Content deleted Content added
→Web Site Administration Tool Application Tab: - restored info removed in a previous edit |
m Scanned 5 urls; found 2 archives (2 in CiteWeb Templates; 2 in References). See User:DASHBot/Dead Links for settings, shutoff, info, questions. |
||
Line 36:
[[Image:Website Admin Security.jpg|thumb|right]]
The security tab is used to create users and roles, group users under different roles and assign access rules either at the role-level or user-level.<ref name="security_tab">{{Cite web|url=http://msdn.microsoft.com/en-us/library/ssa0wsyf.aspx|title=Web Site Administration Tool Security Tab|accessdate=2008-05-23|publisher=MSDN}}</ref><ref name="expert_asp.net">{{cite book | title=Expert ASP.NET 2.0 Advanced Application Design: Advanced Application Design | url=http://books.google.co.in/books?id=RCVoZfzs6hwC&pg=PA191&lpg=PA191l&source=web&ots=dWcSWieXbi&sig=a6pm4m70IMmwJx5iqTLqenPDciQ&hl=en#PPA192,M1| last=Selly| first=Dominic| coauthors=Andrew Troelsen, Tom Barnaby| date=2005| pages=191| publisher=Apress| id=ISBN 159059522X}}</ref><ref name="webcast_asp.net">{{Cite web|url=http://www.asp.net/LEARN/videos/video-06.aspx|title=Lesson 9: Securing your Web Site with Membership and Login Controls|accessdate=2008-05-23| archiveurl= http://web.archive.org/web/20080519232647/http://www.asp.net/LEARN/videos/video-06.aspx| archivedate= 19 May 2008 <!--DASHBot-->| deadurl= no}}</ref><ref name="pro_asp.net">{{cite book | title=Pro ASP.NET 2.0 Website Programming | url=http://books.google.co.in/books?id=zzlhSgGtVe4C&pg=PA2&lpg=PA2&source=web&ots=h1BacPycnu&sig=qQb_EIKRBysBhw6Rr4Vb9jD-Ci8&hl=en#PPA2,M1| last=Armstrong| first=Damon| date=2005| pages=2–6| publisher=Apress| id=ISBN 1590595467}}</ref> When the Web site administration tool is opened to modify the existing settings, a new database is created in the App_Data folder of the application.<ref name="security_tab" /> This database stores ASP.NET membership-related information. The name of the database created is ASPNETDB by default.<ref name="security_tab" />
The security tab simplifies and optimizes user [[authentication]] and [[authorization]].<ref name="security_tab" /> It makes it comparatively easy to configure user permissions than code-based user-defined authentication systems which require a great amount of time, cost and manpower. However, a major drawback of this tool is that access rules could be defined only at the [[folder (computing)|folder-level]] and not at the [[page (computer memory)|page-level]].
Line 50:
==Programmatic access==
Programmatic access to the features provided by the ASP.NET Web Site administration tool is made possible by inclusion of the ''System.Web.Security'' namespace in the ASP.NET program. The classes ''Membership'' and ''Roles'' are used to store, access and modify user information in the ASPNETDB database. The user could be authenticated using the ''Membership.ValidateUser'' or ''FormsAuthentication.Authenticate''<ref name="authentication_authenticate">{{Cite web|url=http://msdn.microsoft.com/en-us/library/system.web.security.formsauthentication.authenticate.aspx|title=FormsAuthentication.Authenticate Method |accessdate=2008-05-23|publisher=MSDN| archiveurl= http://web.archive.org/web/20080508181938/http://msdn.microsoft.com/en-us/library/system.web.security.formsauthentication.authenticate.aspx| archivedate= 8 May 2008 <!--DASHBot-->| deadurl= no}}</ref> methods. Page-based user authorization is realized by the usage of the ''AuthorizeRequest'' event of the ''HttpApplication'' class.<ref name="msdn_authorizerequest">{{Cite web|url=http://msdn.microsoft.com/en-us/library/system.web.httpapplication.authorizerequest.aspx|title=HttpApplication..::.AuthorizeRequest Event|accessdate=2008-05-23|publisher=MSDN}}</ref>
==References==
| |||