What is ASP.NET User Authentication


ASP.NET Book The online ASP.NET Tutorial Book Home ASP.NET Basics ASP.NET Tips Building Applications Contact Us About Us

> Building Apps > Designing Secure ASP.NET 2.0 Applications > What is ASP.NET User Authentication
ASP.NET Basics HTML Basics ASP.NET Web Server Advanced HTML Application Designing Using Visual Studio ASP.NET Standards ASP.NET Styling ASP.NET Navigation ASP.NET Tips ASP.NET Validation HTML forms CSS Styling CSS Advanced ASP.NET Features ASP.NET Image Effects Common mistakes DB Design tips Building Applications Design Secure Apps Build Secure Apps			1. What is ASP.NET User Authentication « Previous Chapter Next Chapter »
			Today many web applications requires that the user register with the system and log in, before they start to use the application. For example: If you take the Shopping Cart application, it requires the use to log in to before they complete a purchase thus making sure that the application knows who is purchasing the items, who to ship the items to, and whom to send the bills to. The community applications like the forums and blogs also require a user to log in before they start to post content to the application. There are applications which require the user to log in even before the user can view any page in the application. There are some application which have pages that can be viewed anonymously an other that require a log in like in an online store which might allow usrs to view a catalog and add items to a shopping cart without loggin in, but require a login to complete a purchase, and if you take a forum or a blog, it might allow anyone to view other users’ posts but will require a user to log in to make a post of their own. Today there are some applications that have more than one type of user too. For example: Most of the users of the shopping cart application can view the company’s product and add items to a shopping cart, and make purchases, but these users cannot make any changes to the items in the Products database. This is only allowed to usrs of type administrator. This is the same for forums, which have noremal users who can post blogs and moderators who can manage posts or even ban abusive users. When talking about security, there are two aspects of user registration and login secrutiy in ASP.NET, and they are: Authentication – The process of determining who a user is, and whether the user really is who he or she claims to be. Authorization – The process of determining whether a particular user, once authenticated, can access a particular Web site page. The following are the subtopics in this section: What are the three types of authentication How to configure form-based authentication How to configure Authorization What are membership providers « Previous Chapter Next Chapter » Table of Contents » Chapter 1 - What is ASP.NET User Authentication Chapter 1.1 - What are the three types of authentication Chapter 1.2 - How to configure form-based authentication Chapter 1.3 - How to configure Authorization Chapter 1.4 - What are membership providers Chapter 2 - How to use ASP.NET Login Controls Chapter 2.1 - How to use the Login control Chapter 2.2 - How to use the CreateUserWizard control Chapter 2.3 - How to use the PasswordRecovery control Chapter 2.4 - How to use the ChangePassword control Chapter 2.5 - How to use the LoginView control Chapter 2.6 - How to use the LoginName control Chapter 2.7 - How to use the LoginStatus control Chapter 3 - How to protect against security threats Chapter 3.1 - How to avoid malicious scripts Chapter 3.2 - How to prevent SQL injection attacks Chapter 3.3 - How to hide error message [top]


↑ Top Home Privacy Policy Copyrights All Rights Reserved. © Copyrights 2010 - 2012 www.aspnetbook.com