Re: Form Authentication with cookieless browser
From: Teemu Keiski (joteke_at_aspalliance.com)
Date: 10/20/03
- Next message: John L. Green: "Help please with Role based security not working."
- Previous message: Teemu Keiski: "Re: Forms authentication then redirection to a secure web with NT authentication?"
- In reply to: Machi: "Form Authentication with cookieless browser"
- Next in thread: Machi: "Re: Form Authentication with cookieless browser"
- Reply: Machi: "Re: Form Authentication with cookieless browser"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Mon, 20 Oct 2003 21:14:09 +0300
Hi,
working without cookies with Forms Authentication needs bit custom work to
be done, namely you need to manually persist the forms authentication ticket
in the querystring.
The query string variable name needs to match the cookie name specified at
web.config for the forms authentication and the actual data is the encrypted
FormsAuthenticationTicket instance (result from FormsAuthentication.Encrypt
method)
One view to the subject and alternative solution is provided here as well:
http://www.codeproject.com/aspnet/cookieless.asp
http://www.dotnet247.com/247reference/msgs/18/92912.aspx
-- Teemu Keiski MCP, Microsoft MVP (ASP.NET), AspInsiders member ASP.NET Forum Moderator, AspAlliance Columnist "Machi" <pangtatsean1977@yahoo.com> wrote in message news:049501c396b0$c4ddda30$a301280a@phx.gbl... > This is a definition for Form Authentication from MSDN : > "The Forms authentication provider is an authentication > scheme that makes it possible for the application to > collect credentials using an HTML form directly from the > client. The client submits credentials directly to your > application code for authentication. If your application > authenticates the client, it issues a cookie to the client > that the client presents on subsequent requests. If a > request for a protected resource does not contain the > cookie, the application redirects the client to the logon > page." > My Question : If i want to use Form authentication but > client browsers does not support cookies (Since we do not > know whether particular users' browsers will support > cookie or not), when user tries to sign in to my page, how > actually ASP.NET works internally in order to support > cookieless browser??? Thanks
- Next message: John L. Green: "Help please with Role based security not working."
- Previous message: Teemu Keiski: "Re: Forms authentication then redirection to a secure web with NT authentication?"
- In reply to: Machi: "Form Authentication with cookieless browser"
- Next in thread: Machi: "Re: Form Authentication with cookieless browser"
- Reply: Machi: "Re: Form Authentication with cookieless browser"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
