Last post Nov 04, 2012 04:34 PM by Miodrag Zivkovic
Oct 05, 2012 02:47 PM|tradegear|LINK
Hi. Hopefully I have posted in the correct forum. Please redirect if necessary.
We are familiar with ASP.NET Membership Provider as we have created a custom provider and used it on several projects. Now we are looking at prototyping a small project (probably MVC), HTML5, CSS3, JScript; all the "new" stuff. What I have not seen in
the demos is an approach for something similar to the aforementioned provider model to be used to authenticate users in this new web development framework. Are there some hidden nuggets awaiting us in some new VS2012 project templates? (I've not tried them
Also, I do not understand how a security token is passed to the web services that will be utilized via JScript AJAX (JSON) in lieu of the trusty old page postbacks whose session ID provided the tie to their authenticated security context and protected pages/data/etc
from unauthorized requests. The demos I have seen show these seemingly wide-open web services with no protection.
I am looking forward to any links to articles or any explanations you are willing to provide that give me the info I need to understand how to replace these architectural foundational components in building a SPA-type business web application using these
Nov 04, 2012 04:34 PM|Miodrag Zivkovic|LINK
While you use asp.net to develop your application you can also use asp.net membership provider.
When you want login functionality for your users, you actually need one extra (login) page before your main page.
Once your user is logged in, you can redirect him to the main page. When login credentials expire for current session, response for each ajax call will return 401 (Unauthorized) http status code. Then you can use jquery's global ajax events to handle this
particualar situation and redirect user to login page.
Hope it helps.