Open the ClientLib project and look in ClientCustomer.Authenticate.  To get the status you can do the following:

if (response.User[0].Status != AccountStatus.Authenticated)
{
   // The user has not been Authenticated or marked as Authenticated
    ...
}

Here you can also check that an HMAC was assigned:
response.User[0].Session.HMAC

Hope this helps,

---

Gary L Cox Jr

Says user is authenticated and I still recieved the invalid HMAC error.

Can I sent you the WebUtility and ClientLib projects in a .ZIP so you can check if they are correct.  I am using 4.1.1.

Anyone more suggestions?

Sure you can email them to us and I will run a compare.

Thanks,

---

Gary L Cox Jr

Please do not post source code in the forums. These forums are public. Use email instead.

Thanks.

Your ClientLib matches with only 2 files changed but nothing that would cause a problem and the WebUtility has many changes but again nothing that should cause a problem.  Can you email me your AccountLoginModule files?  Please email them as this is a public forum.  Your last project files you posted had connection string information that you would not want publicly accessed.  We have removed those posts for your privacy.

---

Gary L Cox Jr

Is this what you need.

    public string CustomerLogin
    {
        get
        {
            string customer = Request.QueryString["customer"];
            if (!String.IsNullOrEmpty(customer))
                return customer;
            else
                return null;
        }
    }
    protected void OnLoggingIn(object sender, LoginCancelEventArgs e)
    {
        if (!String.IsNullOrEmpty(CustomerLogin))
            ClientContext.Context["LoginOnBehafOfCustomer"] = CustomerLogin;
        else if (ClientContext.Context["LoginOnBehafOfCustomer"] != null)
            ClientContext.Context["LoginOnBehafOfCustomer"] = null;
    }
    protected void OnLoggedIn(object sender, EventArgs e)
    {
        if (!String.IsNullOrEmpty(CustomerLogin))
            CommonHelper.CreateAuthenticationCookie(CustomerLogin, Login1.RememberMeSet);
        else
            CommonHelper.CreateAuthenticationCookie(Login1.UserName, Login1.RememberMeSet);

        if (!ClientCustomer.AssociateLatestOrder())
            DisplayErrorMessage("Could not associate customer with the order");

        this.Page.Response.Redirect("~/Checkout", true);
    }

You should use the Login1.DestinationPageUrl property instead of calling Redirect.  Also I noticed your using Login1, in the deployed Ecf 4.1.1 we use LoginForm.  Is your login screen custom?

---

Gary L Cox Jr

K I will do that. This is a custom login.  Lets figure out just the login on the login page now instead of this cart page first before we start back on this one.  Here is the code I have on the login page that isnt working because the entire site is not getting initalized.

protected void OnLoggingIn(object sender, LoginCancelEventArgs e)
    {
        if (!String.IsNullOrEmpty(CustomerLogin))
            ClientContext.Context["LoginOnBehafOfCustomer"] = CustomerLogin;
        else if (ClientContext.Context["LoginOnBehafOfCustomer"] != null)
            ClientContext.Context["LoginOnBehafOfCustomer"] = null;
    }

    protected void OnLoggedIn(object sender, EventArgs e)
    {
        if (!String.IsNullOrEmpty(CustomerLogin))
            CommonHelper.CreateAuthenticationCookie(CustomerLogin, Login1.RememberMeSet);
        else
            CommonHelper.CreateAuthenticationCookie(Login1.UserName, Login1.RememberMeSet);

        if (!ClientCustomer.AssociateLatestOrder())
            DisplayErrorMessage("Could not associate customer with the order");

        string url = string.Empty;
        // Redirect
        if (Session["ReturnUrl"] != null)
        {
            url = String.Format("~{0}", Session["ReturnUrl"]);
            Session.Remove("ReturnUrl");
        }
        else
        {
            url = "~/Account-Info";
        }

        Login1.DestinationPageUrl = url;
        Response.Redirect(url,true);

    }

Seems Removing the Response.Redirect from any OnLoggedIn event has solved this problem and just used the DesintationPageUrl.  For now this case is closed, thanks for you wonderful help.

Thanks cblaze22, the issue was that you were redirecting and terminating the current page from being processed when you did Redirect("checkout", true).  The true was telling Response to stop processing the page which was probably ending the authentication.

Thanks

---

Gary L Cox Jr

Gary,

We had a very similar situation where we were getting the following error thrown in our logs.

{machinename}:: ERROR :: WSExceptionType: InvalidHMAC Message: Your request contains an invalid value for HMAC. Please check your HMAC and retry your request.

Logger: Mediachase.eCF.BusFacade.WebServiceException

Thread: 7052

Date: 2009-07-31 11:46:53,747

NDC: (null)

We followed your suggestion of clearing out cookies and that worked. Why would clearing our cookies work? What causes the cookie to go corrupt or bad?

We are just looking for a better explanation then just clear the cookies.

Thanks

Hello Mark,

Cookies store session info related to adding items to a cart, authenticating, registering a new account. These might need to get cleared for a number of reasons.  It could be code that is not initializing a session properly or it could be a random hiccup on the server.  Without studying the logs, we have no way of knowing for sure. 

Here are some helpful links:

http://msdn.microsoft.com/en-us/library/aa289495(VS.71).aspx

http://msdn.microsoft.com/en-us/magazine/cc163708.aspx

Let us know if this keeps happening.

Mediachase Software

The forum is very alert in spam issues.

------------------------------------------------
criminal background checks
Criminal Background Checks Video