G
Guest
Hi,
I am developping a custom Webdav server in C#.
The IIS configuration is just an application Website with all verbs
redirected to aspnet_isapi.dll and the server works as a httpModule.
This server access a virtual filesystem actually located in a database.
The whole thing works fine with a classic windows authentication with the
WindowsAuthentication_OnAuthenticate event mapping domain users to my
application users.
Now, I'd like to enable some sort of authentication/authorization that would
allow me to request credentials from the connecting user to log in my
application.
Following are only opinions and/or precisions, I can be wrong anywhere :
From what I've read, I can use either Forms, Windows or None methods for IIS
auth (passport also but not available there).
I don't think Forms is really an option since this is a Webdav folder and
then can't really mix with regular hhtp requests on the same site or maybe
I'm wrong, but I would prefer something like a regular login box than a whole
system of authentication page.
Using windows authentication would force me to create a windows user for
each user in my application if I don't allow anonymous access, so this is not
a solution.
To me is left Windows auth with anonymous access, or None auth also with
anonymous access.
I am at this point and don't really see where I could do a complete
application managed authentication/authorization.
I am developping a custom Webdav server in C#.
The IIS configuration is just an application Website with all verbs
redirected to aspnet_isapi.dll and the server works as a httpModule.
This server access a virtual filesystem actually located in a database.
The whole thing works fine with a classic windows authentication with the
WindowsAuthentication_OnAuthenticate event mapping domain users to my
application users.
Now, I'd like to enable some sort of authentication/authorization that would
allow me to request credentials from the connecting user to log in my
application.
Following are only opinions and/or precisions, I can be wrong anywhere :
From what I've read, I can use either Forms, Windows or None methods for IIS
auth (passport also but not available there).
I don't think Forms is really an option since this is a Webdav folder and
then can't really mix with regular hhtp requests on the same site or maybe
I'm wrong, but I would prefer something like a regular login box than a whole
system of authentication page.
Using windows authentication would force me to create a windows user for
each user in my application if I don't allow anonymous access, so this is not
a solution.
To me is left Windows auth with anonymous access, or None auth also with
anonymous access.
I am at this point and don't really see where I could do a complete
application managed authentication/authorization.