Forms auth is a well established secure mechanism for authenticating users. Also, it's using the standard authentication APIs in ASP.NET and in .NET so that other parts of the framework can also participate in security (typically around authorization) in
a standard way without knowing baout your custom flag in session. Don't build your own security as this typically means your app is not as secure as it could be.
kumar_3345
0 Points
2 Posts
Authentication
May 23, 2012 10:07 PM|LINK
Hi Guys,
What are the advantages of using Forms authentication compared to classic authentication(i.e i can validate the user id and store it
in session and the session value can be used in other pages). I tried to google but I didn't find clear explanation. Can some one help me.
BrockAllen
All-Star
27524 Points
4902 Posts
MVP
Re: Authentication
May 24, 2012 12:22 AM|LINK
Forms auth is a well established secure mechanism for authenticating users. Also, it's using the standard authentication APIs in ASP.NET and in .NET so that other parts of the framework can also participate in security (typically around authorization) in a standard way without knowing baout your custom flag in session. Don't build your own security as this typically means your app is not as secure as it could be.
Also, session state is just bad in general.
DevelopMentor | http://www.develop.com
thinktecture | http://www.thinktecture.com/