The 3 Types of Security In Enterprise Applications(cascadeofinsights.com)

submitted by AdamBell(61) 1 year, 5 months ago

There are generally three types of security in enterprise applications: 1. Role based security - Which actions can a user do - aka role-based access control 2. Entity level security - A user can only perform an Action on certain objects/data - aka row level security 3. Field level security - A user can see or edit only certain fields of an entity – (this is really fine grained and usually a bad idea) read more...

1 comment |category: Architecture |Views: 136

tags: Architecture access EF enterprise C# another

Use Non-default Membership Provider for WCF Authentication Service(msdn.microsoft.com)

submitted by crpietschmann(11.3k) 1 year, 6 months ago

This topic shows how to programmatically select the membership provider when you call the ASP.NET authentication service by using Windows Communication Foundation (WCF). You can use a non-default membership provider when you have to authenticate users by using different membership providers, based on information that you get at run time. To authenticate through a non-default membership provider, you create an event handler for the Authenticating event. read more...

add a comment |category: WCF |Views: 144

tags: MembershipProvider Authentication WCF another

Smart Card Authentication Module Update - added Support for Membership(securitythroughabsurdity.com)

submitted by j.monty(1868) 2 years ago

This is a follow-on update on how to implement non-Active Directory Integrated Smart Card / Client Certificate Authentication with ASP.NET using Http Modules. This long overdue version adds support for ASP.NET Membership, Roles, and Profiles. read more...

add a comment |category: ASP.NET |Views: 193

tags: SmartCard Roles Authentication ASP.NET Membership another

Download File with authentication in .Net C#(logiclabz.com)

submitted by webtips(265) 2 years, 7 months ago

Sample code to download file with authentication in .Net C# read more...

add a comment |category: C# |Views: 224

tags: Authentication download C# .Net another

Session Attacks and ASP.NET - Part 2(blogs.sans.org)

submitted by j.monty(1868) 2 years, 11 months ago

In Session Attacks and ASP.NET - Part 1, I introduced one type of attack against the session called Session Fixation as well as ASP.NET's session architecture and authentication architecture. In this second post, I'll delve into a couple specific attack scenarios, cover risk reduction, and countermeasures specific to ASP.NET for protecting against session attacks in ASP.NET read more...

add a comment |category: Security |Views: 324

tags: Session Authentication Security ASP.NET another

Session Attacks and ASP.NET - Part 1(blogs.sans.org)

submitted by j.monty(1868) 2 years, 11 months ago

I’ve spent some time recently looking for updated information regarding session attacks as they apply to ASP.NET and am still not completely satisfied with how Microsoft has decided to implement session management in ASP.NET 2.0+. Part 1 explores ASP.NET session management, authentication, and session attacks against ASP.NET with a comparison of how ASP.NET stacks up against mitigation techniques against these attacks. read more...

add a comment |category: Security |Views: 396

tags: Session Authentication Security ASP.NET another

Links List March 2009(patrikluca.blogspot.com)

submitted by Patrik(705) 3 years, 1 month ago

I decided to share all my interesting reads and resources month by month with my blog readers. You can find these posts by searching on the label Links. I'll try to order the resources in logical categories. If you would like to see some interesting stuff added in the next month, don't hesitate to post a comment. So this is my Links post for March 2009. read more...

add a comment |category: Tips & Tricks |Views: 8

tags: ASP.NET search Authentication SharePoint MOSS another

Wrong urls in SharePoint alert messages(patrikluca.blogspot.com)

submitted by Patrik(705) 3 years, 1 month ago

Recently I ran into a problem with the automatic generated urls in SharePoint alert messages. For some users logging in using the Web-based form (and hence entering the Forms Based authentication Web Application, http://extranet url), the hyperlinks in the generated alert messages started wrongly with http://intranet. This was not the case for all users entering the Forms Based Web Application: for some the hyperlinks in the alert messages started correctly with http://extranet. read more...

