堆栈内存溢出
  简体   繁体   English

收到大量此类消息成员资格凭证验证失败

[英]Getting a lot of these messages Membership credential verification failed

 原文  2014-01-18 19:28:06       c#/ asp.net-mvc/ iis-7.5/ membership-provider

问题描述

I am getting a lot of these in my event viewer: 我在事件查看器中得到了很多: 

Event code: 4006 
Event message: Membership credential verification failed. 
Event time: 1/18/2014 11:33:27 AM 
Event time (UTC): 1/18/2014 5:33:27 PM 
Event ID: dd4b04a795db4e5ab5fafd8243280047 
Event sequence: 1224 
Event occurrence: 28 
Event detail code: 0 

Application information: 
    Application domain: /LM/W3SVC/3/ROOT/SuburbanCustPortal-1-130345141090318852 
    Trust level: Full 
    Application Virtual Path: /SuburbanCustPortal 
    Application Path: C:\inetpub\secure.ssswebportal.com\SuburbanCustPortal\ 
    Machine name: WIN-OB929P97YAR 

Process information: 
    Process ID: 4384 
    Process name: w3wp.exe 
    Account name: NT AUTHORITY\NETWORK SERVICE 

Request information: 
    Request URL: http://myurl.com:443/SuburbanCustPortal/Account/Logon2 
    Request path: /SuburbanCustPortal/Account/Logon2 
    User host address: xxx.xxx.xxx.xxx 
    User:  
    Is authenticated: False 
    Authentication Type:  
    Thread account name: NT AUTHORITY\NETWORK SERVICE 

Name to authenticate: nancyduve 

Custom event details:

It seems to be always happening on the Logon2 url. 它似乎总是在Logon2网址上发生。

Here is my Logon2: 这是我的Logon2: 

 public ActionResult Logon2(LogOnModel model, string returnUrl, string corpid)

{
  var control = Logging.StartLog();
  control.Source = SourceEnum.WebPortal;
  control.SessionId = Session.SessionID;

  try
  {
    Logging.WriteLog("Starting Logon2");
    Logging.WriteLog("returnUrl: " + returnUrl);
    Logging.WriteLog("corpid: " + corpid);
    Logging.WriteLog("model.UserName: " + model.UserName);
    Logging.WriteLog("model.Password: " + model.Password);

    Logging.WriteLog(string.Format("ModelState.IsValid: {0}", ModelState.IsValid));
    if (ModelState.IsValid)
    {
      if (Membership.ValidateUser(model.UserName, model.Password))
      {
        Logging.WriteLog("Validated User");
        Logging.WriteLog(string.Format("model.UserName: {0}", model.UserName));


        FormsAuthentication.SetAuthCookie(model.UserName, true);
        if (Url.IsLocalUrl(returnUrl) && returnUrl.Length > 1
            && returnUrl.StartsWith("/")
            && !returnUrl.StartsWith("//")
            && !returnUrl.StartsWith("/\\"))
        {
          Logging.WriteLog("Redirect(returnUrl)");
          return Redirect(returnUrl);
        }

        Logging.WriteLog("Start _client.RequestCustomersForAccount(model.UserName)");
        var customer = _client.RequestCustomerForAccount(model.UserName);

        // ********** NO ACCOUNTS FOUND ************
        // No customers assigned to this login
        // take them to the add account screen
        if (customer == null)
        {
          // no accounts tied to this logon
          Logging.WriteLog("No accounts found for this login.");
          Logging.WriteLog("RedirectToAction(AddCustomer, Customer)");
          // we need to make sure the branch account number is blank from any prior visits
          Session[SessionEnums.CurrentAccountGuid.ToString()] = string.Empty;
          Session[SessionEnums.CurrentBranchNumber.ToString()] = string.Empty;
          Session[SessionEnums.CurrentAccountNumber.ToString()] = string.Empty;
          return RedirectToAction("AddCustomer", "Customer");
        }

