C
C#4w ago
Nodals

website problem: update and permmisson

I have a website code in C# and html, the code is in Visual Studies 2022. the update problem is whenever if your logged in or not it lets you go the update page even when u dont have anything to update. permission is i want to let only logged-in members to enter some pages but nothing I tried worked. I think the problem might be because I have a topnav bar to each page the any member in the website can enter but idk if you think you could help me send a messge here and I send the codes need to
13 Replies
Angius
Angius4w ago
If you're using Identity, then [Authorize] attribute on the page/action/controller/whatever will restrict it tologged-in users only Also, Visual Studio 2022 is the IDE It has a grand total of 0 (zero) effect on your project Knowing the .NET and C# version would be useful information, though
Nodals
Nodals4w ago
I did try the [Authorize] way but i could be just wrting it worng sense it wont work but also not show me any erorrs too atm Im just learining the information because im stil new at this
Angius
Angius4w ago
Well then, show some code Tell us what's the C# and .NET version The basic info
Nodals
Nodals4w ago
this is the 1 of the 2 pages behind code the i want to only give logged in users to enter: if(Request.IsAuthenticated == true ) { } else { Response.Redirect(Request.Url.ToString()); } this is the other second behind code: protected void Page_Load(object sender, EventArgs e) {
if (Session["status"] == null) { Response.Redirect("Error.aspx"); } } this is the update page : protected void Page_Load(object sender, EventArgs e) { string filname = "MyDB.mdf"; string select = "SELECT * FROM users WHERE usern ='" + Session["status"].ToString() + "'"; DataTable table = MyAdoHelper.ExecuteDataTable(filname, select); int len = table.Rows.Count; if (len > 0) { globalusername = table.Rows[0]["usern"].ToString(); globalpassword = table.Rows[0]["userpass"].ToString(); } if (Request.Form["updateuser"] != null)//did you update? { string umameupdate = Request.Form["uname"].ToString(); string passwordupdate = Request.Form["upass"].ToString(); string updateq = "UPDATE users SET "; updateq += "usern='" + umameupdate + "'"; updateq += ",userpass='" + passwordupdate + "'"; updateq += "WHERE usern='" + Session["status"].ToString() + "'"; MyAdoHelper.DoQuery(filname, updateq); Response.Write("Update!"); Response.Redirect("HomePage.aspx"); } } all of them are written is webform.aspx and in each page there is a topnav to connect them
Angius
Angius4w ago
$code
MODiX
MODiX4w ago
To post C# code type the following: ```cs // code here ``` Get an example by typing $codegif in chat For longer snippets, use: https://paste.mod.gg/
Angius
Angius4w ago
Also, oof Seems you're not using Identity, or even EF for that matter, so [Authorize] won't do anything Also, it seems to be some 1999 Webforms project So I will not be able to help, unfortunately I was never much of an archeologist Or a necromancer, really, at this point
Nodals
Nodals4w ago
oh man well thanks for the help anyway. it pretty much is filled with a bunch of webforms conncted to each other
Angius
Angius4w ago
Is this a school/work project, out of curiosity?
Nodals
Nodals4w ago
yeah it is
Angius
Angius4w ago
Ah, rip
Nodals
Nodals4w ago
yeah lol
exixt
exixt4w ago
a quick pointer get to fixing that super glorious sql injection prone code immediately oh school project, nevermind. I guess everything goes my condolences
Want results from more Discord servers?
Add your server
More Posts
TDD: Mocking servicesOpinionated question, because I'm trying to decide how my team should proceed. Do y'all prefer to us'.AspNetCore.Correlation.FN07PveE1rsK2IsgyCPuDYdU49H3_TL3yIc8wyE0zRw' cookie not found.Hello guys **Problem** I used examaple in https://github.com/aspnet-contrib/AspNet.Security.OpenId.PASP.NET & EntraId: Acquire Token on Behalf of User for Azure Resource ManagerI have 2 Applications - A SPA thats authenticated with MSAL. - A ASP.NET web-api thats secured withView InjectionHey everyone, is the view injection used often, or is it rare? And I would appreciate it if you havedeserialize non-nullableHello, I want to deserialize JSON with `System.Text.Json.JsonSerializer`. I have classes with `requi✅ Something is causing this to go into stack overflowReading in JSON-RPC for LSP msg returning Null???So long story short Im building an LSP and it has been a process. I finally got it hooked up to readWeird behaviour with SpriteBatch.Draw in MonoGameI'm creating a rhythm game. I'm trying to move automatically Notes from upside but something went wr✅ Auto Updating WPF applications options and best practicesSo I'm building an internally facing application for a client, I've spent some time getting to know ✅ "False Errors"??Hello guys, every time I edit app.xaml code, somethings break, i did everything chatgpt Told me to d