Vulnerability in EPiServer.Forms
I've installed Alloy to learn Epi a bit better and after a certain amount of time, like an hour or two, I get logged out and cannot log in again.
I had just edited a page so it's not inactivity.
What do I have to do to get back in?
I assume that you have installed the site through Visual Studio extension and that you are running the site in IISExpress? If so the alloy site uses asp.net identitiy as authentication system, it will add a cookie after you have logged in. That cookie will have an expiration time and when expired you should be redirected to login again. Or if you are in edit mode and get 401 from a xhr request it should display a form where you can login.
You could try to clear all cookies for the site and then access it again then you should get redirected to login page.
U assume correct, I should have specified.
Will try to clear cookies when I get home. I do get redirected though and I cannot log in. I've tried the admin user I created at startup as well as my local windows account.
Yeay it worked. Thank u.