ASP.NET Web Site Administration Tool: Difference between revisions

Browse history interactively

← Previous edit

Content deleted Content added

VisualWikitext

Revision as of 07:06, 12 December 2012 edit Codename Lisa (talk \| contribs) 55,077 edits Multiple fixes. Removal of diffused category. ← Previous edit		Latest revision as of 01:54, 18 February 2023 edit undo Billinghurst (talk \| contribs) Edit filter managers, Autopatrolled, Administrators 46,695 edits m Reverted edits by 2800:200:E200:1827:A612:64BF:6BBD:8249 (talk) to last version by Ghettoblaster Tag: Rollback
(42 intermediate revisions by 26 users not shown)
Line 1: {{Infobox ~~Software~~software▼ ~~{{orphan\|date=December 2008}}~~ ▲{{Infobox Software \|logo = \|screenshot = ~~[[File:~~WebSite Admin Home.jpg~~\|300px]]~~ \|screenshot size = 300px \|caption = Screenshot of Web Site Administration Tool main page \|developer = Line 20: The Web Site Administration tool was first introduced with [[ASP.NET 2.0]] along with ASP.NET Microsoft Management Console (MMC) Snap-in.<ref name="msdn_2">{{Cite web\|url=http://msdn.microsoft.com/en-us/library/ms178687(VS.80).aspx\|title=What's New in ASP.NET Configuration \|accessdate=2008-05-22\|publisher=MSDN Visual Studio 2005 Development Center}}</ref> ==Interface== ~~==Accessing the Tool==~~ ~~The~~ASP.NET Web Site Administration Tool can be accessed by clicking ASP.NET Configuration from the ~~'''~~Website~~'''~~ menu{{Clarify\|post-text="In which version or edition of Visual Studio?\|date=December 2012}} (or ~~'''~~Project~~'''~~ menu in Visual Studio 2010 Professional)., ~~It can also be accessed~~or by clicking on the ASP.NET Configuration icon in the Solution Explorer window. Programmatic access to the features provided by the ASP.NET Web Site administration tool is made possible by inclusion of the ''System.Web.Security'' namespace in the ASP.NET program. The classes ''Membership'' and ''Roles'' are used to store, access and modify user information in the ASPNETDB database. The user could be authenticated using the ''Membership.ValidateUser'' or ''FormsAuthentication.Authenticate''<ref name="authentication_authenticate">{{Cite web\|url=http://msdn.microsoft.com/en-us/library/system.web.security.formsauthentication.authenticate.aspx\|title=FormsAuthentication.Authenticate Method \|accessdate=2008-05-23\|publisher=MSDN\| archiveurl= ~~http~~https://web.archive.org/web/20080508181938/http://msdn.microsoft.com/en-us/library/system.web.security.formsauthentication.authenticate.aspx\| archivedate= 8 May 2008 ~~<!--DASHBot-->~~\| ~~deadurl~~url-status= nolive}}</ref> methods. Page-based user authorization is realized by the usage of the ''AuthorizeRequest'' event of the ''HttpApplication'' class.<ref name="msdn_authorizerequest">{{Cite web\|url=http://msdn.microsoft.com/en-us/library/system.web.httpapplication.authorizerequest.aspx\|title=HttpApplication..::.AuthorizeRequest Event\|accessdate=2008-05-23\|publisher=MSDN}}</ref>▼ ==Features== Line 28 ⟶ 30: * Web Site Administration Tool Application Tab * Web Site Administration Tool Provider Tab * Web Site Administration Tool Internals ===Security ~~Tab~~tab=== [[File:Website Admin Security.jpg\|thumb~~\|right~~]] The security tab is used to create users and roles, group users under different roles and assign access rules either at the role-level or user-level.<ref name="security_tab">{{Cite web\|url=http://msdn.microsoft.com/en-us/library/ssa0wsyf.aspx\|title=Web Site Administration Tool Security Tab\|accessdate=2008-05-23\|publisher=MSDN}}</ref><ref name="expert_asp.net">{{cite book \| title=Expert ASP.NET 2.0 Advanced Application Design: Advanced Application Design \| url=~~http~~https://books.google.~~co.in~~com/books?id=RCVoZfzs6hwC&pg=PA191~~&lpg=PA191l&source=web&ots=dWcSWieXbi&sig=a6pm4m70IMmwJx5iqTLqenPDciQ&hl=en#PPA192,M1~~\| last=Selly\| first=Dominic\| ~~coauthors~~author2=Andrew Troelsen, \|author3=Tom Barnaby\| date=2005\| pages=191\| publisher=Apress\| idisbn=~~ISBN~~ 159059522X}}</ref><ref name="webcast_asp.net">{{Cite web\|url=http://www.asp.net/LEARN/videos/video-06.aspx\|title=Lesson 9: Securing your Web Site with Membership and Login Controls\|accessdate=2008-05-23\| archiveurl= ~~http~~https://web.archive.org/web/20080519232647/http://www.asp.net/LEARN/videos/video-06.aspx\| archivedate= 19 May 2008 ~~<!