on the link and enter the app?? Windwos Authentication is used to not only authenticate BUT also to control access to resources?

We have VSS2005. I wanted to check in the solution. On Solution Explorer, i right clicked and chose "add solution to sourcesafe"... This added the project to VSS but then i have a "lock" image next to all the files. If I want to work on it, i have to check it out.. I found this link but this is for VSS6.0 that explains the same thing. It does say this the recommanded way to add solution to VSS.. http://msdn.microsoft.com/library/default.asp?url=/library/en-us/dnaspp/html/vssstarttofinish.asp At my last job, I dont remember us doing that... Question: We're 3 developers working on the project...should I check the code in VSS from Visual Studio (making other users checkout everytime they want to use a file ) OR add the project to VSS thru VSS itself?

hmm, no , the location is not an issue . I know I want to have the translations in the database, so I'll be using database localization I'll have a custom localizetion provider: http://www.codeproject.com/aspnet/customsqlserverprovider.asp My issue is : going to the database each time we want to display a page , hitting the database to get the correct translation for that page.... would that be a performance issue? that's why i'm thinking maybe i should have the labels in user-comtrols and then cache the controls...instead of hitting the database for each page , each time...

yes, i looked into that. Then emailed Scott someone at Microsoft (he has a blog) and he forwarded my email to 3 other guys. They wrote back that in the future, RESX might not be supported and the best thing to do is to use database localization... would creating user-controls, then caching them is a bad idea for labels? Is it better to keep going to the database each time we want to get the correct translation? found a sample code for database localization but not sure if i should create user-controls for labels..

This is the situation: The asp.net 2.0/VB.net app we're developing will be localized in both English and Spanish. I will use database localization. My thought is to create user-controls for each set of lables on a page, then populate the lables based on the language and have the user-controls cached.. I think probably, it will be hard to arrange the user controls neatly on the page. Not sure. Anyone has other ideas? thanks

Then to answer your question of restriction, that's what we did on my last application as well..have a table to restrtict users. As for the session, i dont know. Maybe u can set the debugger which i'm sure you've done already. Maybe someone else can give u more ideas..

I dont think u need to have a table of Users for windows Authentication. Doesnt windows authentication use domain names? If users are part of the domain, they have access. If not, they dont... Now, I know for Forms authentication, you need to have a list of users/pwds somewhere like in the database...as you have now. Last application i worked with used Windows Authentication. We didnt have a table of users/pwds to authenticate. It authenticates using WindowsPrincipal: http://samples.gotdotnet.com/quickstart/aspplus/doc/windowsauth.aspx http://aspnet.4guysfromrolla.com/articles/031204-1.aspx

i think 4guysfromrolla has a good article, but look at this site as well: http://www.15seconds.com/issue/020305.htm I know you need keep userid/pwds either in database or in webconfig. I think if it's in webconfig, it can be encrypted. In database, you need to have a table to hold userids/pwds. Look at Hash encryption. 4guysfromrolla has a good article on it as well.

I have this : <body onload="window.opener=top;window.open('login.aspx','something','menubar=no,resizable=yes, height=768,width=1024');window.close()" > ... </body> Resoultion on my box is 1280x800. The width looks fine but the height looks very very long! I tried the same thing on another box with resolution of 1024x768..again the height looks very very long .I have to resize to see the bottom of page. Also tried using Page.ClientScript.RegisterStartupScript in the code behind and still the same result.. This is my other code: Dim popupScript As String = "<script language='javascript'>" & _ "window.opener=top;window.open('Login.aspx', 'CustomPopUp', " & _ "'menubar=no,resizable=yes, height=768,width=1024');" & _ "window.close()" & _ "</script>" Page.ClientScript.RegisterStartupScript(Me.GetType, "PopupScript", popupScript) what am i missing??

found my answer: http://www.glish.com/css/

Thanks.. Was just reading this: http://webmail.registeredsite.com/%24sessionid%24016A52B031592967C59DCAE012308116/agent/mobmain?mobmain=1 Not sure what's meant by "fluid" design..you mean tables within tables??

I was reading (now i cant find the link) that it's better to use <div> to design pages in ASP.Net instead of Tables because it takes time for tables to render.. is this correct? If so, per this page, <div> is used with Absoulte positioning. I thought pages should have relative positioning... http://www.lissaexplains.com/html7.shtml

We need to localize our web app in both English and Spanish. Currently, the English and Spanish texts are in 2 tables: one for English, one for Spanish. These 2 tables are used by our propritary Windows app. My manager wants me to still use the 2 tables when we're coding the web app. I read these 2 sites: http://www.codeguru.com/csharp/.net/net_asp/miscellaneous/article.php/c12407__2/ http://www.codeproject.com/useritems/localization.asp At the end of the second link, it does talk about having translations in the database. my question is is there a way to populate the RESX files from the database? How can I use the resx files if the translanslations are in the database? I'm thinking if translations/data are in the database, then I cant use RESX files/ASP.Net's localization technique and I just have to read the tables and load the text to label controls. Any thoughts? thanks.

