Login via user and pass in the link

Vote:
 

Our customer want to be able to be logged in to episerver (for access rights etc), but dont want to enter a user and pass.

That is log in via a link, e.g. http://epi/login.aspx?username=me&pass=mypass

So can i automatically log in with the supplied information from my login.aspx page somehow?

#21562
Jul 01, 2008 16:04
Vote:
 

In CMS 5 this might work:

if (Membership.ValidateUser("username", "password"))
     FormsAuthentication.SetAuthCookie("username", true);
#21564
Jul 01, 2008 16:46
Vote:
 

You need to program this, as Erik wrote in his answer. But, this is not security! The username and password will be stored in browser history (wherever it is used), same for IIS logs and possibly posted to external sites by the use of browser plug-ins (toolbars of various kinds).

I really hope this is not an internet facing site. :-)

/Steve

#21575
Jul 01, 2008 23:57
Vote:
 

Hehe, hope all you want :)

But apperently for them the security wasn't an issue. What we want to do is just an easy way to deliver different information to seperate people.

Thanks, i will try this!

/Fredrik

#21583
Jul 02, 2008 8:27
* You are NOT allowed to include any hyperlinks in the post because your account hasn't associated to your company. User profile should be updated.