newbie question - Securing with ASP.NET -- asp.net

romy
5/22/2005 7:22:31 PM

Hi

I'm about to turn a public website into a secure members only website (after
paying registration fee).
I assume all I need for that purpose is to save users' information in an
XML file and use form authentication method in web.config
to prevent from anonymous users to enter.

Programmatically speaking, I assume I'll need:

1) A Secure Registration page in which users can enter their personal and
creditcard information.
2) After validating Credit Info Add the User details to the XML file.
3) A Login page + "Forgot Password" Procedure. (Validating the Login
Against XML file)

- Does my assumptions are correct ?
- Where can I find some code for the aboved ?
- How Do I Prevent from anonymous users illegal access to the XML file ?

Brock Allen
5/23/2005 5:39:19 AM

You should look into using FormsAuthenticaiton in ASP.NET. It provides many
of the features you're looking for, and the rest of the features you can
build on top of the framework provided. Here's the starting docs for FormsAuthentication:

http://msdn.microsoft.com/library/default.asp?url=/library/en-us/cpguide/html/cpconsimplecookieauthentication.asp?frame=true

-Brock
DevelopMentor
http://staff.develop.com/ballen

[quoted text, click to view]

asp.net : newbie question - Securing with ASP.NET