I have to code a Windows app in ASP.net 2.0/VB.Net. Been reading about caching. The page has 6 different sections: section for user address, section for user debt info, section for user phone numbers.etc. Now, I know i can make each section into a usercontrol and have caching enabled for each section BUT...what if a client has , for example, 3000 users...so I'll have 3000+ different cached pages in memory for each user/each usercontrol?? Is caching a good idea to do here or just pull the data from database each time?

I finally got it :rolleyes: :) http://aspnet.4guysfromrolla.com/articles/103002-1.aspx :cool:

Hmm..then how would I know they entered the correct userid/password? User enters his userid/pwd....website connects to the database using the userid/pwd in the webconfig ..this means the application can connect to the database..doesnt mean the user can use the database...right? if i only use the "userid/pwd in webconfig"..wouldnt that be like windows authentication (and my manager doesnt want windows authentication)... so confused..just need an example even if in puesdo code...

Still light bulb is not as bright.. :( I also read about the Forms Authentication. This what confuses me: Regardless of how they login to the site only a single user (the web application itself) ever accesses the database. ... I understand that..So, I'll have a userid/password in the web.config... Now, my website user enters his userid/password on the login page...my website connects to the database using the "userid/password in the webconfig".... now how do I know the user's login/password exists in the database? I can get the login ID from the sql server..but how password are encrypted in sql server... u know what I mean? I connect to sql DB using the userid/pwd I have in the web.config..but my users also have a userid/password..how do I authenticate them??

Ideally you want to validate the user at the website level and based on that decide what they can and can't do, all data access is done under the single account used by the ASP application. Not sure what you mean...do you mean use Windows authentication..so NO login page where users enter their userid/password? I did mention Windows authentication to my manager but he says maybe the SQL user Login is different from the Windows user login and the application depends on the "SQL user login ID" to do whatever it needs to do... for example, SQL UserID might be XXX but Windows userID is YYY..is that possible???

Been reading about Authentication against SQL Server and finally found this site: http://msdn.microsoft.com/library/default.asp?url=/library/en-us/dnpag2/html/PAGHT000010.asp We have sql server database, each user has a Login (my manager doesnt want to use Windows Authentication). Login page has "user id" and "password". Then I need to authenticate the user against the SQL database based on that userID/password.. That site shows a connection string with userid and password, then makes a select to Pubs database. It says : must include the user name and password of the database user But I have like 100 database users with Logins. And I dont know their passwords anyway. then how can I use the SQL Server authentication? Should I be building the connection string dynamically in the code with their userid and password...instead of having a connection string in the web.config? Just really lost! and I'm sure it's not that hard..

found my answer :D The Tabstrip is avalaible but not supported by Microsoft and I can download it as a user control :cool:

We're developing an ASP.Net/VB.Net application and one of the requirements is to have a tabstrip: The tabstrip is 3 rows..instead of one row. Now, I went to MS site and seems like it's Tabstrip control is not supported anymore: http://msdn.microsoft.com/library/default.asp?url=/workshop/webcontrols/overview/tabstrip.asp My manager doesnt want to buy a custom tab control and he doesnt want to use menubar stuff either because he wants to keep the Web application as close to the "custom windows app" we have as possible.. Any thoughts/examples how I can create a Tabstrip in ASP 2.0? Do I need to create Tabstrip in a graphic designer tool or something??

Been working on this since this morning : Table cProcessComp has: oldDebtCode:A000000028 NewDebtCode:L000000789 Table BKRRPTPF has this : BKDCOD: A000000028 BKAgency:100 BKDCOD: L000000789 BKAgency:009 Now, this SQL should not pick up that row since the BKagencies are not equal but it does pick it up! What am I doing wrong?? select BKDCOD,NewDebtCode,OldDebtCode,BKAGENCY From BKRRPTPF Inner Join cProcessComp on BKDCOD= OldDebtCode where exists ( select * from BKRRPTPF b1 inner join BKRRPTPF b2 on b1.BKAgency = b2.BKAgency inner join cProcessComp on b1.bkdcod=newdebtcode and b2.bkdcod=olddebtcode) I get this row back: A000000028 L000000789 A000000028 100