SA and Cookies
Hi all - I am encountering a problem with a site that I am setting up a user registration system on. I am thinking that the problem has to do with the cookies.
I am now testing the user registration system generated by SA. In a security test, I entered the wrong user name to see how SA would react.......I was locked out. When I clicked on the login link, I was immediately directed to the "Access Denied" page and wasn't allowed to attempt to log in. I tried the same procedure with Firefox (because it is easier to delete individual cookies).....got locked out and when I deleted the cookie from my website, I was allowed to log in again. That is how I discovered what caused the problem. I do also own the Cookie Toolkit but am not sure if it is what I need to fix the problem.
Now.....I want to set up the registration system to allow for at least 3 tp 5 attempts without the immediate lockout. Do I delete the cookies displayed under server behaviors and recreate them? Will the Cookie Toolkit offer me the option to set the number of attempts?
When I tried the "Display cookie" function, I got an error message (I assume from SA) saying that "making this change would require changing code that is locked by a template or translator" and I don't really understand this.