System.Net.CredentialCache.DefaultCredentials returns an empty string

**kenobewan** · Nov 9 '07, 12:38 PM

Are you sure its CreateSessionIm personated? I've only seen this used in Java.

**ckb** · Nov 9 '07, 01:30 PM

No it is CreateSessionIm personated()

**Plater** · Nov 9 '07, 01:49 PM

Can you just look in the request header and rip out the authenticate header?
I've never had good luck with the CredentialCache , I always just resorted to building the base64 string myself. Way easier.

Althought for https I dunno if it works

**ckb** · Nov 9 '07, 03:07 PM

Nothing works .Can anybody help me on this.

**Plater** · Nov 9 '07, 03:30 PM

You're looking to access a service with the same supplied credentials as was sent to your page right?

Like someone authenticates with you then you use that same auth and use it to connect to webservice(or something) right?

**ckb** · Nov 9 '07, 03:49 PM

I am trying to use the windows credentials(Int rgrated Login) to get connected to my webservice

**Plater** · Nov 9 '07, 04:22 PM

And you have it setup correctly in your web.config?

**ckb** · Nov 13 '07, 11:06 AM

My web config has identity impersonate to true and
authentication mode is set to windows but default credentials is still returns an empty sting and hence it passes the empoty string to the createsessionim personate function.Any help on this.
tHANKYOU

**Plater** · Nov 13 '07, 02:08 PM

So you have a section in web.config like:

[code=xml]
<authenticati on mode="Windows">
<forms loginUrl="Admin/Adminlogin.aspx " name=".ASPXFORM SAUTH" defaultUrl="Adm in/AdminFunctions. aspx" path="/Admin" timeout="10" slidingExpirati on="true">
<credentials passwordFormat= "Clear">
</credentials>
</forms>
</authentication>
<location path="Admin">
<system.web>
<identity impersonate="fa lse"/>

<authorizatio n>

<deny users="?"/>
</authorization>
</system.web>
</location>
[/code]

And then you have a login place (in case they aren't validated automatically) such as ""
Where there's two texboxes and a button with a click handler that does:

Code:

string aUser = "";
string aPass = "";
bool allowedtoenter=false;
aUser = UserName.Text;
aPass = UserPass.Text;
allowedtoenter= FormsAuthentication.Authenticate(aUser, aPass);
if (allowedtoenter)
{//
   FormsAuthentication.RedirectFromLoginPage(UserName.Text, false);
}

**ckb** · Nov 13 '07, 05:02 PM

No i want it to take the default windows login ie my the password that i use to login to my machine.So my congig file just has

?xml version="1.0"?>

<configuratio n>
<appSettings>
<add key="Ev_WebSevi ce_Assigned_Web .WebService" value="http://ukrdgap349/evserver/WebService.asmx "/>
</appSettings>
<connectionStri ngs/>

<system.web>

<identity impersonate="tr ue" />



<compilation debug="true" strict="false" explicit="true"/>
<pages>
<namespaces>
<clear/>
<add namespace="Syst em"/>
<add namespace="Syst em.Collections"/>
<add namespace="Syst em.Collections. Specialized"/>
<add namespace="Syst em.Configuratio n"/>
<add namespace="Syst em.Text"/>
<add namespace="Syst em.Text.Regular Expressions"/>
<add namespace="Syst em.Web"/>
<add namespace="Syst em.Web.Caching"/>
<add namespace="Syst em.Web.SessionS tate"/>
<add namespace="Syst em.Web.Security "/>
<add namespace="Syst em.Web.Profile"/>
<add namespace="Syst em.Web.UI"/>
<add namespace="Syst em.Web.UI.WebCo ntrols"/>
<add namespace="Syst em.Web.UI.WebCo ntrols.WebParts "/>
<add namespace="Syst em.Web.UI.HtmlC ontrols"/>
<add namespace="Syst em.Net"/>
</namespaces>
</pages>

<authenticati on mode="Windows" />


</system.web>
</configuration>

I do not have any separate login screen that checks what type of login it is .It is just that when i open a page from a link ,to view my active x ctrl i should not have to login.

**Plater** · Nov 13 '07, 05:28 PM

Originally posted by ckb

No i want it to take the default windows login ie my the password that i use to login to my machine.So my congig file just has

I do not have any separate login screen that checks what type of login it is .It is just that when i open a page from a link ,to view my active x ctrl i should not have to login.

Right.
But the system won't supply the credentials unless you have a:
[code=xml]
<authorizatio n>

<deny users="?"/>
</authorization>
[/code]
that will force it to.

In my example I only had it require "windows" credentials for the "Admin/*" section, so you might have missed the authentication part.
I believe you can use wildcards in the <location> section to force it for only a single page.

The reason I had the other stuff is because your credentials aren't always readily available (if you load the page from a computer outside the network or from a different unmanaged-domain) and needed a way to specify them

System.Net.CredentialCache.DefaultCredentials returns an empty string

System.Net.CredentialCache.DefaultCredentials returns an empty string

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment