Last post Feb 09, 2015 02:28 AM by Michelle Ge - MSFT
Feb 05, 2015 06:35 AM|mou_inn|LINK
i like to know what kind of data is stored in auth cookie as encrypted data in client pc?
user and password both stored in auth cookie or only user name ?
in case of cookie less form authentication how everything works ?
please read this url write up for CSRF attack and form authentication
what would be best approach to protect CSRF attack when using form auth persistent cookie?
looking for good insight. thanks
Feb 09, 2015 02:28 AM|Michelle Ge - MSFT|LINK
So far as I know, we will contain a user table where we will store username and password, and some other information.
For more information, please refer to the link below:
Hope it's useful for you.