RE: Forms Authentication and SSL
From: Patrick C. Cole (patcole@online.microsoft.com)
Date: 10/02/02
- Next message: Tiffany Tzeng: "Could not establish trust relationship with remote server"
- Previous message: Eric Throckmorton: "keeping sessions alive throughout"
- In reply to: Kipp Hawley: "Forms Authentication and SSL"
- Next in thread: Kipp Hawley: "Re: Forms Authentication and SSL"
- Reply: Kipp Hawley: "Re: Forms Authentication and SSL"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: patcole@online.microsoft.com (Patrick C. Cole (MS)) Date: Wed, 02 Oct 2002 17:41:40 GMT
Kipp,
You will need to put the full address in the loginUrl attribute. The login
dialog you mention may be that you do not have Anonymous access set for the
site. Having NTLM or Basic would prompt the user for authentication.
Hope this helps,
Patrick Cole
Microsoft Developer Support
This posting is provided "AS IS" with no warranties, and confers no rights.
You assume all risk for your use. © 2002 Microsoft Corporation. All rights
reserved.
--------------------
| From: "Kipp Hawley" <kh@traxonline.com>
| Subject: Forms Authentication and SSL
| Date: Tue, 1 Oct 2002 17:38:45 -0700
| Lines: 27
| MIME-Version: 1.0
| Content-Type: text/plain;
| charset="iso-8859-1"
| Content-Transfer-Encoding: 7bit
| X-Priority: 3
| X-MSMail-Priority: Normal
| X-Newsreader: Microsoft Outlook Express 6.00.2600.0000
| X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000
| Message-ID: <OMSJovaaCHA.1332@tkmsftngp11>
| Newsgroups: microsoft.public.dotnet.framework.aspnet.security
| NNTP-Posting-Host: 64.167.199.132
| Path: cpmsftngxa09!cpmsftngxa06!tkmsftngp01!tkmsftngp11
| Xref: cpmsftngxa09 microsoft.public.dotnet.framework.aspnet.security:2416
| X-Tomcat-NG: microsoft.public.dotnet.framework.aspnet.security
|
| Greetings -
| After getting Forms Authentication working I took the next step of using
SSL
| for the login page. The login page is in the same directory as the rest of
| the web's pages, and is the only one set to use SSL. If I browse directly
to
| it there is no problem, but I can't find a way to get Forms Authentication
| to use it properly. If I just set login.aspx as the loginURL, the browser
| puts up the "You need to use https://..." message, and after inserting the
| 's' in the address bar it goes fine. This won't cut it for real users,
| though. On the other hand, if I use https: in the loginURL, I can't get it
| to work without using the entire absolute address, and, worse yet, when I
| get redirected to login.aspx I get a Windows login screen.
|
| Any ideas? How do others implement SSL for Forms Authentication?
| Here's the web.config code:
|
| <authentication mode="Forms" >
| <forms loginUrl = "https://myserver/testapp/login.aspx" name =
"TestAuth"
| />
| </authentication>
| <authorization>
| <deny users="?" />
| </authorization>
|
| Thanks for your help,
| Kipp Hawley
| Trax Softworks, Inc.
|
|
- Next message: Tiffany Tzeng: "Could not establish trust relationship with remote server"
- Previous message: Eric Throckmorton: "keeping sessions alive throughout"
- In reply to: Kipp Hawley: "Forms Authentication and SSL"
- Next in thread: Kipp Hawley: "Re: Forms Authentication and SSL"
- Reply: Kipp Hawley: "Re: Forms Authentication and SSL"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
