Email, ASP.NET amd authentication

[thegriff]

I have set up a system where registration and login are required, and as part of teh registration process I confirm Email addresses by sending a message containing an authorization code - all pretty standard stuff.

The problem is that the only way I have found to send the email needs my cpanel login id and password, which I don't want to include in the ASP.NET code, or even in the web.config file if I can help it. Is there some authentication I have missed which doesn't use this?

Code:

System.Net.Mail.MailMessage mail = new System.Net.Mail.MailMessage();
string body = "Hello " + mu.UserName + " and thank you for registering your new account...<br/>";
mail.Body = body;
mail.IsBodyHtml = true;
mail.To.Add(newMailAddress(mu.Email));
mail.From = new System.Net.Mail.MailAddress("NoReply@XXX.x10hosting.com", "NoReply@XXX.x10hosting.com", Encoding.UTF8);
mail.Subject = "New account registration";
mail.SubjectEncoding = Encoding.UTF8;
mail.Priority = System.Net.Mail.MailPriority.High;
System.Net.Mail.SmtpClient smtp = new System.Net.Mail.SmtpClient();
smtp.Host = "mail.XXX.x10hosting.com";
smtp.Port = 26;
smtp.Credentials = new System.Net.NetworkCredential("<my log in id>", "<my log in password>");
smtp.Send(mail);

[ah-blabla]

If you were using php you could use the sendmail() function, and I think I have found an ASP equivalent here, which uses something called CDOSYS.

[srikri]

Hi thegriff,

Your code looks fine... I don't think there is any way you can bypass smtp authentication in asp.net. If you are not comfortable in including password in code or web.config, use php (only to send mail). Below is the php code for sending mail.

<?php
$sendTo = "xxx@xxx.x10hosting.com";
$subject = "Your subject goes here";
$headers = "From: <your mail id>";
$message = "testing";
mail($sendTo, $subject, $message, $headers);
?>

[ah-blabla]

Your code looks fine... I don't think there is any way you can bypass smtp authentication in asp.net.

You can though:

Code:

<%
Set myMail=CreateObject("CDO.Message")
myMail.Subject="Sending email with CDO"
myMail.From="mymail@mydomain.com"
myMail.To="someone@somedomain.com"
myMail.TextBody="This is a message."
myMail.Send
set myMail=nothing
%>

(From the w3schools link in my earlier post.)
I'm just not sure whether it will work here since X10 uses Mono. I would recommend you use php generally though since that is a much more common language.

[thegriff]

Thank you for the replies - I have found a solution!

The Authentication requirement is a red herring; simply remove all reference to it and the problem goes away. The following code sends a email to a user (of the standard ASP.NET membership system):

Code:

///<summary>
/// Send an email to the user.
///</summary>
///<param name="mu">User to send email to</param>
///<param name="body">Text to send</param>
///<param name="subject">Seubject line</param>
///<param name="from">Subaccount to send from. If null or empty, NoReply will be used.</param>
publicstaticvoid SendUserEmail(MembershipUser mu, string body, string subject, string from)
{
if (string.IsNullOrEmpty(from))
{
from = "NoReply";
}
try
{
MailMessage mail = newMailMessage();
mail.Body = body;
mail.IsBodyHtml = true;
mail.To.Add(newMailAddress(mu.Email));
mail.From = newMailAddress(from + strEmailAccountBase, from + strEmailAccountBase, Encoding.UTF8);
mail.Subject = subject;
mail.SubjectEncoding = Encoding.UTF8;
mail.Priority = MailPriority.Normal;
SmtpClient smtp = newSmtpClient();
smtp.Host = "mail.XXX.x10hosting.com";
smtp.Port = 26;
smtp.Send(mail);
}
catch (Exception ex)
{
thrownewApplicationException("Could not send email", ex);
}
}