add a comment |category: Products |Views: 6

tags: Authentication MOSS SharePoint another

Detecting Session Timeout and Redirect to Login Page in ASP.NET(csharpdotnetfreak.blogspot.com)

submitted by amit.jain(1186) 3 years, 6 months ago

In this example i'll show how to detect the session timeout which occurs when user is idle for the time specified as Session.Timeout,using C# asp.NET and if it is than redirect the user to login page to login again, for this i've set time out value in web.config file to 1 minute I've created three pages in this example , one is login page , when session expires , i redirect to this page , one is navigation page where i'll check if session is valid or not , if it is valid than only user will see this page other wise he gets redirected to login page read more...

add a comment |category: ASP.NET |Views: 822

tags: Authentication timeout ASP.NET Session another

Using ASP.NET Authentication in a Web Service with Silverlight(blogs.msdn.com)

submitted by crpietschmann(11.3k) 3 years, 11 months ago

A reader recently asked me to expand on the ASP.NET Authentication + Silverlight concept I started.. Specifically they wanted to do know how they can have a web service that returns different results depending on who calls the service (and what role they are in). Here is my quick walk through of adding that capability to the Silverlight+ASP.NET AppServices sample. read more...

add a comment |category: Silverlight |Views: 39

tags: Silverlight Authentication ASP.NET another

Installing the IEE Forms Based Authentication Solution (patrikluca.blogspot.com)

submitted by Patrik(705) 4 years ago

The CKS:Internet/Extranet Edition has released a pre-beta release of a Forms Based Authentication Solution. This set of great features adds some missing out-of-the box functionality in Microsoft Office SharePoint Server 2007. The solution can be downloaded at Codeplex. The functionality I like the most is: Ability for external users who authenticate themselves through forms based authentication to change their password through a web part. The web part is highly customizable in terms of error messages and labels. Ability for the SharePoint administrator to add external users who will authenticate through forms based authentication within the site settings of your site collection. There is no need to set up an extra website for user management, nor to do the administration of users directly in a database. read more...

add a comment |category: Products |Views: 43

tags: Authentication MOSS SharePoint another

Understanding Single Sign-On in ASP.NET 2.0(aspalliance.com)

submitted by locrain(400) 4 years, 4 months ago

In this article, Masoud discusses the concept of Cross Application Authentication using ASP.NET authentication model consisting of Membership Providers, web.config configuration, encryption, and decryption of configuration files. At the end of the article he also examines the application of the concept using ASP.NET login controls. read more...

add a comment |category: ASP.NET |Views: 102

tags: Authentication Membership ASP.NET another

How to use Forms Authentication's User Definitions with the Login Cont(msmvps.com)

submitted by PauloMorgado(435) 5 years, 1 month ago

In ASP.NET 1.1 we already had definitions of name and password credentials within the configuration file. We just didn't have a Login control. Now we have both but the Login control is set by default to use the default membership provider. How can we use both of them together? read more...

add a comment |category: ASP.NET |Views: 9

tags: Authentication ASP.NET another

Implementing SmartCard Authentication with ASP.NET (choosing-a-blog-url-sucks.blogspot.com)

submitted by j.monty(1868) 5 years, 1 month ago

This is my 9 page follow-up article on how to implement non-Active Directory Integrated Smart Card Authentication with ASP.NET using Http Modules. read more...

add a comment |category: Security |Views: 414

tags: Authentication SmartCard Security ASP.NET another

Programmatically send emails using Google mail server and System.Net.M(mycsharpcorner.com)

submitted by yousefla(675) 5 years, 1 month ago

Did you know you can use Google's gmail mail server to send and receive emails programmatically? It's true, Google folks allow you to use their mail servers to send emails programmatically from your applications. read more...

5 comments |category: ASP.NET |Views: 295

tags: Authentication Pick SMTP Gmail Email another

ASP.NET 2.0: Manage Web Users With Custom Profile Providers -- MSDN Ma(msdn.microsoft.com)

submitted by prasphy(780) 5 years, 2 months ago

With ASP.NET 2.0, you can add authentication, authorization, and profiles to your Web site without writing a single line of code. read more...

add a comment |category: ASP.NET |Views: 18

tags: .net2.0 ProfileProvider Authentication Security ASP.NET another