Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Mike Lewis on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Persist Password question

Status
Not open for further replies.
PoppapumpJ

PoppapumpJ

Programmer
Dec 17, 2001
86
US
I am autenticating a web app using the FormsAuthentication.RedirectFromLoginPage method once I validate my username/password combo.

To invoke transactions from an API throughout my app, I must pass along the username and password.

I can pull my user name from user.identity.name with no problem.

Is there are better solution to persisting the password than using a session variable or creating a custom provider?

Is there a way to extend the user.identity object to include something like user.identity.password?

Thanks.
 
Sort by date Sort by votes
you shouldn't keep the password around any longer than necessary. get the pwd text, hash it save to the database. if it's valid allow them into the site, if not fail. but once their authenticated you do not need the password.

Jason Meckley
Programmer
Specialty Bakers, Inc.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

G12Consult
  • Locked
  • Question
API Question
Replies
2
Views
156
G12Consult
G12Consult
Everton1Blue
  • Locked
  • Question
Password reset question 1
Replies
2
Views
143
Everton1Blue
Everton1Blue
dvannoy
  • Locked
  • Question
Session Timeout Question
Replies
1
Views
160
jbenson001
jbenson001
Everton1Blue
  • Locked
  • Question
Question about SMTP
Replies
5
Views
158
Everton1Blue
Everton1Blue
axLW
  • Locked
  • Question
Newbie Question
Replies
16
Views
251
axLW
axLW

Part and Inventory Search

Sponsor

Back
Top