--DASHBot-->~~\| ~~deadurl~~url-status= nolive}}</ref><ref name="pro_asp.net">{{cite book \| title=Pro ASP.NET 2.0 Website Programming \| url=~~http~~https://books.google.~~co.in~~com/books?id=zzlhSgGtVe4C&pg=PA2~~&lpg=PA2&source=web&ots=h1BacPycnu&sig=qQb_EIKRBysBhw6Rr4Vb9jD-Ci8&hl=en#PPA2,M1~~\| last=Armstrong\| first=Damon\| date=2005\| pages=2–6\| publisher=Apress\| idisbn=~~ISBN~~ 1590595467}}</ref> When the Web site administration tool is opened to modify the existing settings, a new database is created in the App_Data folder of the application.<ref name="security_tab" /> This database stores ASP.NET membership-related information. The name of the database created is ASPNETDB by default.<ref name="security_tab" /> The security tab simplifies and optimizes user [[authentication]] and [[authorization]].<ref name="security_tab" /> It makes it comparatively easy to configure user permissions than code-based user-defined authentication systems which require a great amount of time, cost and manpower. However, a major drawback of this tool is that access rules could be defined only at the [[folder (computing)\|folder-level]] and not at the [[page (computer memory)\|page-level]]. ===Application ~~Tab~~tab=== The Application tab is used to specify application settings, configure [[SMTP]] settings and enable or disable [[debugging]] and [[tracing (software)\|tracing]] apart from other uses.<ref name="expert_asp.net" /> The Application tab interacts with the configuration file of the application ([[web.config]]) and not with the ASPNETDB database.<ref name="dotnet_config">{{Cite web\|url=http://www.brainbell.com/tutorials/ASP/.NET_Configuration.html\|title=.NET Configuration\|accessdate=2008-05-23}}</ref> Application settings are created as objects and inserted as name-value pairs in the web.config file.<ref name="dotnet_config" /> ===Provider ~~Tab~~tab=== The Provider tab is used to specify the database provider for the ASPNETDB database used to store ASP.NET membership and role information.<ref name="expert_asp.net" /><ref name="pro_asp.net" /> The security page does not appear unless and until the database provider is specified in the Providers tab. An SQL Data provider is generally used, but Oracle Data providers are also used in case of Oracle databases. The provider allows the user the option of to store all data related to the ASP.NET Website Administration tool or different databases for each purpose. ~~===Internals===~~ Apart from these tabs, there are a number of other features and components associated with the ASP.NET Web Administration tool. The ASP.NET Configuration APIs which the ASP.NET Web Site Administration tool makes use of to access and modify the security and application settings in the Web.config file is one of them. ~~==Programmatic access==~~ ▲Programmatic access to the features provided by the ASP.NET Web Site administration tool is made possible by inclusion of the ''System.Web.Security'' namespace in the ASP.NET program. The classes ''Membership'' and ''Roles'' are used to store, access and modify user information in the ASPNETDB database. The user could be authenticated using the ''Membership.ValidateUser'' or ''FormsAuthentication.Authenticate''<ref name="authentication_authenticate">{{Cite web\|url=http://msdn.microsoft.com/en-us/library/system.web.security.formsauthentication.authenticate.aspx\|title=FormsAuthentication.Authenticate Method \|accessdate=2008-05-23\|publisher=MSDN\| archiveurl= http://web.archive.org/web/20080508181938/http://msdn.microsoft.com/en-us/library/system.web.security.formsauthentication.authenticate.aspx\| archivedate= 8 May 2008 <!--DASHBot-->\| deadurl= no}}</ref> methods. Page-based user authorization is realized by the usage of the ''AuthorizeRequest'' event of the ''HttpApplication'' class.<ref name="msdn_authorizerequest">{{Cite web\|url=http://msdn.microsoft.com/en-us/library/system.web.httpapplication.authorizerequest.aspx\|title=HttpApplication..::.AuthorizeRequest Event\|accessdate=2008-05-23\|publisher=MSDN}}</ref> ==References== {{~~reflist~~Reflist\|2}} {{.NET Framework}} [[Category:ASP.NET ~~framework~~]] [[Category:Microsoft Visual Studio]]