 |
|
 |
|
|
 |
Forms Authentication Error |
 |
 |
|
|
06-01-06 12:14 AM
Hi All -
We have been receiving a strange and random error with the CMS Forms
Authentication. I used Stefan's Chapter 18 and set up specific channels tha
t
are limited to the logged in user.
All seems to work well for the most part however at times, and this seems to
be occuring more often, after the user has logged in, they will close the
browser (not using the log out link provided). The user will then atttempt
to access the page again and instead of being redirected to the login page,
they instead receive a server error page.
The user will clear out the cookies and all is fine. This does not happen
all the time and I actually haven't been able to recreate the error yet but
the client and their users are receiving it on a pretty regular basis. I
checked and the cookie timeout times are 30 minutes in both the SCA and
web.config.
We are running CMS 2002 SP1 on Win 2003 Server.
TIA!
[ Post a follow-up to this message ]
|
|
|
 |
|
 |
|
 |
|
|
|
Re: Forms Authentication Error |
|
|
|
|
06-01-06 12:14 AM
Hi Hokie,
sounds as if you are using persistant cookies.
That is not recommended.
Cheers,
Stefan
--
This posting is provided "AS IS" with no warranties, and confers no rights
New to MCMS?
Check out this book: Building Websites Using MCMS: http://tinyurl.com/6zj44
Check out the new book as well: Advanced MCMS development:
http://tinyurl.com/8ugwj
----------------------
"HokieRTP" <HokieRTP@discussions.microsoft.com> wrote in message
news:0AACD381-CFDF-423D-B269-410C7928D8C3@microsoft.com...
> Hi All -
> We have been receiving a strange and random error with the CMS Forms
> Authentication. I used Stefan's Chapter 18 and set up specific channels
> that
> are limited to the logged in user.
>
> All seems to work well for the most part however at times, and this seems
> to
> be occuring more often, after the user has logged in, they will close the
> browser (not using the log out link provided). The user will then
> atttempt
> to access the page again and instead of being redirected to the login
> page,
> they instead receive a server error page.
>
> The user will clear out the cookies and all is fine. This does not happen
> all the time and I actually haven't been able to recreate the error yet
> but
> the client and their users are receiving it on a pretty regular basis. I
> checked and the cookie timeout times are 30 minutes in both the SCA and
> web.config.
>
> We are running CMS 2002 SP1 on Win 2003 Server.
>
> TIA!
>
[ Post a follow-up to this message ]
|
|
|
|
|
|
|
|
|
|
|
Re: Forms Authentication Error |
|
|
|
|
06-13-06 12:18 AM
Hi Stefan -
Yep you were right I was creating a persisten cookie. I changed the code
to false for the persistent cookie when being created, but we seem to have a
user who has cleared out his cookies multiple times, but he is still
receiving the same error for the same scenario. He is running IE 6, Windows
XP SP1. I had him look under the cookies folder in his user account in the
Documents and Settings folder and see if any cookie files were being created
.
The only one he found had the umtc umta umtz information. When CMS creates
the cookie through the authentication code we use, where would that cookie
reside?
Thanks,
HokieRTP
"Stefan [MSFT]" wrote:
> Hi Hokie,
>
> sounds as if you are using persistant cookies.
> That is not recommended.
>
> Cheers,
> Stefan
>
> --
> This posting is provided "AS IS" with no warranties, and confers no rights
>
> New to MCMS?
> Check out this book: Building Websites Using MCMS: http://tinyurl.com/6zj44[/url...nyurl.com/8ugwj
> ----------------------
>
>
> "HokieRTP" <HokieRTP@discussions.microsoft.com> wrote in message
> news:0AACD381-CFDF-423D-B269-410C7928D8C3@microsoft.com...
>
>
>
[ Post a follow-up to this message ]
|
|
|
|
|
|
|
|
|
|
|
Re: Forms Authentication Error |
|
|
|
|
06-13-06 12:23 PM
Hi Hokie,
temporary cookies are only in memory of IE. They are not saved to disk. Only
persistent cookies are saved to disk. So you cannot see such cookies in the
cookie cache.
I would suggest to open a support case for this. We would need to analyze
the problem in more details to understand what is causing the problem.
Cheers,
Stefan
--
This posting is provided "AS IS" with no warranties, and confers no rights
New to MCMS?
