I have 2 asp.net applications : a Stock Control application and a Reporting
application. They are separate applications in IIS 6 and developed as
separate projects in visual studio.net.
When the user first goes into the Stock Control app, he needs to log in.
When he goes from the Stock Control app to the Reporting app, his User ID
needs to get transfered across so the Reporting app knows who the user is
(without asking him to log in again).
I don't want to use a querystring (because this will be visible), and the
session and cookies won't transfer across web applications.
How should I transfer the User ID from one application to another ?
Thanks,
Craig 5 1479
Craig,
Could you not just use a temporary cookie?
I presume you want to hide the ID so that anyone who sees the ID cant just
URL hack their way into the reporting page.
MattC
"Craig HB" <Cr*****@discus sions.microsoft .com> wrote in message
news:29******** *************** ***********@mic rosoft.com... I have 2 asp.net applications : a Stock Control application and a Reporting application. They are separate applications in IIS 6 and developed as separate projects in visual studio.net.
When the user first goes into the Stock Control app, he needs to log in. When he goes from the Stock Control app to the Reporting app, his User ID needs to get transfered across so the Reporting app knows who the user is (without asking him to log in again).
I don't want to use a querystring (because this will be visible), and the session and cookies won't transfer across web applications.
How should I transfer the User ID from one application to another ?
Thanks, Craig
If you save a cookie from one web app, can another web app access that cookie
(they are different webs in IIS 6). I didn't think you could, but if you can,
that solves my problem.
You got me on that one.
I was thinking of the coookie type that is written to the clients computer.
But I am unsure as to how that data is accessed, stored.
MattC
"Craig HB" <Cr*****@discus sions.microsoft .com> wrote in message
news:F7******** *************** ***********@mic rosoft.com... If you save a cookie from one web app, can another web app access that cookie (they are different webs in IIS 6). I didn't think you could, but if you can, that solves my problem.
I do this with an encrypted URL. The URL consists of something like
x=1jhbsop4kgmr8 r,spwkw...
I create a comma delimited string containing a date-time stamp and a userid.
I encrypt the string, URL-Encode the string equivalent of the encrypted text
and put it in the URL. The page receiving the special URL decrypts it and
uses the userid to authenticate the user. The date-time stamp is used to
"invalidate " the encrypted URL after an arbitrary amount of time. This
prevents someone from saving it and using it later in an unauthorized fashion.
Ideas abound....
"Craig HB" wrote: If you save a cookie from one web app, can another web app access that cookie (they are different webs in IIS 6). I didn't think you could, but if you can, that solves my problem.
thanks for the help, Brad -- great suggestion. This thread has been closed and replies have been disabled. Please start a new discussion. Similar topics |
by: Manuel Lopez |
last post by:
Hello,
We have two applications that will reside on the same webserver.
We want to be able to post from pages in App1 to to pages in App2.
We need to pass sensible data, so we cannot use querystring.
We are using server.transfer (needing to reference App2 in App1).
|
by: mg |
last post by:
I have two apps off wwwroot:
App1/WebForm1.aspx
App2/WebForm1.aspx
In the code behind of App1/WebForm1.aspx, I have
private void Button1_Click(object sender, System.EventArgs
e)
|
by: Peter White |
last post by:
I am trying to transfer a file from a user's local machine (the file is
automatically created by a 3rd party tool and stored in the users local
settings/temp directory) via a web form to my web server. I am using Visual
Studio.Net 2003 and running IIS 5.0. There is no need to use the input=file
html control b/c the user has no idea the name of the temporary file that I
need to capture and store on the server. I believe the "value"...
|
by: aure_bobo |
last post by:
Hi all,
I'm currently developing a system with several webapps in ASP.NET/C#.
One of my website is used to login user : I will call this website
Webapp1.
Depending on the user attributes, I will send the user to an another
website (let's Webapp2 in my example), where I would like to login
automatically the user with the credentials entered in WebApp1.
|
by: Joseph S. |
last post by:
Is there a system available to do the following:
consider an app of a few pages:
page1.php:
form1----->page3.php
form2----->page4.php
page2.php:
form3----->page3.php
form4----->page4.php
| |
by: barryfz |
last post by:
I need to be able to move from one web app on my server to another on the
same server and preserve the session state. I have played with
server.transfer but I get an error saying I can't do this. How can I
accomplish this. I don't think redirects with session state being passed in
the url makes any sense from a security standpoint.
