asp.net MVC FormsAuthentication for claim based authentication -

-

we using gigya authenticate user provide user id , email. pass user detail our crm web service return user data crm.

we need create session user can identify whether user logged in or not. if not logged in redirect gigya login/register etc.

now, given not using asp.net membership or similar, i'm thinking how going secure member pages. 1 way can think of store user detail in session. check if user detail exists in session, if doesn't exist prompt login.

i'm thinking whether:

  1. i can use formsauthentication.setauthcookie or similar create asp.net session

  2. or there better way achieve this.

also, if use formsauthentication.logout clear session , cookies though i'm not using asp.net membership provider?

goal:

  1. to able create session user
  2. able authorize user based on user role crm.
  3. able logout user on lout button click.

first, , very important security perspective.

authentication != session.

they different concepts. second,

never use session authentication

see first rule. formsauthentication has nothing. zero. zilch. nada. session management. nor have membership or credential verification. store cookie asp.net can decode verify user authenticated or nor. cookie set application when has validated users credentials.

formsauthentication.logout() not clear sessions, because said, have nothing each other. have clear session calling session.abandon().

session storing data user, , not secure. session volatile, , iis can discard whenever feels like, reason, @ time. cannot depend on session there request next.

authentication encrypted, , strictly proving user has been authenticated.

authentication can transcend sessions. can hours, weeks, months... session time there (if iis doesn't kill earlier).


Comments

Post a Comment

Popular posts from this blog

c++ - Delete matches in OpenCV (Keypoints and descriptors) -

-
i want check scene image against 2 train images. that, detect features , compute descriptors of both training images. before detecting, computing , matching scene image, delete matches of train1 , train2. because these matches won't facilitate matching of scene image train1 , train2. so, match train1 train2 , vector of matches trainidx , queryidx. how can delete these matches in keypoints-vector , descriptor matrix of train1 , train2? best regards, dwi i have done below: std::vector<cv::keypoint> keypoints[2]; cv::mat descriptor[2]; std::vector< cv::dmatch > matches; /* write code generate keypoints, descriptors , matches here... keypoint[0] -> train image 1 keypoints keypoint[1] -> train image 2 keypoints descriptor[0] -> train image 1 descriptors descriptor[1] -> train image 2 descriptors matches -> matched between train image 1 , 2 */ // logic keep unmatched keypoints , corresponding descriptor
Read more

java - Could not locate OpenAL library -

-
i writing game using slick2d library, uses lwjgl. lwjgl version 2.9.3. using netbeans 8. i tried adding sounds game, example music track on main menu. problem is, exception when run game, despite game still compiling , running except sound of course: sat mar 21 01:23:57 edt 2015 error:could not locate openal library. org.lwjgl.lwjglexception: not locate openal library. @ org.lwjgl.openal.al.create(al.java:156) @ org.lwjgl.openal.al.create(al.java:156) @ org.lwjgl.openal.al.create(al.java:102) @ org.lwjgl.openal.al.create(al.java:206) @ org.newdawn.slick.openal.soundstore$1.run(soundstore.java:295) @ java.security.accesscontroller.doprivileged(native method) @ org.newdawn.slick.openal.soundstore.init(soundstore.java:292) @ org.newdawn.slick.music.<init>(music.java:156) @ org.newdawn.slick.music.<init>(music.java:75) @ view.mainmenu.init(mainmenu.java:58) i didn't include rest of error states error happens in game code. the
Read more

sorting - opencl Bitonic sort with 64 bits keys -

-
i used nvidia sdk bitonic sort , works great me. 32 bits (uint) need ulong keys. have typically 2^14 keys @ time , power of 2. searched on not find kernel designed ulong. i tried modified nvidia sdk bitonic sort using ulong keys not work. kernel not crash after de call clenqueuendrangekernel got error : cl_invalid_command_queue can tell me how modify bitonic sort or radixsort, or can sort ulong keys? i running nvidia quadro 4000 opencl 1.1 cuda 6.5.20 full_profile used original nvidia sdk bitonicsort.cl i used"ulong" keys , value input , ouput instead of "uint" thanks helping i made work-around suit need. used 30 bits of key , 18 high bits of value sorting. changed comparators (2 lines): '#define mask 0xffffc000 // suit need from this: if( (*keya > *keyb) == dir ) this: if(((*keya > *keyb)||((*keya == *keyb)&&((*vala & mask)> (*valb & mask)))) == dir ) it works fine. but, still, it's work-a
Read more