Check out this book: Building Websites Using MCMS: http://tinyurl.com/6zj44
Check out the new book as well: Advanced MCMS development:
http://tinyurl.com/8ugwj
----------------------
"HokieRTP" <HokieRTP@discussions.microsoft.com> wrote in message
news:37EDF8C0-22DB-46CE-9C9A-2E640665F1FF@microsoft.com...[vbcol=seagreen]
> Hi Stefan -
> Yep you were right I was creating a persisten cookie. I changed the code
> to false for the persistent cookie when being created, but we seem to have
> a
> user who has cleared out his cookies multiple times, but he is still
> receiving the same error for the same scenario. He is running IE 6,
> Windows
> XP SP1. I had him look under the cookies folder in his user account in
> the
> Documents and Settings folder and see if any cookie files were being
> created.
> The only one he found had the umtc umta umtz information. When CMS
> creates
> the cookie through the authentication code we use, where would that cookie
> reside?
>
> Thanks,
> HokieRTP
>
> "Stefan [MSFT]" wrote:
>
[ Post a follow-up to this message ]
|
|
|
|
|
|
|
|
|
|
|
Re: Forms Authentication Error |
|
|
|
|
06-14-06 06:19 PM
Hi Stefan -
I was finally able to recreate the error again. Here is what happens.
They login utilzing the cms authentication code from Ch 18 and persistent
cookie is set to false. If I leave the browser open for more then 30
minutes, which is the cookie lifetime set, when I attempt to refresh the
page, click on a link on that page to another area of the website, I receive
the same error. So it seems the cookie has expired. Thoughts?
TIA!
"Stefan [MSFT]" wrote:
> Hi Hokie,
>
> temporary cookies are only in memory of IE. They are not saved to disk. On
ly
> persistent cookies are saved to disk. So you cannot see such cookies in th
e
> cookie cache.
>
> I would suggest to open a support case for this. We would need to analyze
> the problem in more details to understand what is causing the problem.
>
> Cheers,
> Stefan
>
> --
> This posting is provided "AS IS" with no warranties, and confers no rights
>
> New to MCMS?
> Check out this book: Building Websites Using MCMS: http://tinyurl.com/6zj44[/url...nyurl.com/8ugwj
> ----------------------
>
>
> "HokieRTP" <HokieRTP@discussions.microsoft.com> wrote in message
> news:37EDF8C0-22DB-46CE-9C9A-2E640665F1FF@microsoft.com...
>
>
>
[ Post a follow-up to this message ]
|
|
|
|
|
|
|
|
|
|
|
Re: Forms Authentication Error |
|
|
|
|
06-16-06 12:20 PM
Hi Hokie,
what is the error you are receiving?
Cheers,
Stefan
--
This posting is provided "AS IS" with no warranties, and confers no rights
New to MCMS?
Check out this book: Building Websites Using MCMS: http://tinyurl.com/6zj44
Check out the new book as well: Advanced MCMS development:
http://tinyurl.com/8ugwj
----------------------
"HokieRTP" <HokieRTP@discussions.microsoft.com> wrote in message
news:77AB2726-7BEB-48D6-9F5B-AE37C931B12F@microsoft.com...[vbcol=seagreen]
> Hi Stefan -
> I was finally able to recreate the error again. Here is what happens.
> They login utilzing the cms authentication code from Ch 18 and persistent
> cookie is set to false. If I leave the browser open for more then 30
> minutes, which is the cookie lifetime set, when I attempt to refresh the
> page, click on a link on that page to another area of the website, I
> receive
> the same error. So it seems the cookie has expired. Thoughts?
>
> TIA!
>
> "Stefan [MSFT]" wrote:
>
[ Post a follow-up to this message ]
|
|
|
|
|
|
|
|
|
|
|
Re: Forms Authentication Error |
|
|
|
|
06-20-06 12:19 AM
Stefan -
The error message is "Login failed due to invalid or expired
authentication token."
TIA
"Stefan [MSFT]" wrote:
> Hi Hokie,
>
> what is the error you are receiving?
>
> Cheers,
> Stefan
>
> --
> This posting is provided "AS IS" with no warranties, and confers no rights
>
> New to MCMS?
