How to prohibit repeated passwords in default membership?
-
hi all I've implemeneted microsofts default membership provider, everything works great. I need to restrict users from changing their password to a password they already used in the last x months. Does anyone know how the default membership provider can do this? If not, any ideas on how to implement it? we have passwords hashed, so we cant really store em outside of aspnet ourseleves. thanks in advance. moazzam
-
hi all I've implemeneted microsofts default membership provider, everything works great. I need to restrict users from changing their password to a password they already used in the last x months. Does anyone know how the default membership provider can do this? If not, any ideas on how to implement it? we have passwords hashed, so we cant really store em outside of aspnet ourseleves. thanks in advance. moazzam
Ass far as I know you would have to extend the MemberShipProvider to add this feature
only two letters away from being an asset
-
Ass far as I know you would have to extend the MemberShipProvider to add this feature
only two letters away from being an asset
but where do we save the passwords? and how do you compare them? they're hashed.
-
but where do we save the passwords? and how do you compare them? they're hashed.
You would of course need to save n number of previous password hashes to compare the new one against. Where to save them is up to you but a simple update trigget on the table could be used.
only two letters away from being an asset