Windows Authentication

[Ian Jenkins, MCSD]

Is there a way to use a web form as a means to authorize a user through
windows authentication?

For Example:

http://www.mysite.com/login.aspx. (anonymous access)

http://www.mysite.com/secure (secured by basic authentication)

Login.aspx would handle the authentication and redirect to
http://www.mysite.com/secure (and the user would not be asked for
credentials).

 

[Guest]

Windows Authentication expects the user to have a valid domain / Active
Directory account. The user's browser automatically transmits the credentials
in response to the Windows Auth challenge, so there should not be any login
dialog if the app is set up correctly.

However, you can write an HTTPBasic or HTTPDigest Authentication module that
will work in a similar manner, and do your authentication against a database.

Here is one with VB.NET that I did:

http://www.eggheadcafe.com/articles/20040317.asp

and here is one in C#:

http://www.eggheadcafe.com/articles/20030701.asp

Both of these were based on excellent sample code by Greg Reinacker.

Hope that helps,


Peter



Peter

 

[Willy Denoyette [MVP]]

| Is there a way to use a web form as a means to authorize a user through
| windows authentication?
|
| For Example:
|
| http://www.mysite.com/login.aspx. (anonymous access)
|
| http://www.mysite.com/secure (secured by basic authentication)
|
| Login.aspx would handle the authentication and redirect to
| http://www.mysite.com/secure (and the user would not be asked for
| credentials).
|

A number of patterns & practices modules do cover this, start with:
http://msdn.microsoft.com/library/default.asp?url=/library/en-us/dnpag2/html/PAGExplained0001.asp
and read the docs refered to in "Additional Resources".

Willy.