Hi
My app is trying to login to an ASP.NET site that uses Forms authentication. I am trying to do in my app (what was previously posted in a newsgroup) the same that a browser does
3) The browser requests the login page specified
4) The server responds with the login pag
5) The user fills in the login page and submits the form, so the browser POSTs the form back to the login pag
6) If the credentials are valid, the server responds with another "302 Page Moved" status, a Location header pointing to protected.aspx, and a Set-Cookie header providing the encrypted Forms Authentication Ticket
I build a Post request to login.aspx and use HttpWebRequest to send it. I use HttpWebResponse to get the response
I have sent the proper login & password & VIEWSTATE info and all that stuff. In a sniffer trace, the response is a "HTTP/1.1 302 Found" with 3 Set-Cookie Headers. The web site redirects me to default.aspx; the trace shows my side (IIS?) sending a GET request for default.aspx, and that's what my app gets in my HttpWebResponse object. The problem is that I don't get logged in because this automatic GET request (below my app somewhere) doesn't get the cookies from the "302 Found" response and send it with the request; I know this because I run the trace and do the same steps from a browser, and in that session, the cookies get passed properly in the 'GET default.aspx' request
The HttpWebResponse object has a ContinueDelegate property, where I can provide a delegate method that's called when a HTTP 100 Continue response is received, but nothing for a "302 Found" response
Any ideas how to solve this? This is a show-stopper for me. I have a standard setup: VS.NET 2003 on XP Pro with IE 6.0 SP1
Thanks in advance
Iggy Evans
2  3297 
Iggy Evans wrote: Hi,
My app is trying to login to an ASP.NET site that uses Forms
authentication. I am trying to do in my app (what was previously
posted in a newsgroup) the same that a browser does: 3) The browser
requests the login page specified. 4) The server responds with the
login page 5) The user fills in the login page and submits the form,
so the browser POSTs the form back to the login page 6) If the
credentials are valid, the server responds with another "302 Page
Moved" status, a Location header pointing to protected.aspx, and a
Set-Cookie header providing the encrypted Forms Authentication
Ticket.
I build a Post request to login.aspx and use HttpWebRequest to send
it. I use HttpWebResponse to get the response.
I have sent the proper login & password & VIEWSTATE info and all that
stuff. In a sniffer trace, the response is a "HTTP/1.1 302 Found"
with 3 Set-Cookie Headers. The web site redirects me to default.aspx;
the trace shows my side (IIS?) sending a GET request for
default.aspx, and that's what my app gets in my HttpWebResponse
object. The problem is that I don't get logged in because this
automatic GET request (below my app somewhere) doesn't get the
cookies from the "302 Found" response and send it with the request; I
know this because I run the trace and do the same steps from a
browser, and in that session, the cookies get passed properly in the
'GET default.aspx' request.
The most simple explanation is that you didn't set a CookiContainer in your
HttpWebRequest. If you don't, the framework won't process cookies and
they're all lost.
Cheers,
--
Joerg Jooss jo*********@gmx.net
Brilliant. Thanks, Joerg, that worked
Iggy
This thread has been closed and replies have been disabled. Please start a new discussion. Similar topics
by: Burt Lewis |
last post by:
Hi,
I have 2 xsl style sheets calling separate rss feeds and I use ASP to
display.
Problem is that the 1st xsl takes on the style of the 2nd xsl even
though they are different formats. I...
|
by: Michael Klatt |
last post by:
I am trying to write an iterator for a std::set that allows the
iterator target to be modified. Here is some relvant code:
template <class Set> // Set is an instance of std::set<>
class...
|
by: William Payne |
last post by:
Hello, I have a variable of type unsigned long. It has a number of bits set
(with set I mean they equal one). I need to determine those bits and their
position and create new numbers from them. For...
|
by: Prawit Chaivong |
last post by:
Hi, gurus
Is it safe to do this in function?
'return &(*iterator)';
And iterator is std::set<something>::iterator
Regards,
|
by: Vorpal |
last post by:
Here is a small sample of data from a table of about 500 rows
(Using MSSqlserver 2000)
EntryTime Speed Gross Net
------------------ ----- -----
21:09:13.310 0 0 0
21:09:19.370 9000 ...
|
by: dx |
last post by:
I'm extremely frustrated with ASP.NET...again! To me this should be as
simple as setting oCheckBox.Checked = True.. yet for some reason it isn't.
I have a user control (ascx) that that has a...
|
by: Yuri CHUANG |
last post by:
This is a example from a textbook,but there are some strange error that
I don't understand.Could anyone give me some help to realize the
operations on set.Thank you very much:-)
(I compile it with...
|
by: banging |
last post by:
Hi there,
I have a question regarding locking of tables so that when two or more people try to write or update the mysql tables, it locks up. Basically I only want one person to write to the...
|
by: Paulson |
last post by:
set ANSI_NULLS ON
set QUOTED_IDENTIFIER ON
go
-- =============================================
-- Author: Lokesh Rao V.L
-- Create date: 18 June 2007
-- Description: Adds, updates...
|
by: kuangye |
last post by:
Hi, all.
Is there any library supporting set operation such as union,
intersection, difference on sets of integer numbers.
|
by: CloudSolutions |
last post by:
Introduction:
For many beginners and individual users, requiring a credit card and email registration may pose a barrier when starting to use cloud servers. However, some cloud server providers now...
|
by: ryjfgjl |
last post by:
In our work, we often need to import Excel data into databases (such as MySQL, SQL Server, Oracle) for data analysis and processing. Usually, we use database tools like Navicat or the Excel import...
|
by: taylorcarr |
last post by:
A Canon printer is a smart device known for being advanced, efficient, and reliable. It is designed for home, office, and hybrid workspace use and can also be used for a variety of purposes. However,...
|
by: Charles Arthur |
last post by:
How do i turn on java script on a villaon, callus and itel keypad mobile phone
|
by: aa123db |
last post by:
Variable and constants
Use var or let for variables and const fror constants.
Var foo ='bar';
Let foo ='bar';const baz ='bar';
Functions
function $name$ ($parameters$) {
}
...
|
by: ryjfgjl |
last post by:
If we have dozens or hundreds of excel to import into the database, if we use the excel import function provided by database editors such as navicat, it will be extremely tedious and time-consuming...
|
by: emmanuelkatto |
last post by:
Hi All, I am Emmanuel katto from Uganda. I want to ask what challenges you've faced while migrating a website to cloud.
Please let me know.
Thanks!
Emmanuel
|
by: BarryA |
last post by:
What are the essential steps and strategies outlined in the Data Structures and Algorithms (DSA) roadmap for aspiring data scientists? How can individuals effectively utilize this roadmap to progress...
|
by: Sonnysonu |
last post by:
This is the data of csv file
1 2 3
1 2 3
1 2 3
1 2 3
2 3
2 3
3
the lengths should be different i have to store the data by column-wise with in the specific length.
suppose the i have to...
| |
