Sign Up to our social questions and Answers Engine to ask questions, answer people’s questions, and connect with other people.
Login to our social questions & Answers Engine to ask questions answer people’s questions & connect with other people.
Lost your password? Please enter your email address. You will receive a link and will create a new password via email.
Please briefly explain why you feel this question should be reported.
Please briefly explain why you feel this answer should be reported.
Please briefly explain why you feel this user should be reported.
I have database with users table where i have many columns include passwords and usernames.
I decided to use asp.net login control and have few question.
Where does login control saves passwords?
Can i check is user valid with my database ?
Sorry im new in asp.net
Whatever you do, don’t save passwords plain text in the database, and especially with authentication do not reinvent the wheel – it’s hard to get right.
You should use the built in forms authentication for ASP.NET. Forms authentication using the SQL Membership provider does not save the password to the database, instead it generates a hash value that allows it to later verify if a typed in password matches the existing ones. This keeps your DBA or whoever else gets access to your database from running off with your users’ passwords.
The verification can be done using the Membership API (i.e.
Membership.ValidateUser())Here’s a blog post series on ASP.NET 2.0 Membership, Roles, Forms Authentication, and Security Resources (old but good)
And here another one on the Membership API: How To: Use Membership in ASP.NET 2.0