Presentation is loading. Please wait.

Presentation is loading. Please wait.

Slide 1 ASP Authentication There are basically three authentication modes Windows Passport Forms There are others through WCF You choose an authentication.

Published byEllen Smith Modified over 8 years ago

Similar presentations

Presentation on theme: "Slide 1 ASP Authentication There are basically three authentication modes Windows Passport Forms There are others through WCF You choose an authentication."— Presentation transcript:

1 Slide 1 ASP Authentication There are basically three authentication modes Windows Passport Forms There are others through WCF You choose an authentication mechanism in the web.config file

2 Slide 2 Windows Authentication Here you are relying on the internal Windows authentication services IIS displays an authentication dialog box IIS validates the user Page access is granted based on Access Control Lists Clients must be Windows machines Works well on intranets and corporate network applications We don’t use these in real-world Internet applications

3 Slide 3 Forms Authentication Introduction This is how we do authentication in the ‘real- world’ Your application is charge of the authentication process It’s the only real ASP.NET choice for authentication Forms authentication is just the ASP.NET built-in infrastructure to implement logins

4 Slide 4 The Provider Model (1) The ASP.NET infrastructure expects a well- defined structure for authenticating users These are classes derived from MembershipProvider (implemented as an abstract class rather than an interface Microsoft supplies providers for SQL server and for Active Directory

5 Slide 5 The Provider Model (2) There are many providers

6 Slide 6 MembershipProvider Use to create users and passwords and manage passwords Use to authenticate users To customize, we implement the MembershipProvider

7 Slide 7 MembershipProvider We connect the provider through the web.config file

8 Slide 8 RoleProvider The RoleProvider works much the same way We implement the RoleProvider

9 Slide 9 RoleProvider We connect the provider through the web.config file

10 Slide 10 Configuring Forms Authentication (1) It’s configured in the section of the Web.config file Set the mode attribute to “forms” Set the Forms key to the login URL

11 Slide 11 Web.config for Forms Authentication

12 Slide 12 Implementing Forms Authentication It’s up to you to create the form and it’s control instances It’s up to user to write the authentication code

13 Slide 13 Implementing Forms Authentication (Steps) Enable membership for the application and specify the membership provider This is done in the section of the web.config file All of this is part if the ASP infrastructure

14 Slide 14 Implementing Forms Authentication (Steps) <membership defaultProvider="SqlProvider" userIsOnlineTimeWindow="15"> <add name="SqlProvider" type="System.Web.Security.SqlMembershipProvider" connectionStringName="MySqlConnection" applicationName="MyApplication" enablePasswordRetrieval="false" enablePasswordReset="true" requiresQuestionAndAnswer="true" requiresUniqueEmail="true" passwordFormat="Hashed" />

15 Slide 15 Implementing Forms Authentication (Steps) Call Membership.ValidateUser Call FormsAuthentication.RedirectFromLoginPage

16 Slide 16 The Web Site Administration Tool Use the ASP.NET Web Site Administration tool to Create and manage users Create and manage roles By default, the data is stored in an SQL Server Express database

17 Slide 17 Web Site Admin Tool (Example)

Download ppt "Slide 1 ASP Authentication There are basically three authentication modes Windows Passport Forms There are others through WCF You choose an authentication."

Similar presentations

Forms Authentication, Users, Roles, Membership Ventsislav Popov Crossroad Ltd.

Forms Authentication, Users, Roles, Membership Ventsislav Popov Crossroad Ltd.
Database Administration in Microsoft Access The Access Workbench: Section Six DAVID M. KROENKE and DAVID J. AUER DATABASE CONCEPTS, 3 rd Edition.

Database Administration in Microsoft Access The Access Workbench: Section Six DAVID M. KROENKE and DAVID J. AUER DATABASE CONCEPTS, 3 rd Edition.
Authenticating Users in an ASP.NET Application. Web Site Administration Tool From VS 2008, click Website/ ASP.Net Configuration to open Web Site Administration.

