Imports System.Security.Principal

**jesus4u** · May 28th, 2003, 03:51 PM

How can I identify the name of the user that is browsing to my page from the network?

**hellswraith** · May 28th, 2003, 04:26 PM

Try something like
HttpContext.CurrentUser.Identity.Name

That was off the top of my head, but it is pretty close...

**hellswraith** · May 28th, 2003, 04:27 PM

http://msdn.microsoft.com/library/de...entication.asp

**jesus4u** · May 29th, 2003, 08:52 AM

Originally posted by hellswraith
Try something like
HttpContext.CurrentUser.Identity.Name

That was off the top of my head, but it is pretty close...

Well when I do it in debug the string comes up empty.

Code:

Dim str As String = HttpContext.Current.User.Identity.Name

**Cander** · May 29th, 2003, 09:06 AM

I believe you have to Autheticate the person first which is what the link hw posted seems to point to.

**Cander** · May 29th, 2003, 09:22 AM

in my web.config, I did this

Code:

    <authorization>
        <allow users="wrbafres/candersen" /> <!-- Allow all users -->
		<deny users="?"/>
            <!--  <allow     users="[comma separated list of users]"
                             roles="[comma separated list of roles]"/>
                  <deny      users="[comma separated list of users]"
                             roles="[comma separated list of roles]"/>
            -->
    </authorization>

and httpcontext.current.user.etc.etc worked. Problem is of corse, now you would have to do it for all users. Im not surehow to do it otherwise. There might be some way.

**Cander** · May 29th, 2003, 09:31 AM

D'oh..silly me. I got it

Code:

    <authentication mode="Windows" /> 

    <authorization>
        <deny users="?" /> <!-- Deny Anonymous
    </authorization>

And this worked

Code:

        Dim acc As New System.Security.Principal.WindowsPrincipal(System.Security.Principal.WindowsIdentity.GetCurrent())
        Dim username As String = wp.Identity.Name

        Response.Write(HttpContext.Current.User.Identity.Name.ToString())
        Response.Write(wp.Identity.Name)

The top REsponse.write, returned my network login
the 2nd returned the account asp.net is running under (ie mycomputer\ASPNET)

**jesus4u** · May 29th, 2003, 09:41 AM

Originally posted by Cander
D'oh..silly me. I got it

Code:

<authentication mode="Windows" /> <authorization> <deny users="?" /> <!-- Deny Anonymous </authorization>

And this worked

Code:

Dim acc As New System.Security.Principal.WindowsPrincipal(System.Security.Principal.WindowsIdentity.GetCurrent()) Dim username As String = wp.Identity.Name Response.Write(HttpContext.Current.User.Identity.Name.ToString()) Response.Write(wp.Identity.Name)

The top REsponse.write, returned my network login
the 2nd returned the account asp.net is running under (ie mycomputer\ASPNET)

Change acc to wp

**Cander** · May 29th, 2003, 09:42 AM

oops. yeah I know. I was in the process of making the variable name more descriptive before I posted it to you. I just didnt finish.

**jesus4u** · May 29th, 2003, 09:45 AM

How do I do this authentication on specific pages and not on the whole project?

**Cander** · May 29th, 2003, 09:52 AM

hmm. I think you will have to something like store what users/roles can access specific pages in a database or something then just do quick simple If statements and deny access to a page

So in other words

Code:

If HttpContext.Current.User.Name = "Domain\Candersen" Then

   ' Do something
End If

it might be easier to map sepcific user to roles on the asp.net server, then you can check if a user is in a specific role and deny them access if not, or redirect them.
If using the Role checking, you can do

Code:

If HttpContext.Current.User.IsInRole("Thiscomputer\Managers") Then
     ' balh

End If

**jesus4u** · May 29th, 2003, 09:53 AM

Do I place that logic on the specific pages?

**jesus4u** · May 29th, 2003, 09:56 AM

Testing locally on the network, I can't seem to login!

