If you do not cache role provider to Cookies with the cacheRolesInCookie="True" in your role provider configuration, will it default to cache to Session. We may have over 200 roles for some users and I am concerned about the size of the cookie but would like the role cached if posible. W...more >>

Can anyone tell me where to find detailed documentation on exactly how Forms Authentication works? The docs and tutorials I've found don't tell you much, just how to use it in a common scenario but there's no description of what's going on - it's just a black box. I'm doing something unu...more >>

I've got a web site with URLs like the following: http://www.mysite.com/nnnn/webpage.aspx where nnnn is a number which represents an ID, e.g. http://www.mysite.com/1234/webpage.aspx. I can easily decode the URL and retrieve the ID (which represents a specific customer) and then rewrite ...more >>

Hi All, I have created a simple windows control that had one button and opens up FolderBrowserdialog box. When I a try to uses this control in my asp.net app, it generates the following error: "System.Security.SecurityException: Request for the permission of type 'System.Security.Permissions...more >>

We are changing from using SQL accounts in our connection string to use NT domain accounts. I have found some coe which I am using successfully on my local machine, because the installed account ie; MachineName\ASPNET is what I use in my VS2005 environment and this works great connecting local...more >>

Hi, I have an asp.net app and in one aspx I need to read and write in a shared direcotry in a cluster. My code is the following: log.Debug("I am...." + System.Security.Principal.WindowsIdentity.GetCurrent().Name); DirectoryInfo raiz = new DirectoryInfo(ruta_Excel); FileInfo[] archivos = rai...more >>

Hi, We are trying to use a P12 certificate to access a secure website using .NET 1.1 We have installed the cert and exported it as an X509. We have also used the winhttpcertcfg utility to add IWAM permissions for it. We have then programmatically added an X509Certificate object to the ...more >>

How to maintain session across applications for authenticating purposes ...more >>

I would appreciate some pointers to the correct place to start learning how to achieve the following: 1. I have a web service (SOAP) that needs to be authenticated prior to use. 2. The authentication is of the form: login and password 3. I want to be able to: a) authenticate the login/passw...more >>

Can anyone tell me if is is possible to override how a web application = stores/retrieves the Access Rules for roles? Instead of using the = web.config to store the following: <system.web> <authorization> <allow roles=3D"Admin" /> </authorization> </system.web> I would l...more >>

hi. i'm trying to write a simple test login page which will provide login for 2 users. my web.config file reads as follows: <?xml version="1.0" ?> <configuration xmlns="http://schemas.microsoft.com/.NetConfiguration/v2.0"> <system.web> <authentication mode="Forms"> <forms name="my...more >>

I am attempting to get a list of the security groups a specific user is a member of when logging into our applications. After finding many methods, I settled on the preferred suggested method of using an IdentityReferenceCollection within the .NET 2.0 frame work. This works well except for one...more >>

Hi, I'm trying to use XMLHTTP to do an out of band call for the contents of a drop down. Basically a user selects an item from a drop down, and the onchange event fires an XMLHTTP request to the server for the contents of a dependent drop down (in this case, the first drop down is categories,...more >>

I have a SiteMap-based application that has custom role/membership providers. The app logs in with the custom membership provider with no problems, but for some reason, none of my role provider methods get called when trimming the sitemap. If I put in roles="*" for a node, it's there, but ...more >>

I have a custom security backend that I need to integrate with ASP.Net 2.0. The problem I have is that being in a role is not evaluated as simply "myRoles.Contains(role)". There's some logic that goes on in a webservice such that I really do have to ask the security system the question: "Is t...more >>

I am running Asp.Net under the System account but I do not have access to the mapped drives under my user accounts. Do I need to run as a user to access those mapped drives? Thanks, Marc...more >>

Hi, I have written a custom membership provider based to access an existing SQL profile store. However when I upload my application to a shared hosting environment I get a security exception of the type IO Exception. This boils down to a number of lines of code in my provider trying to ac...more >>