Hi buddies,
I have a question.
I want to use the forms authentication in my web app.
My user login. The cookie is stored in the client machine and some
important information is stored in session variables.
What will happen if the user closes the browser and reopen to relog in
the application? I mean, the cookie is not expired yet so the login is
automatic, but, I have no session informations consequently my app
should fail (I assume).
Am I missing something or I have to create a workaround to bypass this
situation?
Thanks in advance
Stefano Mostarda
Rome Italy 6 1350
What you can do is, in the session_end you can delete formauthenticat ion
cookie by using signout method of formsauthentica tion.
--
Saravana
Microsoft MVP - ASP.NET www.extremeexperts.com
"Stefano Mostarda" <st************ **@fastwebnet.i t> wrote in message
news:Ot******** ******@TK2MSFTN GP09.phx.gbl... Hi buddies,
I have a question.
I want to use the forms authentication in my web app.
My user login. The cookie is stored in the client machine and some important information is stored in session variables.
What will happen if the user closes the browser and reopen to relog in the application? I mean, the cookie is not expired yet so the login is automatic, but, I have no session informations consequently my app should fail (I assume).
Am I missing something or I have to create a workaround to bypass this situation?
Thanks in advance
Stefano Mostarda Rome Italy
What you can do is, in the session_end you can delete formauthenticat ion
cookie by using signout method of formsauthentica tion.
--
Saravana
Microsoft MVP - ASP.NET www.extremeexperts.com
"Stefano Mostarda" <st************ **@fastwebnet.i t> wrote in message
news:Ot******** ******@TK2MSFTN GP09.phx.gbl... Hi buddies,
I have a question.
I want to use the forms authentication in my web app.
My user login. The cookie is stored in the client machine and some important information is stored in session variables.
What will happen if the user closes the browser and reopen to relog in the application? I mean, the cookie is not expired yet so the login is automatic, but, I have no session informations consequently my app should fail (I assume).
Am I missing something or I have to create a workaround to bypass this situation?
Thanks in advance
Stefano Mostarda Rome Italy
Don't persist the cookie.
FormsAuthentica tion.SetAuthCoo kie(userId.ToSt ring(), false)
m.
--------------------
"Stefano Mostarda" <st************ **@fastwebnet.i t> wrote in message
news:Ot******** ******@TK2MSFTN GP09.phx.gbl... Hi buddies,
I have a question.
I want to use the forms authentication in my web app.
My user login. The cookie is stored in the client machine and some important information is stored in session variables.
What will happen if the user closes the browser and reopen to relog in the application? I mean, the cookie is not expired yet so the login is automatic, but, I have no session informations consequently my app should fail (I assume).
Am I missing something or I have to create a workaround to bypass this situation?
Thanks in advance
Stefano Mostarda Rome Italy
Don't persist the cookie.
FormsAuthentica tion.SetAuthCoo kie(userId.ToSt ring(), false)
m.
--------------------
"Stefano Mostarda" <st************ **@fastwebnet.i t> wrote in message
news:Ot******** ******@TK2MSFTN GP09.phx.gbl... Hi buddies,
I have a question.
I want to use the forms authentication in my web app.
My user login. The cookie is stored in the client machine and some important information is stored in session variables.
What will happen if the user closes the browser and reopen to relog in the application? I mean, the cookie is not expired yet so the login is automatic, but, I have no session informations consequently my app should fail (I assume).
Am I missing something or I have to create a workaround to bypass this situation?
Thanks in advance
Stefano Mostarda Rome Italy
"Mohammad A. Samara" <ad***@icslondo n.com> wrote in message
news:Oc******** ******@TK2MSFTN GP12.phx.gbl... Don't persist the cookie.
FormsAuthentica tion.SetAuthCoo kie(userId.ToSt ring(), false)
The other thing you can do is to put in the cookie enough information to
reconstruct your Session data.
--
John
--------------------
"Stefano Mostarda" <st************ **@fastwebnet.i t> wrote in message news:Ot******** ******@TK2MSFTN GP09.phx.gbl... Hi buddies,
I have a question.
