Problems with using Membership and maxInvalidPasswordAttempts
On V4.7 I'm using bespoke .NET controls which are using the standard microsoft Login and ChangePassword controls along with the standard functionality provided by the Membership object to validate and control passwords etc.
Outwith umbraco I've done this for a normal C# ASP.NET example web site. I set up a whole load of parameters in the Web.config like:
and everything worked brilliantly without any bespoke code. Took me about 2 hours including installing SQL Server. A no brainer!
However in the Umbraco system, it's not working so well.
The the validation functionality seems to work. Programatically I can create Members and set Member groups and Member types using a mixture of Member and umbracoMember objects. However the parameters highlighted above seem to be completely ignored. And I can't lock people out either by using multiple ValidateUser() with a rubbish password. (Which seems like an inelegant sol!)
The cmsMember table only seems to have the following 4 fields: Id, LoginName, Password, LastUpdated. My normal C# ASP.NET example web site has many more fields in the corresponding table. Like IsLockedOut and FailedPasswordAttemptCount.
The out of the box microsoft functionality is not working. Any ideas how I can get it working?
To use the other "standard" Membership provider properties within UmbracoMembershipProvider, you just have to add some extra properties to your MemberType and linking them to the umbraco membership provider settings in the web.config file.
Problems with using Membership and maxInvalidPasswordAttempts
On V4.7 I'm using bespoke .NET controls which are using the standard microsoft Login and ChangePassword controls along with the standard functionality provided by the Membership object to validate and control passwords etc.
Outwith umbraco I've done this for a normal C# ASP.NET example web site. I set up a whole load of parameters in the Web.config like:
maxInvalidPasswordAttempts="5"
minRequiredPasswordLength="2"
inRequiredNonalphanumericCharacters="1"
and everything worked brilliantly without any bespoke code. Took me about 2 hours including installing SQL Server. A no brainer!
However in the Umbraco system, it's not working so well.
The the validation functionality seems to work. Programatically I can create Members and set Member groups and Member types using a mixture of Member and umbracoMember objects. However the parameters highlighted above seem to be completely ignored. And I can't lock people out either by using multiple ValidateUser() with a rubbish password. (Which seems like an inelegant sol!)
The cmsMember table only seems to have the following 4 fields: Id, LoginName, Password, LastUpdated. My normal C# ASP.NET example web site has many more fields in the corresponding table. Like IsLockedOut and FailedPasswordAttemptCount.
The out of the box microsoft functionality is not working. Any ideas how I can get it working?
Hi Gordon,
To use the other "standard" Membership provider properties within UmbracoMembershipProvider, you just have to add some extra properties to your MemberType and linking them to the umbraco membership provider settings in the web.config file.
See this wiki post for more information: our.umbraco.org/.../umbracomembershipprovider-properties :
You will just need to add the properties you need, and it should then work like a charm.
Hope this helps
Cheers,
Michael.
Michael,
Thanks for this. :) This information has filled in about 70% of the missing functionality. Any idea about the remaining 30%?
Specifically:
minRequiredPasswordLength="8"
minRequiredNonalphanumericCharacters="2"
This would be trivial stuff to code manually, but I'd prefer to do it in the 'standard' way if possible.
is working on a reply...