Web.Config set for xml role & membership provider with password as Hashed"
After creating editors, we see the user .xml not getting updated immediately.
If you try to login, it says login unsuccessful.
I found some interesting things happening here.
1) Once the Editor created, we dont see the user name appearing in app_data/user.xml
2)You change the web.config password to "clear"
4)Now we can see the user.xml file having user details with hashed password.
5)but still the login says unsuccessful.
6)Now reedit the web.config & set password as "Hashed" & reload.
The login is successful.
Do we consider this as a security feature or is it a bug.
Any suggestion to solve double reedit of web.config?