473,888 Members | 1,530 Online
Bytes | Software Development & Data Engineering Community
+ Post

Home Posts Topics Members FAQ

forms authentication returns 401 instead of going to login page

Hi,

I have an app in the 1.1 framework that uses forms authentication .

In the normal case, if the user requests a page and is not logged in, he is
redirected to the login page. However, I have noticed that if the original
request includes a parameter called "ReturnUrl" , the server immediately
responds with a 401 error.

I realise that ReturnUrl is also the name of a parameter used by forms
authentication, but I don't see why this should cause any conflict, so it
seems this is simply a bug in the framework. I can't find any documentation
to say that ReturnUrl is a reserved name and cannot be used as an HTTP
request parameter.

Does anyone know of a workaround for this (apart from not having the
parameter called ReturnUrl)? are there any other parameter names I should
avoid?

TIA

Andy
Nov 19 '05 #1
2 1678
Hello
send the URL String ....it is problem due to ReturnURL...
that is why server is giving error message of 401
Regards
Malik ASIF

"Andy Fish" <aj****@blueyon der.co.uk> wrote in message
news:OT******** ******@TK2MSFTN GP12.phx.gbl...
Hi,

I have an app in the 1.1 framework that uses forms authentication .

In the normal case, if the user requests a page and is not logged in, he is redirected to the login page. However, I have noticed that if the original
request includes a parameter called "ReturnUrl" , the server immediately
responds with a 401 error.

I realise that ReturnUrl is also the name of a parameter used by forms
authentication, but I don't see why this should cause any conflict, so it
seems this is simply a bug in the framework. I can't find any documentation to say that ReturnUrl is a reserved name and cannot be used as an HTTP
request parameter.

Does anyone know of a workaround for this (apart from not having the
parameter called ReturnUrl)? are there any other parameter names I should
avoid?

TIA

Andy

Nov 19 '05 #2
this will happen on any URL like

http://localhost/WebApplication1/foo.aspx?ReturnUrl=foo
"Malik Asif Joyia" <as**@palmchip. com> wrote in message
news:Oy******** ******@TK2MSFTN GP14.phx.gbl...
Hello
send the URL String ....it is problem due to ReturnURL...
that is why server is giving error message of 401
Regards
Malik ASIF

"Andy Fish" <aj****@blueyon der.co.uk> wrote in message
news:OT******** ******@TK2MSFTN GP12.phx.gbl...
Hi,

I have an app in the 1.1 framework that uses forms authentication .

In the normal case, if the user requests a page and is not logged in, he

is
redirected to the login page. However, I have noticed that if the
original
request includes a parameter called "ReturnUrl" , the server immediately
responds with a 401 error.

I realise that ReturnUrl is also the name of a parameter used by forms
authentication, but I don't see why this should cause any conflict, so it
seems this is simply a bug in the framework. I can't find any

documentation
to say that ReturnUrl is a reserved name and cannot be used as an HTTP
request parameter.

Does anyone know of a workaround for this (apart from not having the
parameter called ReturnUrl)? are there any other parameter names I should
avoid?

TIA

Andy


Nov 19 '05 #3

This thread has been closed and replies have been disabled. Please start a new discussion.

