RE: 401 with Forms Authentication and Roles

---

• From: stcheng@xxxxxxxxxxxxxxxxxxxx (Steven Cheng[MSFT])
• Date: Mon, 13 Aug 2007 10:29:56 GMT

---

Thanks for your reply Chuck,

Good question. This does be problem when an authenticated user want to
visit the login page (rather than be redirected there). My suggestion is
use the "ReturnUrl" querystring parameter to determine whether the request
is due to an unauthorized redirection(since ASP.NET forms authentication
will append the "ReturnUrl" querystring parameter for unauthorized
redirection request). How do you think?

Please feel free to let me know if you have any other consideration or
ideas on this.

Sincerely,

Steven Cheng

Microsoft MSDN Online Support Lead


This posting is provided "AS IS" with no warranties, and confers no rights.

.

---

• References:
  • RE: 401 with Forms Authentication and Roles
    • From: Steven Cheng[MSFT]

• Prev by Date: Padding is invalid and cannot be removed.
• Next by Date: Kerberos to NTLM delegation timeout
• Previous by thread: RE: 401 with Forms Authentication and Roles
• Next by thread: RE: 401 with Forms Authentication and Roles
• Index(es):
  • Date
  • Thread

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Newsgroups  > microsoft.public.dotnet.framework.aspnet.security  > 2007-08