I want to use the forms authentication in my web app.
My user login. The cookie is stored in the client machine and some important information is stored in session variables.
What will happen if the user closes the browser and reopen to relog in the application? I mean, the cookie is not expired yet so the login is automatic, but, I have no session informations consequently my app should fail (I assume).
Am I missing something or I have to create a workaround to bypass this situation?
Thanks in advance
Stefano Mostarda Rome Italy
"Mohammad A. Samara" <ad***@icslondo n.com> wrote in message
news:Oc******** ******@TK2MSFTN GP12.phx.gbl... Don't persist the cookie.
FormsAuthentica tion.SetAuthCoo kie(userId.ToSt ring(), false)
The other thing you can do is to put in the cookie enough information to
reconstruct your Session data.
--
John
--------------------
"Stefano Mostarda" <st************ **@fastwebnet.i t> wrote in message news:Ot******** ******@TK2MSFTN GP09.phx.gbl... Hi buddies,
I have a question.
I want to use the forms authentication in my web app.
My user login. The cookie is stored in the client machine and some important information is stored in session variables.
What will happen if the user closes the browser and reopen to relog in the application? I mean, the cookie is not expired yet so the login is automatic, but, I have no session informations consequently my app should fail (I assume).
Am I missing something or I have to create a workaround to bypass this situation?
Thanks in advance
Stefano Mostarda Rome Italy
This thread has been closed and replies have been disabled. Please start a new discussion. Similar topics |
by: Billy Jacobs |
last post by:
I have a website which has both secure and non-secure
pages. I want to uses forms authentication. How do I
accomplish this?
Originally I had my web.config file in the root with Forms
Authentication set up and it worked just fine. Then I
realized that I needed to have some pages unsecure.
I then created 2 directories. One named Secure and the
other named Public. I placed my web.config file in my
|
by: Nick |
last post by:
I am working a new application...well actually a series of applications for
my company. They want internal users to be able to go to a site and
everything regarding security is transparent, however we will have brokers
and customers that also need to connect and will require a username and
password. In this case we were going to store their credentials in a SQL
database. Internal users will have the ability to access the same resources...
|
by: ElmoWatson |
last post by:
I tried on the Security newgroup, as well as other places, and haven't
gotten an answer yet - - I'm pulling my hair out over this one.
I'm trying to get Forms Authentication working.....I can get any requested
page to automatically go to the Login.aspx page, AND, the ReturnURL
querystring is correct in the address bar, but no matter what, I can't get
it, once the user is authenticated, to redirect to the new page. It ALWAYS
refreshes the...
|
by: Rob |
last post by:
I have an ASP.NET application that uses forms-based
authentication. A user wishes to be able to run multiple
sessions of this application simultaneously from the
user's client machine.
The web.config file is configured as such:
<authentication mode="Forms">
<forms loginUrl="Login.aspx" protection="All"
name="myApplication"/>
</authentication>
|
by: Eric |
last post by:
I am trying to build an app where the stuff in the root directory is open to
all, but anything under the Restricted directory requires you to login and I
want to use Forms to do it. I'm having trouble getting the web.config to
work properly.
First I tried to have a second web.config in the sub directory with
authentication and authorization set to forms, but it blew up.
Next, I tried to modify the root web.config in the following manner...
| |
by: Justin |
last post by:
I am trying to password protect a subdirectory using forms authentication. I
am using the "Location" tag to specify the directory to be protected. The
login.aspx page is in the root directory of the app. Here is the web.config:
<location path="Admin">
<system.web>
<authentication mode="Forms">
<forms name="authAdmin" loginUrl="Login.aspx" protection="All" timeout="30">
<credentials passwordFormat="Clear">
<user name="Admin"...
|
by: V. Jenks |
last post by:
Using forms authentication, can I control which pages
and/or directories a user would have access to or is that
only available with Windows authentication?
Thanks!
|
by: Rippo |
last post by:
Hi
I am using role base forms authentication in asp.net and have come
across a problem that I would like advice on.