Similar topics

0
4261
by: Anonieko Ramos | last post by:
ASP.NET Forms Authentication Best Practices Dr. Dobb's Journal February 2004 Protecting user information is critical By Douglas Reilly Douglas is the author of Designing Microsoft ASP.NET Applications and owner of Access Microsystems. Doug can be reached at doug@accessmicrosystems.com. --------------------------------------------------------------------------------
0
574
by: Anonieko Ramos | last post by:
ASP.NET Forms Authentication Best Practices Dr. Dobb's Journal February 2004 Protecting user information is critical By Douglas Reilly Douglas is the author of Designing Microsoft ASP.NET Applications and owner of Access Microsystems. Doug can be reached at doug@accessmicrosystems.com. --------------------------------------------------------------------------------
0
343
by: Anonieko Ramos | last post by:
ASP.NET Forms Authentication Best Practices Dr. Dobb's Journal February 2004 Protecting user information is critical By Douglas Reilly Douglas is the author of Designing Microsoft ASP.NET Applications and owner of Access Microsystems. Doug can be reached at doug@accessmicrosystems.com. --------------------------------------------------------------------------------
0
1334
by: Anonieko Ramos | last post by:
ASP.NET Forms Authentication Best Practices Dr. Dobb's Journal February 2004 Protecting user information is critical By Douglas Reilly Douglas is the author of Designing Microsoft ASP.NET Applications and owner of Access Microsystems. Doug can be reached at doug@accessmicrosystems.com. --------------------------------------------------------------------------------
4
2502
by: Lewis Edward Moten III | last post by:
I have a file that users can download through a web page protected by forms authentication: Download.aspx?ID=45 and within that file ... FileInfo fileToDownload = new FileInfo(fileName);
0
9800
by: Hystou | last post by:
Most computers default to English, but sometimes we require a different language, especially when relocating. Forgot to request a specific language before your computer shipped? No problem! You can effortlessly switch the default language on Windows 10 without reinstalling. I'll walk you through it. First, let's disable language synchronization. With a Microsoft account, language settings sync across devices. To prevent any complications,...
0
11182
Oralloy
by: Oralloy | last post by:
Hello folks, I am unable to find appropriate documentation on the type promotion of bit-fields when using the generalised comparison operator "<=>". The problem is that using the GNU compilers, it seems that the internal comparison operator "<=>" tries to promote arguments from unsigned to signed. This is as boiled down as I can make it. Here is my compilation command: g++-12 -std=c++20 -Wnarrowing bit_field.cpp Here is the code in...
0
10778
jinu1996
by: jinu1996 | last post by:
In today's digital age, having a compelling online presence is paramount for businesses aiming to thrive in a competitive landscape. At the heart of this digital strategy lies an intricately woven tapestry of website design and digital marketing. It's not merely about having a website; it's about crafting an immersive digital experience that captivates audiences and drives business growth. The Art of Business Website Design Your website is...
0
9597
agi2029
by: agi2029 | last post by:
Let's talk about the concept of autonomous AI software engineers and no-code agents. These AIs are designed to manage the entire lifecycle of a software development project—planning, coding, testing, and deployment—without human intervention. Imagine an AI that can take a project description, break it down, write the code, debug it, and then launch it, all on its own.... Now, this would greatly impact the work of software developers. The idea...
0
7148
by: conductexam | last post by:
I have .net C# application in which I am extracting data from word file and save it in database particularly. To store word all data as it is I am converting the whole word file firstly in HTML and then checking html paragraph one by one. At the time of converting from word file to html my equations which are in the word document file was convert into image. Globals.ThisAddIn.Application.ActiveDocument.Select();...
0
6014
by: adsilva | last post by:
A Windows Forms form does not have the event Unload, like VB6. What one acts like?
1
4642
by: 6302768590 | last post by:
Hai team i want code for transfer the data from one system to another through IP address by using C# our system has to for every 5mins then we have to update the data what the data is updated we have to send another system
2
4245
muto222
by: muto222 | last post by:
How can i add a mobile payment intergratation into php mysql website.
3
3252
bsmnconsultancy
by: bsmnconsultancy | last post by:
In today's digital era, a well-designed website is crucial for businesses looking to succeed. Whether you're a small business owner or a large corporation in Toronto, having a strong online presence can significantly impact your brand's success. BSMN Consultancy, a leader in Website Development in Toronto offers valuable insights into creating effective websites that not only look great but also perform exceptionally well. In this comprehensive...

By using Bytes.com and it's services, you agree to our Privacy Policy and Terms of Use.

To disable or enable advertisements and analytics tracking please visit the manage ads & tracking page.