Re: Authentication provider for different sites

From: Dominick Baier [DevelopMentor] (dbaier_at_pleasepleasenospamdevelop.com)
Date: 09/16/05 

Date: Fri, 16 Sep 2005 09:36:18 -0700

Hello Al,

the problem is the the browser will not send a cookie from site A to site
B...

---------------------------------------
Dominick Baier - DevelopMentor
http://www.leastprivilege.com

> Hello everybody,
> how can I use one authentication site (https://login.site.com) for
> other
> sites (on separate machines, i.e. http://www.books.biz)?
> What should I do to use Forms Authentication in this case?

Relevant Pages

  • Re: FormsAuthentication.SignOut(); doesnt work...
    ... use a tool like www.fiddlertool.com to check if the cookie is really cleared... ... Dominick Baier - DevelopMentor ... > After 'logging off', ...
    (microsoft.public.dotnet.framework.aspnet.security)
  • Re: "secure" flag for HttpCookies
    ... Dominick Baier - DevelopMentor ... the client will not send the cookie to the server on all requests. ... But this doesn't matter cause an attacker can just sniff the cookie on ...
    (microsoft.public.dotnet.security)
  • Re: asp.net login contol using url redirect
    ... Dominick Baier [DevelopMentor] wrote: ... > You have to manually issue the cookie and set the Domain property on the ... >> If however I include the site in a frame on another site, e.g., ...
    (microsoft.public.dotnet.framework.aspnet.security)
  • Re: XML Webservice authentication
    ... what do you mean with "but will need to be authenticated via a cookie" ?? ... Dominick Baier - DevelopMentor ... "web service way" would be to use a SOAP header. ...
    (microsoft.public.dotnet.framework.aspnet.security)
  • Re: forms authentication -- expired forms cookie vs. not provided forms cookie
    ... Dominick Baier - DevelopMentor ... present, but if the forms cookie is present and expired, I want them to get a timeout page. ... Is this possible with forms authentication? ...
    (microsoft.public.dotnet.framework.aspnet.security)