--
Barry
|
by: Steven Nagy |
last post by:
Hi all,
What are the major considerations when considering Server.Transfer?
I have some legacy apps (when I say legacy, I mean ASP.NET1.0) that use
Server.Transfer for almost everything. I always thought
Response.Redirect was better because more of the items are GCed. So I
am rethinking about the importance of Server.Transfer usage. In the old
ASP days I seem to remember (I could be wrong) that when I did a
Server.Transfer, all objects...
|
by: Frinavale |
last post by:
Platform: WindowsXP and IIS
Language: Asp .NET (using Visual Basic back end)
I'm not sure if anyone will be able to understand my code because its written using ASPX and Visual Basic back end. My problem is mostly understanding the ASP part and Server.Transfer oddities I'm experiencing. I have posted before about this project's problems but since I have recoded everything to implement Server.Transfer, figured its probably best to start a...
|
by: =?Utf-8?B?c2hldWVydHo=?= |
last post by:
Hi,
I'm developing a reporting app that works as a subordinate to other apps,
ie, users still see the menu structure for the app they're working in, but
generate their report in my app.
When the user selects the menu option for my report, they go through a
session transfer page, and they are Response.Redirect'ed to my app. This
works fine. However, on the index.aspx page of my app, when they click a
report, or generate a new report,...
|
by: marktang |
last post by:
ONU (Optical Network Unit) is one of the key components for providing high-speed Internet services. Its primary function is to act as an endpoint device located at the user's premises. However, people are often confused as to whether an ONU can Work As a Router. In this blog post, we’ll explore What is ONU, What Is Router, ONU & Router’s main usage, and What is the difference between ONU and Router. Let’s take a closer look !
Part I. Meaning of...
|
by: Oralloy |
last post by:
Hello folks,
I am unable to find appropriate documentation on the type promotion of bit-fields when using the generalised comparison operator "<=>".
The problem is that using the GNU compilers, it seems that the internal comparison operator "<=>" tries to promote arguments from unsigned to signed.
This is as boiled down as I can make it.
Here is my compilation command:
g++-12 -std=c++20 -Wnarrowing bit_field.cpp
Here is the code in...
| |
by: jinu1996 |
last post by:
In today's digital age, having a compelling online presence is paramount for businesses aiming to thrive in a competitive landscape. At the heart of this digital strategy lies an intricately woven tapestry of website design and digital marketing. It's not merely about having a website; it's about crafting an immersive digital experience that captivates audiences and drives business growth.
The Art of Business Website Design
Your website is...
|
by: Hystou |
last post by:
Overview:
Windows 11 and 10 have less user interface control over operating system update behaviour than previous versions of Windows. In Windows 11 and 10, there is no way to turn off the Windows Update option using the Control Panel or Settings app; it automatically checks for updates and installs any it finds, whether you like it or not. For most users, this new feature is actually very convenient. If you want to control the update process,...
|
by: agi2029 |
last post by:
Let's talk about the concept of autonomous AI software engineers and no-code agents. These AIs are designed to manage the entire lifecycle of a software development project—planning, coding, testing, and deployment—without human intervention. Imagine an AI that can take a project description, break it down, write the code, debug it, and then launch it, all on its own....
Now, this would greatly impact the work of software developers. The idea...
|
by: isladogs |
last post by:
The next Access Europe User Group meeting will be on Wednesday 1 May 2024 starting at 18:00 UK time (6PM UTC+1) and finishing by 19:30 (7.30PM).
In this session, we are pleased to welcome a new presenter, Adolph Dupré who will be discussing some powerful techniques for using class modules.
He will explain when you may want to use classes instead of User Defined Types (UDT). For example, to manage the data in unbound forms.
Adolph will...
|
by: 6302768590 |
last post by:
Hai team
i want code for transfer the data from one system to another through IP address by using C# our system has to for every 5mins then we have to update the data what the data is updated we have to send another system
|
by: muto222 |
last post by:
How can i add a mobile payment intergratation into php mysql website.
| |
by: bsmnconsultancy |
last post by:
In today's digital era, a well-designed website is crucial for businesses looking to succeed. Whether you're a small business owner or a large corporation in Toronto, having a strong online presence can significantly impact your brand's success. BSMN Consultancy, a leader in Website Development in Toronto offers valuable insights into creating effective websites that not only look great but also perform exceptionally well. In this comprehensive...
| |