cookieless Forms Authentication - please help...

S

studio60podcast

I'm writing an ASP.NET 2.0 application using the new Membership
providor and I'm having trouble.
I have created the roles, logins, login controls, etc... and I can log

in to the site.  However, as soon as I'm successfully
authenticated, I 
click on a link and it challenges me for
credentials again!  Doesn't 
matter which links I click, they all do
it.
I'm also having trouble with cookies.  I want to use cookies, but I

can't get them to work in either IE7 or IE6.  Here is my

<authentication> section from web.config:
<authentication mode="Forms"> 
<forms loginUrl="login.aspx"
defaultUrl="/default.aspx" 
name="secAuthCookie" cookieless="UseUri"
   protection="All" 
slidingExpiration="true" timeout="90" path="/"
/> 
</authentication>
I've tried setting cookieless to all of it's possible values,

UseCookies, UseUri, AutoDetect, etc... and none of them are working.

Am I missing something?  Please help!  I've been stuck on this for
two 
days now!
Thanks! 
Jason
 
J

Jesse Houwing

I'm writing an ASP.NET 2.0 application using the new Membership
providor and I'm having trouble.
I have created the roles, logins, login controls, etc... and I can log

in to the site. However, as soon as I'm successfully
authenticated, I 
click on a link and it challenges me for
credentials again! Doesn't 
matter which links I click, they all do
it.
I'm also having trouble with cookies. I want to use cookies, but I

can't get them to work in either IE7 or IE6. Here is my

<authentication> section from web.config:
<authentication mode="Forms"> 
<forms loginUrl="login.aspx"
defaultUrl="/default.aspx" 
name="secAuthCookie" cookieless="UseUri"
protection="All" 
slidingExpiration="true" timeout="90" path="/"
/> 
</authentication>
I've tried setting cookieless to all of it's possible values,

UseCookies, UseUri, AutoDetect, etc... and none of them are working.

Am I missing something? Please help! I've been stuck on this for
two 
days now!
Thanks! 
Jason
Click to expand...

Does your application use hardcoded urls back to the webserver? Or
javascript location changes you've written yourself?

In that case you need to make sure that these calls copy the
authentication token into the uri before redirecting.

Jesse Howuing
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

How to do forms authentication with cookieless=UseUri? 5
Getting Cokkies values using FORMS authentication 2
sessionState cookieless and forms cookieless 2
ASP.NET 2.0 Form Security Error 2
How can I increase the timeout on ASP.Net 3.5 pages talking towebservices? 2
Session times out in less time than I set 9
Anyone care to help explain forms authentication in 2.0? 3
Problem with Login Control and Custom Membership provider 1

Top