VS VB .Net XP Pro web forms.
I've decided to have people log into a website for only certain pages.
Here is how I did it.
I created a Login aspx
this page verifies user ID and password from a database.
If not successful do over.
If successful then session("SessID") = Session.id and
session("LoggedON")="Yes"
On pages that need a login on the page load event I put
if Session("SessID") <> Session.ID or session("LoggedOn") <> "Yes" then
response.redirect(loginpage)
It seems to work but, is there anything wrong with doing it this way?
Thanks