Authenticating Users in an ASP.NET Application. Web Site Administration Tool From VS 2008, click Website/ ASP.Net Configuration to open Web Site Administration.
ASP.NET Reuven Abliyev Elyahu Sivaks Ariel Daliot.

ASP.NET Reuven Abliyev Elyahu Sivaks Ariel Daliot.
Microsoft ASP.NET Security Venkat Chilakala Support Professional Microsoft Corporation.

Microsoft ASP.NET Security Venkat Chilakala Support Professional Microsoft Corporation.
Building ASP.NET Applications 2 Lecture 3,4 T. Ahlam Algharasi 4 th Level.

Building ASP.NET Applications 2 Lecture 3,4 T. Ahlam Algharasi 4 th Level.
1 Software Testing and Quality Assurance Lecture 32 – SWE 205 Course Objective: Basics of Programming Languages & Software Construction Techniques.

1 Software Testing and Quality Assurance Lecture 32 – SWE 205 Course Objective: Basics of Programming Languages & Software Construction Techniques.
Membership, Role Manager and Profile Membership, Role Manager and Profile Matt Gibbs ASP.NET Development Manager.

Membership, Role Manager and Profile Membership, Role Manager and Profile Matt Gibbs ASP.NET Development Manager.
ASP.NET 2.0 Chapter 6 Securing the ASP.NET Application.

ASP.NET 2.0 Chapter 6 Securing the ASP.NET Application.
Jonas Thomsen, Ph.d. student Computer Science University of Aarhus Best Practices and Techniques for Building Secure Microsoft.

Jonas Thomsen, Ph.d. student Computer Science University of Aarhus Best Practices and Techniques for Building Secure Microsoft.
Delivering Excellence in Software Engineering ® 2006. EPAM Systems. All rights reserved. ASP.NET Authentication.

Delivering Excellence in Software Engineering ® EPAM Systems. All rights reserved. ASP.NET Authentication.
1 ASP.NET SECURITY Presenter: Van Nguyen. 2 Introduction Security is an integral part of any Web-based application. Understanding ASP.NET security will.

1 ASP.NET SECURITY Presenter: Van Nguyen. 2 Introduction Security is an integral part of any Web-based application. Understanding ASP.NET security will.
Edwin Sarmiento Microsoft MVP – Windows Server System Senior Systems Engineer/Database Administrator Fujitsu Asia Pte Ltd

Edwin Sarmiento Microsoft MVP – Windows Server System Senior Systems Engineer/Database Administrator Fujitsu Asia Pte Ltd
Membership in ASP.Net...if only Presented by: Patrick Hynds President, CriticalSites Microsoft Regional Director.

Membership in ASP.Net...if only Presented by: Patrick Hynds President, CriticalSites Microsoft Regional Director.
Session 11: Security with ASP.NET

Session 11: Security with ASP.NET
Multiple Cases Access Utilities1 Access & ODBC Managing and Using ODBC Connections P.O. Box 6142 Laguna Niguel, CA 92607 949-489-1472

Multiple Cases Access Utilities1 Access & ODBC Managing and Using ODBC Connections P.O. Box 6142 Laguna Niguel, CA
Forms Authentication, Users, Roles, Membership Svetlin Nakov Telerik Corporation www.telerik.com.

Forms Authentication, Users, Roles, Membership Svetlin Nakov Telerik Corporation
Meir Botner David Ben-David. Project Goal Build a messenger that allows a customer to communicate with a service provider for a fee.

Meir Botner David Ben-David. Project Goal Build a messenger that allows a customer to communicate with a service provider for a fee.
Module 10: Configuring Windows XP Professional to Operate in Microsoft Networks.

Module 10: Configuring Windows XP Professional to Operate in Microsoft Networks.
Copyright 2000 eMation SECURITY - Controlling Data Access with

Copyright 2000 eMation SECURITY - Controlling Data Access with

Similar presentations

Ads by Google