I need to implement a login control that support the login attempt. If the user is login with wrong password for more than 5 times, the user will be locked out. I have tried the ASP.NET memberships provider and its work for plain web, but not work for umbraco...
i was referring to umbraco frontend members, so not umbraco backend users... but both providers inherit from the standard membership provider so in theory, you could write your own user "membership" provider and implement the locking (from looking at the source code, it's currently not implemented, altho you could already specify the number of attempts).
bottom line: can be done, but requires some coding (use member membership provider implementation as starting point).
yes what we are taleking is about front end members (not the umbraco users). so what should i do after i'am adding the config section? adding the event implementation code? what is the meaning of this codes (lock, failed_logins)
No code needs to be added if you're using the umbraco membership provider, just need to add extra properties to the member type (alias specified as 'defaultMemberTypeAlias' in web.config) in the member section.. new properties (or the alias) for locking and password attempts must match the ones specified in web.config.
So, using the default settings (as specified in web.config), adding two properties to the member type with alias 'lock' and 'failed_logins' should be enough.
try your solution but it's not work, am i missing something...
i created a two properties in the membertype which are lock as a true/false datatatype and failed_logins as a numeric datatype..is there anything that i miss?
Implementing Login Attempt
I need to implement a login control that support the login attempt. If the user is login with wrong password for more than 5 times, the user will be locked out. I have tried the ASP.NET memberships provider and its work for plain web, but not work for umbraco...
any experience to implement that features?
Thanks
Hi Ridj
Just to be clear - is your issue how to lock a umbraco user out if this person writes the wrong password 5 times trying to login to Umbraco?
/Jan
ridi,
umbraco's membership provider does support locking members after x non succesful logins, just need to set some values in the web.config. (See this wiki article on how to do the property mapping)
Hope this helps.
Regards,
/Dirk
@Mr. Jan
Yes...it is
@Mr. Dirk
Wow...great ..so you mean we just need put a web.config section? is there any additional action like adding events handler in the login control?
Ridj,
i was referring to umbraco frontend members, so not umbraco backend users... but both providers inherit from the standard membership provider so in theory, you could write your own user "membership" provider and implement the locking (from looking at the source code, it's currently not implemented, altho you could already specify the number of attempts).
bottom line: can be done, but requires some coding (use member membership provider implementation as starting point).
Cheers,
/Dirk
yes what we are taleking is about front end members (not the umbraco users). so what should i do after i'am adding the config section? adding the event implementation code? what is the meaning of this codes (lock, failed_logins)
umbracoLockPropertyTypeAlias="lock"
umbracoFailedPasswordAttemptsPropertyTypeAlias="failed_logins"
No code needs to be added if you're using the umbraco membership provider, just need to add extra properties to the member type (alias specified as 'defaultMemberTypeAlias' in web.config) in the member section.. new properties (or the alias) for locking and password attempts must match the ones specified in web.config.
So, using the default settings (as specified in web.config), adding two properties to the member type with alias 'lock' and 'failed_logins' should be enough.
Hope this helps.
Regards,
/Dirk
Dear Dirk,
try your solution but it's not work, am i missing something...
i created a two properties in the membertype which are lock as a true/false datatatype and failed_logins as a numeric datatype..is there anything that i miss?
Thanks
is working on a reply...
This forum is in read-only mode while we transition to the new forum.
You can continue this topic on the new forum by tapping the "Continue discussion" link below.