On a successful login a session variable is set to identify a user.
This is all good as this session variable is used to retrieve data for
that user etc. However if I restart the webserver then the users
session is lost but the ticket is still active. Therefore the user is
not redirected back to the login page.
|
by: Bjorn Sagbakken |
last post by:
In a web-application with login creds (user, pwd), these are checked against
a user table on a SQL server. On a positive validation I have saved the
userID, name, custno and role-settings in a userobject (custom build class)
and added this to the session using as session variable like session
For all other pages I have added a small test in the page_load event,
basically testing if the session != null, but also checking if the...
|
by: Rory Becker |
last post by:
Having now created a Custom MembershipProvider that seems to work correctly
with my Logon and ChangePassword controls, I am, as they say, a happy bunny.
The next stange is to move on to the creation of content which adjusts based
on the user.
I have several pages which require a user to be logged on and several which
do not. Prior to this point in time I have used 2 different master pages.
one with a control which checks a session...
|
by: marktang |
last post by:
ONU (Optical Network Unit) is one of the key components for providing high-speed Internet services. Its primary function is to act as an endpoint device located at the user's premises. However, people are often confused as to whether an ONU can Work As a Router. In this blog post, we’ll explore What is ONU, What Is Router, ONU & Router’s main usage, and What is the difference between ONU and Router. Let’s take a closer look !
Part I. Meaning of...
| |
by: Hystou |
last post by:
Most computers default to English, but sometimes we require a different language, especially when relocating. Forgot to request a specific language before your computer shipped? No problem! You can effortlessly switch the default language on Windows 10 without reinstalling. I'll walk you through it.
First, let's disable language synchronization. With a Microsoft account, language settings sync across devices. To prevent any complications,...
|
by: Oralloy |
last post by:
Hello folks,
I am unable to find appropriate documentation on the type promotion of bit-fields when using the generalised comparison operator "<=>".
The problem is that using the GNU compilers, it seems that the internal comparison operator "<=>" tries to promote arguments from unsigned to signed.
This is as boiled down as I can make it.
Here is my compilation command:
g++-12 -std=c++20 -Wnarrowing bit_field.cpp
Here is the code in...
|
by: jinu1996 |
last post by:
In today's digital age, having a compelling online presence is paramount for businesses aiming to thrive in a competitive landscape. At the heart of this digital strategy lies an intricately woven tapestry of website design and digital marketing. It's not merely about having a website; it's about crafting an immersive digital experience that captivates audiences and drives business growth.
The Art of Business Website Design
Your website is...
|
by: tracyyun |
last post by:
Dear forum friends,
With the development of smart home technology, a variety of wireless communication protocols have appeared on the market, such as Zigbee, Z-Wave, Wi-Fi, Bluetooth, etc. Each protocol has its own unique characteristics and advantages, but as a user who is planning to build a smart home system, I am a bit confused by the choice of these technologies. I'm particularly interested in Zigbee because I've heard it does some...
|
by: conductexam |
last post by:
I have .net C# application in which I am extracting data from word file and save it in database particularly. To store word all data as it is I am converting the whole word file firstly in HTML and then checking html paragraph one by one.
At the time of converting from word file to html my equations which are in the word document file was convert into image.
Globals.ThisAddIn.Application.ActiveDocument.Select();...
|
by: adsilva |
last post by:
A Windows Forms form does not have the event Unload, like VB6. What one acts like?
| |
by: 6302768590 |
last post by:
Hai team
i want code for transfer the data from one system to another through IP address by using C# our system has to for every 5mins then we have to update the data what the data is updated we have to send another system
|
by: bsmnconsultancy |
last post by:
In today's digital era, a well-designed website is crucial for businesses looking to succeed. Whether you're a small business owner or a large corporation in Toronto, having a strong online presence can significantly impact your brand's success. BSMN Consultancy, a leader in Website Development in Toronto offers valuable insights into creating effective websites that not only look great but also perform exceptionally well. In this comprehensive...
| |