Re: Azman returns cached roles to .Net API

From: "Enrique Vargas" <vargasenrique@xxxxxxxxxxx>
Date: Mon, 30 Jan 2006 14:06:09 -0600

Web.Config

1.Connection Strings.
<add name="ADConnectionString"
connectionString="LDAP://server.domain.local/CN=Users,DC=domain,DC=local"/>
<add name="AzManConnectionString"
connectionString="msldap://server/CN=store,DC=domain,DC=local"/>

2.<membership defaultProvider="MyADMembershipProvider">
<providers>
<add name="MyADMembershipProvider"
type="System.Web.Security.ActiveDirectoryMembershipProvider, System.Web,
Version=2.0.0.0, 
 Culture=neutral,
PublicKeyToken=b03f5f7f11d50a3a" connectionStringName="ADConnectionString"
connectionUsername="domain\Administrator" connectionPassword="pass@word1"
connectionProtection="Secure" enableSearchMethods="true"
attributeMapUsername="sAMAccountName" minRequiredPasswordLength="7"
applicationName="APP" minRequiredNonalphanumericCharacters="1"/>
</providers>
</membership>

3.<roleManager enabled="true" cacheRolesInCookie="false"
defaultProvider="RoleManagerAzManProvider" cookieTimeout="30"
cookieRequireSSL="false" cookieSlidingExpiration="false"
createPersistentCookie="false" cookieProtection="All" >
<providers>
<add name="RoleManagerAzManProvider"
type="System.Web.Security.AuthorizationStoreRoleProvider, System.Web,
Version=2.0.0.0, 
 Culture=neutral,
publicKeyToken=b03f5f7f11d50a3a" connectionStringName="AzManADAMServer"
applicationName="APP"/>
</providers>
</roleManager>

4.<authentication mode="Forms">
<forms loginUrl="Login.aspx" defaultUrl="Default.aspx" timeout="30"
protection="All" requireSSL="false" slidingExpiration="false"
cookieless="UseCookies"/>
</authentication>

5. <authorization>
<deny users="?"/>
</authorization>

Simple Test Page .aspx.

If User.Identity.IsAuthenticated Then

Dim rp As RolePrincipal = CType(User, RolePrincipal)

Dim roleInfo As StringBuilder = New StringBuilder
roleInfo.AppendFormat("<h2>Welcome {0}</h2>", rp.Identity.Name)
roleInfo.AppendFormat("Provider: {0} ",
rp.ProviderName)
roleInfo.AppendFormat("Version: {0} ", rp.Version)
roleInfo.AppendFormat("Expires at: {0} ",
rp.ExpireDate)
roleInfo.AppendFormat("Cache List Changed: {0} ",
rp.CachedListChanged)
roleInfo.AppendFormat("Is role List Cached: {0} ",
rp.IsRoleListCached)
roleInfo.Append("Roles: ")

Dim roles() As String = rp.GetRoles

For i As Integer = 0 To roles.Length - 1
roleInfo.Append(", ")
roleInfo.Append(roles(i))
Next

Me.Label1.Text = roleInfo.ToString

End If

"Dominick Baier [DevelopMentor]" <dbaier@xxxxxxxxxxxxxxxxxxxxxxxxxxxxx>
wrote in message news:4580be63195cca8c7f3ea51721880@xxxxxxxxxxxxxxxxxxxxx
> Hi,
> ok - i have to look at the source code then.
>
> ---------------------------------------
> Dominick Baier - DevelopMentor
> http://www.leastprivilege.com
>
>> Yes,,
>>
>> <roleManager enabled="true" cacheRolesInCookie="false"
>> defaultProvider="RoleManagerAzManProvider" cookieRequireSSL="false"
>> cookieSlidingExpiration="false" createPersistentCookie="false"
>> cookieProtection="All" >
>> <providers>
>> <add name= xxx />
>> </providers>
>> </roleManager>
>> "Enrique Vargas" <vargasenrique@xxxxxxxxxxx> wrote in message
>> news:%23Cd1J64IGHA.3064@xxxxxxxxxxxxxxxxxxxxxxx
>>
>>> Hi, I'm using Active Directory as Membership Provider and Azman as
>>> RoleProvider, everything works fine except that any change made in
>>> Azman
>>> after the ASP.NET 2.0 APP is
>>> initialized returns a cached version of the roles information. The
>>> APP
>>> needs to know about any change produced while is running. Any idea
>>> why
>>> Azman is returning a cache version of the roles definitions.Thanks.
>
>

.

Follow-Ups:
- Re: Azman returns cached roles to .Net API
  - From: Dominick Baier [DevelopMentor]
- Re: Azman returns cached roles to .Net API
  - From: Dominick Baier [DevelopMentor]

References:
- Re: Azman returns cached roles to .Net API
  - From: Enrique Vargas
- Re: Azman returns cached roles to .Net API
  - From: Dominick Baier [DevelopMentor]

Prev by Date: Re: Get PC name
Next by Date: Re: Azman returns cached roles to .Net API
Previous by thread: Re: Azman returns cached roles to .Net API
Next by thread: Re: Azman returns cached roles to .Net API
Index(es):
- Date
- Thread

Relevant Pages

Azman returns cached roles to .Net API
... RoleProvider, everything works fine except that any change made in Azman ... initialized returns a cached version of the roles information. ... The APP needs ...
(microsoft.public.dotnet.framework.aspnet.security)
Re: Azman returns cached roles to .Net API
... > RoleProvider, everything works fine except that any change made in Azman ... > initialized returns a cached version of the roles information. ... The APP ...
(microsoft.public.dotnet.framework.aspnet.security)
AzMan vs other approaches for .Net app security?
... I'm developing a new .Net 2.0 app for one of my corporate clients. ... I've done for them in the past is provide role-based security in their VB6 ... It's been about two years since I read about AzMan, ... user role membership stored in the app's database and checked by the app ...
(microsoft.public.dotnet.security)
RE: AzMan concurrency.
... I need to implement an application with load balancing support; ... For the authorization part of the app, I was planning to use AzMan. ... AzMan seemed to be the perfect solution; the store (when in Active ...
(microsoft.public.dotnet.distributed_apps)
Re: Understanding MMC and AzMan
... I do understand that my app might have specific needs, ... you just create an operation/task (really ... the snap-in to your specific needs for any application. ... I'm suprised there's been nothing before like AzMan that provides ...
(microsoft.public.platformsdk.security)