**Lethal** · May 29th, 2003, 09:58 AM

Originally posted by jesus4u
How do I do this authentication on specific pages and not on the whole project?

Create a seperate directory for the pages that require authentication. For the directory that contains pages that require authentication, add a web.config file to the directory, and specify the type of authentication.

**Cander** · May 29th, 2003, 09:58 AM

Originally posted by jesus4u
Do I place that logic on the specific pages?

yes

**Cander** · May 29th, 2003, 09:59 AM

Originally posted by jesus4u
Testing locally on the network, I can't seem to login!

**jesus4u** · May 29th, 2003, 09:59 AM

thanks for all the help but I just can't seem to login

**Cander** · May 29th, 2003, 10:01 AM

can you post your web.config? Maybe you got something funky in there?!?!?!

**jesus4u** · May 29th, 2003, 10:01 AM

Originally posted by Cander

When I get the Win Box and enter my un and pw and domain, I get denied.

**jesus4u** · May 29th, 2003, 10:02 AM

Originally posted by Cander
can you post your web.config? Maybe you got something funky in there?!?!?!

Code:

    <authorization>
        <deny users="*"/> <!-- Allow all users -->

             <allow     users="apolajenko"
                             roles="[comma separated list of roles]"/>
                  <!-- <deny      users="[comma separated list of users]"
                             roles="[comma separated list of roles]"/>
            -->
    </authorization

**Cander** · May 29th, 2003, 10:05 AM

yep..soemthing funky

deny users="*"/>

asterix needs to be ?

**jesus4u** · May 29th, 2003, 10:06 AM

Originally posted by Cander
yep..soemthing funky

deny users="*"/>

asterix needs to be ?

YEP! Got it to work! Thanks

**Cander** · May 29th, 2003, 10:07 AM

your welcome

**jesus4u** · May 29th, 2003, 10:38 AM

What I noticed is that with this setting it allows anyone in and your other code then can read who they are on the network. But if I change the code to any other setting like <allow users="myname" then it does not authenticate like you would expect.

Code:

<authorization>
                    <deny users="?"/> <!-- Allow all users -->

             <allow users=""
                    roles="[comma separated list of roles]"/>
                  <!-- <deny      users="[comma separated list of users]"
                             roles="[comma separated list of roles]"/>
            -->
    </authorization>

**Cander** · May 29th, 2003, 10:45 AM

can you show me an example of the config you say doesnt authenticate?

**jesus4u** · May 29th, 2003, 10:47 AM

it is above your last post

**Cander** · May 29th, 2003, 10:49 AM

well if that is how you allow users looks, then of course it isnt going to wor k

<allow users=""
roles="[comma separated list of roles]"/>

???

**jesus4u** · May 29th, 2003, 10:51 AM

Originally posted by Cander
well if that is how you allow users looks, then of course it isnt going to wor k

<allow users=""
roles="[comma separated list of roles]"/>

???

I know but even if I put my name in there it apparently lets me in but then when my buddy next to me visits the same page and he is not in the list he can still see the page when he is not supposed to.

**Cander** · May 29th, 2003, 10:53 AM

ok..try this, change the deny user to an *, but make sure it is on the line AFTER the allow users element.

**jesus4u** · May 29th, 2003, 10:57 AM

Like this?

Code:

    <authorization>
                    
             <allow users="apolajenko"
                    roles="[comma separated list of roles]"/>
                  <!-- <deny      users="[comma separated list of users]"
                             roles="[comma separated list of roles]"/>
            -->
            
            <deny users="*"/> <!-- Allow all users -->
    </authorization>

Nope! I don't get authenticated

**Cander** · May 29th, 2003, 10:57 AM

take this out
roles="[comma separated list of roles]"

Thread: Imports System.Security.Principal

Thread Tools

Display

Imports System.Security.Principal

Posting Permissions