does cookie authentication use validation?

  • Thread starter Thread starter Daves
  • Start date Start date
D

Daves

how is it; when an user uses cookies to skip login on my web site, does his
authentication include a validation against database, that is does the
memebership call the validate() function or is the user's idendity and
session just set from cookie's parameters?
 
If you are referring to Forms Authentication, the Forms Auth cookie actually
contains a valid serialized Authentication ticket. But I think the
validation method is still called. Why is this important? The
AuthenticateRequest method is called on every request. This link may provide
more insight:

http://forums.asp.net/thread/1249633.aspx

Peter
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Authentication cookie security 1
ASP.NET Forms Authentication Cookie 3
Forms Authentication Redirecting to Login 1
Forms authentication cookie handling question (C#) 4
single sign on - why not trust AD? 1
Authentication Twice? 2
Does Forms Authentication require cookies? 4
Authentication Cookie not in Request.Cookies 1

Back
Top