WebApp Sec mailing list archives
RE: Current Project Design, Comments?
From: "Sarbjit Singh Gill" <ssgill () gilltechnologies com>
Date: Mon, 3 Mar 2003 22:33:28 +0800
Greetings, Forms Authentication does not work without cookies. That is confirmed. Just like passport authentication. Cheers Gill -----Original Message----- From: Gal Rozov [mailto:Gal.Rozov () ealaddin com] Sent: Monday, March 03, 2003 6:14 PM To: ssgill () gilltechnologies com; Michael Loll Subject: RE: Current Project Design, Comments? Hi, I'm not sure, but I if you work with viewstate you don't need cookies. I don't know exactly how the forms authentication works but if you know I'd be glad if you'll tell me. Best Regards. Gal Rozov Senior Developer. Aladdin. Securing the Global Village. P.O. Box 11141, Tel Aviv 61110 Israel Tel: +972 3 636-2222; Fax: +972 3 537-5796 Visit us at our Web site! http://www.eAladdin.com Aladdin supports Idealist. Visit http://www.idealist.org -----Original Message----- From: Sarbjit Singh Gill [mailto:ssgill () gilltechnologies com] Sent: Sunday, March 02, 2003 3:44 PM To: Michael Loll; Gal Rozov Subject: RE: Current Project Design, Comments? Greetings, Just curious about the answer/question below: <> RE: Q2 in your email I am aware of FormsAuthentication, but we are not using client-side cookies, which are required of FormsAuthentication (as I recall). Hence we can't use it. If anyone knows if we can use FormsAuthentication without client-side cookies, let me know. <> Can't you use the cookie-less ASP session management model instead of cookie in PC. Does the session info in the URL support Forms Authentication. Kind Regards Gill ******************************* IMPORTANT ! ********************************** The content of this email and any attachments are confidential and intended for the named recipient(s) only. If you have received this email in error please notify the sender immediately. Do not disclose the content of this message or make copies. This email was scanned by eSafe Mail for viruses, vandals and other malicious content. **************************************************************************** **
Current thread:
- RE: Current Project Design, Comments?, (continued)
- RE: Current Project Design, Comments? Michael Loll (Feb 14)
- RE: Current Project Design, Comments? securityarchitect (Feb 14)
- RE: Current Project Design, Comments? Logan F.D. Greenlee (Feb 14)
- RE: Current Project Design, Comments? Michael Loll (Feb 14)
- RE: Current Project Design, Comments? Tim Aranki (Feb 14)
- RE: Current Project Design, Comments? Scott (Feb 14)
- RE: Current Project Design, Comments? Gal Rozov (Feb 17)
- RE: Current Project Design, Comments? Michael Loll (Feb 17)
- RE: Current Project Design, Comments? TUER, DON (Feb 17)
- RE: Current Project Design, Comments? Douglas Schlenker (Feb 17)
- RE: Current Project Design, Comments? Sarbjit Singh Gill (Mar 03)
- RE: Current Project Design, Comments? Vitor Ventura (Mar 18)
- RE: Current Project Design, Comments? alex (Mar 18)