        // the account's tokenid that was used when the account was created 
        // takes presidence over the one being passed in since the account
        // login is specific to the original company that they signed up with
        Guid acctguid;
        if (Guid.TryParse(customer.AccountId, out acctguid))
        {
          var tokenid = _client.GetAccountTokenId(acctguid);
          if (tokenid != Guid.Empty)
          {
            GetCookieInfo.TokenId = tokenid.ToString();
            Session[SessionEnums.TokenId.ToString()] = tokenid.ToString();
          }
        }

        Logging.WriteLog("RedirectToAction(AccountScreen, Customer)");
        model.AccountId = customer.AccountId;

        // save this account info in the cookie and session 
        Session[SessionEnums.CurrentAccountGuid.ToString()] = customer.AccountId;
        Session[SessionEnums.CurrentBranchNumber.ToString()] = customer.Branch;
        Session[SessionEnums.CurrentAccountNumber.ToString()] = customer.AccountNumber;

        Logging.WriteLog(string.Format("customer.AccountId: {0}", customer.AccountId));
        Logging.WriteLog(string.Format("customer.Branch: {0}", customer.Branch));
        Logging.WriteLog(string.Format("customer.AccountNumber: {0}", customer.AccountNumber));
        // only 1 account tied to this logon
        return RedirectToAction("AccountScreen", "Customer");
      }
      else
      {
        var user = Membership.GetUser(model.UserName);
        if (user != null && user.IsLockedOut)
        {
          const string lockedmsg =
            "This account has been locked due to too many login attempts. Please reset your password to unlock this account.";
          Logging.WriteLog(lockedmsg);
          ModelState.AddModelError(string.Empty, lockedmsg);
        }

        if (user != null && !user.IsApproved)
        {
          const string lockedmsg =
            "This account has been registered but the email that was sent was never authenticated. Please check your email account for this email.";
          Logging.WriteLog(lockedmsg);
          ModelState.AddModelError(string.Empty, lockedmsg);
        }
        else
        {
          const string msg = "Invalid username or password.";
          Logging.WriteLog(msg);
          ModelState.AddModelError(string.Empty, msg);
        }
      }
    }

    // If we got this far, something failed, redisplay form
    return View("Logon");
  }
  catch (Exception ex)
  {
    Logging.WriteLog(string.Format("exception: {0}", ex.Message));
    Logging.WriteException(ex);
    return View("Logon");
  }
  finally
  {
    Logging.WriteLog(control, "End Logon2");
  }
}

Am I missing something in my code or is this a normal log? 我在代码中丢失了某些内容还是正常的日志?

1 个解决方案

解决方案1
 0  2014-01-21 13:41:45

Have you checked that your ApplicationName in your Web.Config has been set up correctly? 您是否检查过Web.Config中的ApplicationName设置正确? That's when I've seen this error the most. 那是我最常看到此错误的时间。

Alternatively it's possible you have a user (nancy) who is locked out and she keeps trying to log in, have you enabled locking users out and could you check to see if she meets this criteria? 或者,您可能有一个被锁定的用户(nancy),而她一直在尝试登录,是否启用了将用户锁定的功能,是否可以检查她是否满足此条件?

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 会员资格验证失败 - Membership credential verification failed 会员凭证验证问题在不应该使用时失败 - having an issue with membership credential verification failed when it shouldn't be using it WCF-如何调试“签名验证失败”消息 - WCF - How to debug “The signature verification failed” messages ASP.NET成员身份验证电子邮件 - ASP.NET Membership Email Verification 参考摘要验证失败 - Digest verification failed for Reference Farseer收到很多警告 - Farseer getting lot of warnings c#ASP.Net成员资格WebForm电子邮件验证 - c# ASP.Net Membership WebForm Email Verification DotNetOpenAuth“此站点验证失败。” - DotNetOpenAuth “This site failed verification.” ClientWebsocket SSL 证书验证失败 - ClientWebsocket SSL Certificate Verification Failed 使用会员资格获取ActiveDirectory标题 - Getting ActiveDirectory title using Membership
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM