473,320 Members | 2,004 Online
Bytes | Software Development & Data Engineering Community
Post Job

Home Posts Topics Members FAQ

Join Bytes to post your question to a community of 473,320 software developers and data experts.

Forms authentication...


Hi folks,

An odd one for the start of this week.

I have a web project that I have taken over from a colleague. He had the
authentication set to windows, but I have now changed that to forms
authentication by putting the following xml in we.config :

<authentication mode="Forms">
<forms name="TICookie"

loginUrl="logon.aspx"

protection="All"

timeout="10"

path="/"

requireSSL="false"

slidingExpiration="true">

</forms>

</authentication>

Unfortunately it isn't working. When I display my initial page
(imaginativelly called default.aspx!) I expect it to re-direct to
logon.aspx, but it doesn't. If I select the logon page manually (from a
menu) I can connect and authenticate fine.

I don't have a general problem with forms authentication. It works fine on
a number of other systems. This is the first time I've changed the
authentication method of a project, so I'm not sure if I've missed
something.

I've tried restarting IIS, but I haven't resorted to rebuilding the project
yet.

Any ideas?

Cheers...P

Nov 19 '05 #1
3 1301
Paul, perhaps a sily question, but do you have the <authorization> set?

<authorization>
<deny users="?" />
</authorization>

the protection="All" in formsAuthentication is for how the cookie should be
encrypted on the user's browser...not to say which pages (all) should be
protected...

Karl

--
MY ASP.Net tutorials
http://www.openmymind.net/
"Paul Mason" <p.*******@bham.ac.uk> wrote in message
news:OW**************@TK2MSFTNGP10.phx.gbl...

Hi folks,

An odd one for the start of this week.

I have a web project that I have taken over from a colleague. He had the
authentication set to windows, but I have now changed that to forms
authentication by putting the following xml in we.config :

<authentication mode="Forms">
<forms name="TICookie"

loginUrl="logon.aspx"

protection="All"

timeout="10"

path="/"

requireSSL="false"

slidingExpiration="true">

</forms>

</authentication>

Unfortunately it isn't working. When I display my initial page
(imaginativelly called default.aspx!) I expect it to re-direct to
logon.aspx, but it doesn't. If I select the logon page manually (from a
menu) I can connect and authenticate fine.

I don't have a general problem with forms authentication. It works fine on a number of other systems. This is the first time I've changed the
authentication method of a project, so I'm not sure if I've missed
something.

I've tried restarting IIS, but I haven't resorted to rebuilding the project yet.

Any ideas?

Cheers...P

Nov 19 '05 #2

Hi,

Yes...it's set to * at the moment. There are no <deny users>.

Cheers...P

"Karl Seguin" <karl REMOVE @ REMOVE openmymind REMOVEMETOO . ANDME net>
wrote in message news:ec**************@tk2msftngp13.phx.gbl...
Paul, perhaps a sily question, but do you have the <authorization> set?

<authorization>
<deny users="?" />
</authorization>

the protection="All" in formsAuthentication is for how the cookie should
be
encrypted on the user's browser...not to say which pages (all) should be
protected...

Karl

--
MY ASP.Net tutorials
http://www.openmymind.net/
"Paul Mason" <p.*******@bham.ac.uk> wrote in message
news:OW**************@TK2MSFTNGP10.phx.gbl...

Hi folks,

An odd one for the start of this week.

I have a web project that I have taken over from a colleague. He had the
authentication set to windows, but I have now changed that to forms
authentication by putting the following xml in we.config :

<authentication mode="Forms">
<forms name="TICookie"

loginUrl="logon.aspx"

protection="All"

timeout="10"

path="/"

requireSSL="false"

slidingExpiration="true">

</forms>

</authentication>

Unfortunately it isn't working. When I display my initial page
(imaginativelly called default.aspx!) I expect it to re-direct to
logon.aspx, but it doesn't. If I select the logon page manually (from a
menu) I can connect and authenticate fine.

I don't have a general problem with forms authentication. It works fine

on
a number of other systems. This is the first time I've changed the
authentication method of a project, so I'm not sure if I've missed
something.

I've tried restarting IIS, but I haven't resorted to rebuilding the

project
yet.

Any ideas?

Cheers...P


Nov 19 '05 #3
Paul
could you clarify this? are you saying you don' thave any <deny>'s in there?
What's set to * ? the allow? the deny?

karl

--
MY ASP.Net tutorials
http://www.openmymind.net/
"Paul Mason" <p.*******@bham.ac.uk> wrote in message
news:eq*************@TK2MSFTNGP12.phx.gbl...

Hi,

Yes...it's set to * at the moment. There are no <deny users>.

Cheers...P

"Karl Seguin" <karl REMOVE @ REMOVE openmymind REMOVEMETOO . ANDME net>
wrote in message news:ec**************@tk2msftngp13.phx.gbl...
Paul, perhaps a sily question, but do you have the <authorization> set?

<authorization>
<deny users="?" />
</authorization>

the protection="All" in formsAuthentication is for how the cookie should
be
encrypted on the user's browser...not to say which pages (all) should be
protected...

Karl

--
MY ASP.Net tutorials
http://www.openmymind.net/
"Paul Mason" <p.*******@bham.ac.uk> wrote in message
news:OW**************@TK2MSFTNGP10.phx.gbl...

Hi folks,

An odd one for the start of this week.

I have a web project that I have taken over from a colleague. He had the authentication set to windows, but I have now changed that to forms
authentication by putting the following xml in we.config :

<authentication mode="Forms">
<forms name="TICookie"

loginUrl="logon.aspx"

protection="All"

timeout="10"

path="/"

requireSSL="false"

slidingExpiration="true">

</forms>

</authentication>

Unfortunately it isn't working. When I display my initial page
(imaginativelly called default.aspx!) I expect it to re-direct to
logon.aspx, but it doesn't. If I select the logon page manually (from a menu) I can connect and authenticate fine.

I don't have a general problem with forms authentication. It works
fine on
a number of other systems. This is the first time I've changed the
authentication method of a project, so I'm not sure if I've missed
something.

I've tried restarting IIS, but I haven't resorted to rebuilding the

project
yet.

Any ideas?

Cheers...P



Nov 19 '05 #4

This thread has been closed and replies have been disabled. Please start a new discussion.

Similar topics

6
by: Billy Jacobs | last post by:
I have a website which has both secure and non-secure pages. I want to uses forms authentication. How do I accomplish this? Originally I had my web.config file in the root with Forms...
3
by: Kris van der Mast | last post by:
Hi, I've created a little site for my sports club. In the root folder there are pages that are viewable by every anonymous user but at a certain subfolder my administration pages should be...
2
by: Eric | last post by:
I am trying to build an app where the stuff in the root directory is open to all, but anything under the Restricted directory requires you to login and I want to use Forms to do it. I'm having...
0
by: Anonieko Ramos | last post by:
ASP.NET Forms Authentication Best Practices Dr. Dobb's Journal February 2004 Protecting user information is critical By Douglas Reilly Douglas is the author of Designing Microsoft ASP.NET...
7
by: Justin | last post by:
I am trying to password protect a subdirectory using forms authentication. I am using the "Location" tag to specify the directory to be protected. The login.aspx page is in the root directory of...
5
by: V. Jenks | last post by:
Using forms authentication, can I control which pages and/or directories a user would have access to or is that only available with Windows authentication? Thanks!
4
by: =?Utf-8?B?R3V1czEyMw==?= | last post by:
Hi, I created a web site on a remote server. To logon the user must enter a user id and password. The site is uses Forms Authentication. The web config file looks as follows: ...
4
by: Bjorn Sagbakken | last post by:
In a web-application with login creds (user, pwd), these are checked against a user table on a SQL server. On a positive validation I have saved the userID, name, custno and role-settings in a...
5
by: Rory Becker | last post by:
Having now created a Custom MembershipProvider that seems to work correctly with my Logon and ChangePassword controls, I am, as they say, a happy bunny. The next stange is to move on to the...
1
by: Sean | last post by:
Hi, I've taken over a website, which has an admin section that is currently open. I added Forms Authentication to the admin directory with the using the location section in web.config: ...
0
by: DolphinDB | last post by:
Tired of spending countless mintues downsampling your data? Look no further! In this article, you’ll learn how to efficiently downsample 6.48 billion high-frequency records to 61 million...
0
by: ryjfgjl | last post by:
ExcelToDatabase: batch import excel into database automatically...
1
isladogs
by: isladogs | last post by:
The next Access Europe meeting will be on Wednesday 6 Mar 2024 starting at 18:00 UK time (6PM UTC) and finishing at about 19:15 (7.15PM). In this month's session, we are pleased to welcome back...
0
by: Vimpel783 | last post by:
Hello! Guys, I found this code on the Internet, but I need to modify it a little. It works well, the problem is this: Data is sent from only one cell, in this case B5, but it is necessary that data...
0
by: jfyes | last post by:
As a hardware engineer, after seeing that CEIWEI recently released a new tool for Modbus RTU Over TCP/UDP filtering and monitoring, I actively went to its official website to take a look. It turned...
1
by: PapaRatzi | last post by:
Hello, I am teaching myself MS Access forms design and Visual Basic. I've created a table to capture a list of Top 30 singles and forms to capture new entries. The final step is a form (unbound)...
1
by: CloudSolutions | last post by:
Introduction: For many beginners and individual users, requiring a credit card and email registration may pose a barrier when starting to use cloud servers. However, some cloud server providers now...
0
by: af34tf | last post by:
Hi Guys, I have a domain whose name is BytesLimited.com, and I want to sell it. Does anyone know about platforms that allow me to list my domain in auction for free. Thank you
0
isladogs
by: isladogs | last post by:
The next Access Europe User Group meeting will be on Wednesday 3 Apr 2024 starting at 18:00 UK time (6PM UTC+1) and finishing by 19:30 (7.30PM). In this session, we are pleased to welcome former...

By using Bytes.com and it's services, you agree to our Privacy Policy and Terms of Use.

To disable or enable advertisements and analytics tracking please visit the manage ads & tracking page.