This is an e-commerce site which has up until PCI compliance issues has captured CC information for processing. Now we must no longer process the cards ourselves, nor can we collect the card number expiration date or CCV. We will be using a third party website to handle all of those details. We are posting to a webpage on the other site passing necessary variables such as name address etc. After the other website (URL) completes it process it posts back to a page we designate. when the postback occurs we are in a different session and the current user is NOT logged on.

I have found a solution however.

if membership.validate(<<username>>,<<password>>) then
  formsauthentication.RedirectFromLoginPage(<<username>>,True)
end if

The user is logged in and we can now update order status, clear out the shopping cart which is maintained in the profile.

thanks

Glenn


>>After returning from a third party CreditCard processor, I need to re-login the user from my saved credentials. I do not want the user to see the login interface. I need to execute the login process from the code behind. I cannot find ANY information regarding the objects, properties or methods involved. The login control is a "black hole" no hints escape.
>>
>>Has anyone done this? If so how?
>>
>
>It's not real clear why you need to log in again. Can you walk through the steps that get the user to the point where you want to log them back in? When you login the control basically just writes an session cookie (that contains some encrypted info about the session/user) out to the browser. Is this cookie expiring before you get back to your site? Or are you returning to a different domain after the processor does there thing (ex. the user logged into www.websitename.com and gets returned to websitename.com) which would effectively make it appear like they're not logged in (since they're, well, not).
>
>You can create/write the session cookie yourself but it just seems weird that you even need to do this.