RE: bypass forms authentication on local?
From: Dominick Baier [DevelopMentor] (dbaier_at_pleasepleasenospamdevelop.com)
Date: 10/05/05
- Next message: Dominick Baier [DevelopMentor]: "Re: Custom authentication"
- Previous message: Gery D. Dorazio: "Re: Custom authentication"
- In reply to: [MSFT]: "RE: bypass forms authentication on local?"
- Next in thread: Tim_Mac: "Re: bypass forms authentication on local?"
- Reply: Tim_Mac: "Re: bypass forms authentication on local?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 05 Oct 2005 00:49:39 -0700
Hello [MSFT],
FormsAuthentication does NOT rely on the session. It uses cookies - you can
use a flaw in formsauth to make your life easier - use a persistent cookie
(microsoft was kind enough to choose 50 years as the default expiration time).
in other words : never use persistent cookies in production.
---------------------------------------
Dominick Baier - DevelopMentor
http://www.leastprivilege.com
> Hello Tim,
>
> When we re-complie an ASP.NET project, the application will be restart
> so that all session will be clear. Form authentication rely on ASP.NET
> seesion. I think we cannot get around this. The easiest should be
> disable form authentication when you test.
>
> Luke
>
- Next message: Dominick Baier [DevelopMentor]: "Re: Custom authentication"
- Previous message: Gery D. Dorazio: "Re: Custom authentication"
- In reply to: [MSFT]: "RE: bypass forms authentication on local?"
- Next in thread: Tim_Mac: "Re: bypass forms authentication on local?"
- Reply: Tim_Mac: "Re: bypass forms authentication on local?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
