Re: trouble w/ Forms Auth and domain cookies

• Previous message: jeffpriz_at_yahoo.com: "trouble w/ Forms Auth and domain cookies"
• In reply to: jeffpriz_at_yahoo.com: "trouble w/ Forms Auth and domain cookies"
• Next in thread: jeffpriz_at_yahoo.com: "Re: trouble w/ Forms Auth and domain cookies"
• Reply: jeffpriz_at_yahoo.com: "Re: trouble w/ Forms Auth and domain cookies"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Tue, 26 Jul 2005 15:33:39 -0700

Hello jeffpriz@yahoo.com,

can't you manually remove the cookie from the cookies collection with .Remove()
??

---------------------------------------
Dominick Baier - DevelopMentor
http://www.leastprivilege.com

> I'm having trouble with a domain cookie and forms authentication. We
> have several sub-domains so we create a domain cookie for forms
> authentication purposes:
>
> cook.domain = ".mydomain.com"
>
> All is good with the world.. I can go all over the place and get in to
> my apps... Great .. except now I can not Log Out...
> I do:
> Web.Security.FormsAuthentication.SignOut()
> Me.Session.Abandon()
> and what happens when I try to come back to my app? I get in just
> fine, never sent back to my login page.
>
> A little closer inspection using Firefox to watch my cookies, I see
> that I end up with two cookies. One, is my domain cookie, but i also
> end up with a "serversubdomain.mydomain.com" cookie... When I do my
> FormsAuthentication.SignOut() my serverdomain cookie goes away, my
> domain cookie does not.. so I am reauthenticated when I attempt to
> re-enter the site..
>
> Please help!
>
> jeffpriz
>

• Previous message: jeffpriz_at_yahoo.com: "trouble w/ Forms Auth and domain cookies"
• In reply to: jeffpriz_at_yahoo.com: "trouble w/ Forms Auth and domain cookies"
• Next in thread: jeffpriz_at_yahoo.com: "Re: trouble w/ Forms Auth and domain cookies"
• Reply: jeffpriz_at_yahoo.com: "Re: trouble w/ Forms Auth and domain cookies"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: [PHP] read the main domain cookie in sub domain ... Sanjeev N wrote: ... You'll probably need to delete the existing cookie from your browser and get it set again. ... [PHP] read the main domain cookie in sub domain ... (php.general) Re: Session Cookie not accessible across Sub-Domains ... the out-of-proc StateServer works just fine for sharing sessions across ... sub-domains; everything except this simple cookie issue. ... The session needs to persist ... (microsoft.public.dotnet.framework.aspnet) Re: XML Webservice authentication ... you have to make sure that the data island xml call sends the formsauth cookie - i am not sure if this happens by default/how it works. ... Dominick Baier - DevelopMentor ... new to Web Services so may be there is a better techonology I can ... (microsoft.public.dotnet.framework.aspnet.security) Re: Form Authentication ... The FormsAuth infrastructure will transparently decrypt the cookie and populate Context.User on subsequent requests for you. ... Dominick Baier - DevelopMentor ... SetAuthCookie and GetAuthCookie is enough to do so. ... that will go to a database and authenticate if the user exist and the password is correct. ... (microsoft.public.dotnet.framework.aspnet.security) Re: FormsAuthentication.SignOut(); doesnt work... ... use a tool like www.fiddlertool.com to check if the cookie is really cleared... ... Dominick Baier - DevelopMentor ... > After 'logging off', ... (microsoft.public.dotnet.framework.aspnet.security)