Forms Authentication and requireSSL, what's the recommended best practice
From: mikemad (maddoxm_at_comcast.net)
Date: 01/26/05
- Next message: Jerome: "ASP.NET / certificat"
- Previous message: Shaker: "Re: Access Authentication"
- Next in thread: mikemad: "Re: Forms Authentication and requireSSL, what's the recommended best practice"
- Reply: mikemad: "Re: Forms Authentication and requireSSL, what's the recommended best practice"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: 26 Jan 2005 00:53:44 -0800
I have an ASP.NET 1.1 Web app and am now implementing SSL. It used
forms authentication. Everything works fine but I get unexpected(by me)
behavior when I set the requireSSL in the config file.
My scenario is, I want to login securely in a secure directory and then
redirect to the home page of the site. Pretty standard. If they are
logged in, then display a header bar with a few menu items such as
"Profile", etc. I am checking the Request.IsAuthenticated and if it is
true, I show the header bar. Well, IsAuthenticated is false when I'm
not under the SSL directory so it doesn't display my header bar. What's
the recommended way of doing this kind of common operation. I could
just set a Session variable when I login and display the menu if that
session variable is set. Is there a better way??
Thanks,
Mike Maddox
Creative Journey Consulting
- Next message: Jerome: "ASP.NET / certificat"
- Previous message: Shaker: "Re: Access Authentication"
- Next in thread: mikemad: "Re: Forms Authentication and requireSSL, what's the recommended best practice"
- Reply: mikemad: "Re: Forms Authentication and requireSSL, what's the recommended best practice"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
