WebApp Sec mailing list archives

RE: Current Project Design, Comments?

From: "Sarbjit Singh Gill" <ssgill () gilltechnologies com>
Date: Mon, 3 Mar 2003 22:33:28 +0800

Greetings,

Forms Authentication does not work without cookies. That is confirmed. Just
like passport authentication.

Cheers
Gill

-----Original Message-----
From: Gal Rozov [mailto:Gal.Rozov () ealaddin com]
Sent: Monday, March 03, 2003 6:14 PM
To: ssgill () gilltechnologies com; Michael Loll
Subject: RE: Current Project Design, Comments?


Hi,

I'm not sure, but I if you work with viewstate you don't need cookies.
I don't know exactly how the forms authentication works but if you know
I'd be glad if you'll tell me.

Best Regards.

Gal Rozov
Senior Developer.

Aladdin. Securing the Global Village.
P.O. Box 11141,  Tel Aviv 61110 Israel
Tel:   +972 3 636-2222; Fax: +972 3 537-5796
Visit us at our Web site!  http://www.eAladdin.com

Aladdin supports Idealist. Visit http://www.idealist.org


-----Original Message-----
From: Sarbjit Singh Gill [mailto:ssgill () gilltechnologies com]
Sent: Sunday, March 02, 2003 3:44 PM
To: Michael Loll; Gal Rozov
Subject: RE: Current Project Design, Comments?



Greetings,

Just curious about the answer/question below:
<>
RE: Q2 in your email

I am aware of FormsAuthentication, but we are not using client-side
cookies, which are required of FormsAuthentication (as I recall).  Hence
we can't use it.  If anyone knows if we can use FormsAuthentication
without client-side cookies, let me know. <>

Can't you use the cookie-less ASP session management model instead of
cookie in PC. Does the session info in the URL support Forms
Authentication.

Kind Regards
Gill


******************************* IMPORTANT !
**********************************
The content of this email and any attachments are confidential and intended
for the named recipient(s) only.

If you have received this email in error please notify the sender
immediately.
Do not disclose the content of this message or make copies.

This email was scanned by eSafe Mail for viruses, vandals  and other
malicious content.
****************************************************************************
**

Current thread:

RE: Current Project Design, Comments?, (continued)
- RE: Current Project Design, Comments? Michael Loll (Feb 14)
- RE: Current Project Design, Comments? securityarchitect (Feb 14)
- RE: Current Project Design, Comments? Logan F.D. Greenlee (Feb 14)
- RE: Current Project Design, Comments? Michael Loll (Feb 14)
  - RE: Current Project Design, Comments? Tim Aranki (Feb 14)
- RE: Current Project Design, Comments? Scott (Feb 14)
- RE: Current Project Design, Comments? Gal Rozov (Feb 17)
- RE: Current Project Design, Comments? Michael Loll (Feb 17)
  - RE: Current Project Design, Comments? TUER, DON (Feb 17)
- RE: Current Project Design, Comments? Douglas Schlenker (Feb 17)
- RE: Current Project Design, Comments? Sarbjit Singh Gill (Mar 03)
- RE: Current Project Design, Comments? Vitor Ventura (Mar 18)
  - RE: Current Project Design, Comments? alex (Mar 18)