472,145 Members | 1,789 Online
Bytes | Software Development & Data Engineering Community
Post +

Home Posts Topics Members FAQ

home > topics > asp.net > questions > switching to the secure page looses authentication...

Join Bytes to post your question to a community of 472,145 software developers and data experts.

Switching to the secure page looses authentication...

I have a page (http://www.something.com/) and a secure page (https://secure.something.com) and the secure.something.com points to http://www.something.com/secure/

All works ok, but, when I transfer to one of the pages on the secure directory all gets lost. First of all, I had to basically duplicate my web application assembly in the secure folder. I created a "secureWrapper" solution and I added the main web application as a reference, because otherwise it wouldn't see it. The problem is that if I switch to one of the pages on the https:// the authentication credentials get lost... For instance the Request.IsAuthenticated is false, even though I come from an authenticated page... Then if I redirect from there back to the non-secure page the authentication ticket appears again..

Any idea how I can maintain the authentication token between the secure and non-secure pages

thank you
iulian
Nov 18 '05 #1
1 1539
Iulian,

There is that saying don't change horses mid stream. I'm a little confused on what you are asking but here it goes. If you are challenging request to a site once they are prompted to authenticate they're should be a little box that says 'Remember my password' (Win XP). Also in the Internet Explorer options there is a setting so that Internet Explorer will pass NT credentials by default. This is only useful for intranet applications. Naturally you don't want your I.E. throwing your network login to random sites. Have you tried another machine to see if you get the behavior. I use my own form and then test the NT credentials behind the scenes. Just an idea.
-Calvin Luttrell
ProjectThunder.com

I have a page (http://www.something.com/) and a secure page (https://secure.something.com) and the secure.something.com points to http://www.something.com/secure/.

All works ok, but, when I transfer to one of the pages on the secure directory all gets lost. First of all, I had to basically duplicate my web application assembly in the secure folder. I created a "secureWrapper" solution and I added the main web application as a reference, because otherwise it wouldn't see it. The problem is that if I switch to one of the pages on the https:// the authentication credentials get lost... For instance the Request.IsAuthenticated is false, even though I come from an authenticated page... Then if I redirect from there back to the non-secure page the authentication ticket appears again...

Any idea how I can maintain the authentication token between the secure and non-secure pages?

thank you,
iulian

Nov 18 '05 #2

This discussion thread is closed

Start new discussion

Replies have been disabled for this discussion.

Similar topics
Switching threads on UI in asp.net page
4 posts views Thread by Jeremy Holt | last post: by
How secure is this?
4 posts views Thread by Jeff | last post: by
Secure Folders
2 posts views Thread by Timbo | last post: by
openGauss security policy
reply views Thread by leo001 | last post: by

By using Bytes.com and it's services, you agree to our Privacy Policy and Terms of Use.

To disable or enable advertisements and analytics tracking please visit the manage ads & tracking page.

BYTES.COM © 2023
About Bytes
Advertise
Terms Of Use
Privacy Policy
Contact Us
Sitemap

Follow us! Get the Latest Bytes Updates