473,320 Members | 1,744 Online
Bytes | Software Development & Data Engineering Community
Post Job

Home Posts Topics Members FAQ

Join Bytes to post your question to a community of 473,320 software developers and data experts.

Combining Anonymous and Domain logon

In developing a solution I ran into a problem where I have found no
acceptable solution. The problem is combining users with anonymous login
and
users logged in to a domain in the same .aspx application.

Here is some background:
- the application will be accessable from the Internet, extranet and
intranet.
- no logon required but then you get limited information/functionality
- if you'r not logged on you will be provided an option to log on
- users already logged on to the domain should not need to logon in app
- different groups of users get different information/functionality
- the app needs to read from the directory
- Win2k server, ASP.NET 1.1, VB/C#

This must be a fairly common problem but still I have found no acceptable
way to do this. I can solve it by splitting the solution to different
directories with different authority, having an open startpage to do the
analysiz etc.

Kjell K.
PS I have already asked a similar question in the security group


Dec 3 '05 #1
1 2435
I would approach this using the following:

Have a global function that checks the
request.serverVariables("Auth_User") to determine if the user is logged
in or not. AUTH_USER will return blank if the user is anonymous. Based
on the return of the function, show or hide content.

If the user is anonymous, give a link to a protected page for login.
The page can be protected in a subdirectory with a web.config that
denies anonymous access. When the user logs in, the protected page just
redirects to where they came from
(request.servervariables("http_referer"))

I'm not sure how you handle your roles (database, XML, or Active
Directory), but you could create a genericIdentity and store it in
session when the user is authenticated or when the session starts
(depending on whether they entered anonymously or logged in previously).
Then you could use the IsInRole() to show or hide content. You will be
putting some code in the globabl.asax file to check the user roles if
you go this route.

The multiple directory solution is not a solution and will kill you in
short time.

----
700cb Development, Inc.
http://www.700cb.net
..NET utilities, developer tools,
and enterprise solutions

"Kjell Kristiansson" <kj******@hotmail.com> wrote in
news:eO**************@TK2MSFTNGP14.phx.gbl:
In developing a solution I ran into a problem where I have found no
acceptable solution. The problem is combining users with anonymous
login and
users logged in to a domain in the same .aspx application.

Here is some background:
- the application will be accessable from the Internet, extranet and
intranet.
- no logon required but then you get limited information/functionality
- if you'r not logged on you will be provided an option to log on
- users already logged on to the domain should not need to logon in
app - different groups of users get different
information/functionality - the app needs to read from the directory
- Win2k server, ASP.NET 1.1, VB/C#

This must be a fairly common problem but still I have found no
acceptable way to do this. I can solve it by splitting the solution to
different directories with different authority, having an open
startpage to do the analysiz etc.

Kjell K.
PS I have already asked a similar question in the security group

Dec 12 '05 #2

This thread has been closed and replies have been disabled. Please start a new discussion.

Similar topics

0
by: Pierre Semaan | last post by:
Hey Guys, I have inherited an evil app that I am trying to fix. It is a VB6 desktop app, that I am trying to port to the web using VB6/com+/ASP with a sql server 2000 db. Well, up until now,...
14
by: John J. Hughes II | last post by:
I have "Computer A" which is running Win2K3 and MS SQL server. And "Computer B" which is running a service that I have created. If I change the service on "Computer B" to run as a user my program...
5
by: Bruno Mendonça | last post by:
My boss asked me to build a program to create a report with logon/logoff events for all users within our windows domain. I'm using .Net to do so and decided to have a program running on the Domain...
10
by: et | last post by:
I have an asp.net program that uses a connection string, using integrated security to connect to a sql database. It runs fine on one server, but the other server gives me the error that "Login...
4
by: Buggyman | last post by:
Hi, I'm having problems with good old error... Login failed for user 'NT Authority\Anonymous logon'. The default web page comes up fine, but when the user attempts to log in (which checks...
1
by: Grant Merwitz | last post by:
Is it possible to do an anonymous lookup in active directory through a web page? I am running a site with Domain Authentication activated. I am looking up a users email address in Active...
2
by: Adnan Al-Ghourabi | last post by:
Hi, We have an application running on IIS 6.0, on a windows 2003 box. The back-end database, a SQL Server 2000, runs on anohter server, windows 2000. We have enabled integrated authentication,...
3
by: gderosa | last post by:
I have been getting that dreaded error in my application: Login failed for user 'NT AUTHORITY\ANONYMOUS LOGON'. I have had my application in the test environment, impersonating it using a...
0
by: Nomad50 | last post by:
I have SQL 2005 running on a server 2003 computer (Docro-Svr2) and a server 2000 computer (Docro-Svr1) running our Intranet site using IIS ver 5. I am using a DSN-less connection from an ASP script...
0
by: DolphinDB | last post by:
Tired of spending countless mintues downsampling your data? Look no further! In this article, you’ll learn how to efficiently downsample 6.48 billion high-frequency records to 61 million...
0
by: ryjfgjl | last post by:
ExcelToDatabase: batch import excel into database automatically...
0
isladogs
by: isladogs | last post by:
The next Access Europe meeting will be on Wednesday 6 Mar 2024 starting at 18:00 UK time (6PM UTC) and finishing at about 19:15 (7.15PM). In this month's session, we are pleased to welcome back...
1
isladogs
by: isladogs | last post by:
The next Access Europe meeting will be on Wednesday 6 Mar 2024 starting at 18:00 UK time (6PM UTC) and finishing at about 19:15 (7.15PM). In this month's session, we are pleased to welcome back...
0
by: jfyes | last post by:
As a hardware engineer, after seeing that CEIWEI recently released a new tool for Modbus RTU Over TCP/UDP filtering and monitoring, I actively went to its official website to take a look. It turned...
1
by: CloudSolutions | last post by:
Introduction: For many beginners and individual users, requiring a credit card and email registration may pose a barrier when starting to use cloud servers. However, some cloud server providers now...
1
by: Shællîpôpï 09 | last post by:
If u are using a keypad phone, how do u turn on JavaScript, to access features like WhatsApp, Facebook, Instagram....
0
by: af34tf | last post by:
Hi Guys, I have a domain whose name is BytesLimited.com, and I want to sell it. Does anyone know about platforms that allow me to list my domain in auction for free. Thank you
0
by: Faith0G | last post by:
I am starting a new it consulting business and it's been a while since I setup a new website. Is wordpress still the best web based software for hosting a 5 page website? The webpages will be...

By using Bytes.com and it's services, you agree to our Privacy Policy and Terms of Use.

To disable or enable advertisements and analytics tracking please visit the manage ads & tracking page.