> Check out this book: Building Websites Using MCMS: http://tinyurl.com/6zj44[/url...nyurl.com/8ugwj
> ----------------------
>
>
> "HokieRTP" <HokieRTP@discussions.microsoft.com> wrote in message
> news:77AB2726-7BEB-48D6-9F5B-AE37C931B12F@microsoft.com...
>
>
>
[ Post a follow-up to this message ]
|
|
|
|
|
|
|
|
|
|
|
Re: Forms Authentication Error |
|
|
|
|
06-20-06 12:21 PM
Hi Hokie,
did you configure the web.config to use forms authentication?
Cheers,
Stefan
--
This posting is provided "AS IS" with no warranties, and confers no rights
New to MCMS?
Check out this book: Building Websites Using MCMS: http://tinyurl.com/6zj44
Check out the new book as well: Advanced MCMS development:
http://tinyurl.com/8ugwj
----------------------
"HokieRTP" <HokieRTP@discussions.microsoft.com> wrote in message
news:B4AFA1DE-74A9-4278-B521-0E51538E6AE2@microsoft.com...[vbcol=seagreen]
> Stefan -
> The error message is "Login failed due to invalid or expired
> authentication token."
>
> TIA
>
> "Stefan [MSFT]" wrote:
>
[ Post a follow-up to this message ]
|
|
|
|
|
|
|
|
|
|
|
Re: Forms Authentication Error |
|
|
|
|
06-20-06 12:21 PM
Hi Stefan -
Yes, I have configured web.config for forms authentication with a timeout
of 30. I also confirmed that SCA has a cookie lifetime of 30. Everything
works correctly except when the user logs into the website and is then idle
for more then 30 minutes. When they click on anything on the page, they
receive the error. If they were to open a new browser, they would not
receive the error and are able to login successfully again. Do I need to
wrap some additional error trapping around the situation of the cookie
expiring, but not deleting itself until the browser is closed?
TIA
"Stefan [MSFT]" wrote:
> Hi Hokie,
>
> did you configure the web.config to use forms authentication?
>
> Cheers,
> Stefan
>
> --
> This posting is provided "AS IS" with no warranties, and confers no rights
>
> New to MCMS?
> Check out this book: Building Websites Using MCMS: http://tinyurl.com/6zj44[/url...nyurl.com/8ugwj
> ----------------------
>
>
> "HokieRTP" <HokieRTP@discussions.microsoft.com> wrote in message
> news:B4AFA1DE-74A9-4278-B521-0E51538E6AE2@microsoft.com...
>
>
>
[ Post a follow-up to this message ]
|
|
|
|
|
|
|
|
|
|
|
Re: Forms Authentication Error |
|
|
|
|
06-20-06 06:19 PM
Hi Hokie,
ok, no idea what's going on on your box.
On my system I'm redirect to the login page after the timeout occurs.
Are you sure that there is no persistent cookie stored in the browser?
Cheers,
Stefan
--
This posting is provided "AS IS" with no warranties, and confers no rights
New to MCMS?
Check out this book: Building Websites Using MCMS: http://tinyurl.com/6zj44
Check out the new book as well: Advanced MCMS development:
http://tinyurl.com/8ugwj
----------------------
"HokieRTP" <HokieRTP@discussions.microsoft.com> wrote in message
news:44097B09-0E6A-4CC8-AF2B-6F93F94E4F06@microsoft.com...[vbcol=seagreen]
> Hi Stefan -
> Yes, I have configured web.config for forms authentication with a timeout
> of 30. I also confirmed that SCA has a cookie lifetime of 30. Everything
> works correctly except when the user logs into the website and is then
> idle
> for more then 30 minutes. When they click on anything on the page, they
> receive the error. If they were to open a new browser, they would not
> receive the error and are able to login successfully again. Do I need to
> wrap some additional error trapping around the situation of the cookie
> expiring, but not deleting itself until the browser is closed?
>
> TIA
>
> "Stefan [MSFT]" wrote:
>
[ Post a follow-up to this message ]
|
|
|
|
|
|
|
|
|
|
|
Sponsored Links |
|
|
|
|
 |
All times are GMT. The time now is 11:13 AM. |
 |
|
|
 |
|
 |
|
|
 |
|
Forum Rules:
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
|
HTML code is OFF
vB code is ON
Smilies are ON
[IMG] code is OFF
|
|
|
|
Medical and Health forum | Computer Games Reviews | Graphics design forum
|
 |
|
 |
|
