Re: Quick ? on Forms Authentication

From: Patrick.O.Ige (PatrickOIge_at_discussions.microsoft.com)
Date: 10/28/04

  • Next message: [MSFT]: "RE: Client Side Certificates for Web Services?" 
    Date: Wed, 27 Oct 2004 17:27:01 -0700

    Hi Guys,
        So what does :-
    Response.Redirect(FormsAuthentication.GetRedirectUrl(txtUsername.Text, false))
    do.
    When i use it it redirects me to default.aspx(Which i guess it returns the
    default/webform1.aspx which is set as start page).
    I have my timeout in web.config set to 2.
    Why doesn't my page i logged into expire after 2 minutes!
    And again after login in i have a button for SignOut( below)
    But after clicking that i can still see a page thats under that directory
    when its suppose to redirect me to a login page!
    Sub SignOut(objSender As Object, objArgs As EventArgs)
      'delete the users auth cookie and sign out
      System.Web.Security.FormsAuthentication.SignOut()
      Session.Abandon()
      'redirect the user to their referring page
      Response.Redirect("default.aspx")
    Any kind of advice needed!

    "Scott Mitchell [MVP]" wrote:

    > oakleyx wrote:
    > > I'm using asp.net form authentication. The problem i'm having is when
    > > my cookie expires it redirects me to the login page, so I log in again
    > > and it brings me to the page that I was on last before the cookie
    > > expired.
    > >
    > > Is there something I can do so that after I login it always redirect
    > > to the Default.aspx page?
    >
    > Daniel, the reason it's redirecting you to the page you were on is
    > because you are calling FormsAuthentication.RedirectFromLoginPage() to
    > log the user on from your Logon.aspx page, no? This, as its name
    > implies, redirects the user back to the page they came from.
    >
    > Using Reflector - http://www.aisto.com/roeder/dotnet/ - you can see that
    > this method simply calls FormsAuthentication.SetAuthCookie(), and then
    > manually does a Response.Redirect(). So, if you want to send users to
    > Default.aspx from your Logon page, when they login, instead of using
    > RedirectFromLongPage(), use SetAuthCookie() and then
    > Response.Redirect("Default.aspx")
    >
    > Here's a link to the technical docs for FormsAuthentication.SetAuthCookie():
    > http://tinyurl.com/66syy
    >
    > Happy Programming!
    >
    > --
    >
    > Scott Mitchell
    > mitchell@4guysfromrolla.com
    > http://www.4GuysFromRolla.com
    >
    > * When you think ASP.NET, think 4GuysFromRolla.com!
    >

  • Next message: [MSFT]: "RE: Client Side Certificates for Web Services?"