Re: How to Clear the Integrated Windows authentication credential in .
- From: Dominick Baier [DevelopMentor] <dbaier@xxxxxxxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Mon, 23 Jan 2006 13:30:00 +0000 (UTC)
Hi,
i think this will not work - several problems
a) there is no way to clear the credentials from ASP.NET - there is only a client IE command that can do that.
b) there is no reliable way to detect a session end - Session_End only guarantees to fire with InProc sessions
--------------------------------------- Dominick Baier - DevelopMentor http://www.leastprivilege.com
We have got an application which is using Integrated Windows authentication credential method for logging into the site. Our customer now is asking for a requirement to provide more security. The requirement is like this..
"Whenever the session of the application expires(as per time in web.config), it should clear the User credentials so that even if the User enters the site url in the same browser instance,the Integrated Windows authentication credential dialog box should pop up. This will make the user to enter the userid and password again to access the application. In other words, even if the session expires, only authorized users should be allowed to login".
Please help us in finding a solution for this. It will be really great if some experts can provide us the code snippet for this.
Kind Regards & Thanks in Advance,
Gireesh
.
- Prev by Date: Server Application Unavailable.
- Next by Date: Re: How to Clear the Integrated Windows authentication credential in .
- Previous by thread: Server Application Unavailable.
- Next by thread: Re: How to Clear the Integrated Windows authentication credential in .
- Index(es):
Relevant Pages
|
