protection="None" not working...
From: Jason (jasonnewyork@msn.com)
Date: 12/15/02
- Next message: news.verizon.net: "Re: Security & multiple browser instances"
- Previous message: Y: "Re: Summary information (files) (FileInfo, system.IO.FileSystemInfo,....)"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "Jason" <jasonnewyork@msn.com> Date: Sun, 15 Dec 2002 11:59:15 -0500
I would like to test protection="None" and protection="Validation" settings
in the web.config file, however, after making these changes the data in the
cookies still appears to be encrypted.
When using these settings I have assumed that the
FormsAuthentication.Encrypt(ticket) method should still be used to perform
the actual serialization of the ticket to a string that can be included
within the cookie. I assume (but can't find it documented) that the .Encrypt
method will utilize the Protection setting within the global.inc file to
determine how (or if at all) to encrypt the data... I am guessing its task
is to simply be able to create a string that the .Decrypt method will be
able to use for deserialization of the data back into a ticket object.
Thanks
Jason
- Next message: news.verizon.net: "Re: Security & multiple browser instances"
- Previous message: Y: "Re: Summary information (files) (FileInfo, system.IO.FileSystemInfo,....)"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
