I've got a web site with URLs like the following:
http://www.mysite.com/nnnn/webpage.aspx
where nnnn is a number which represents an ID, e.g.
http://www.mysite.com/1234/webpage.aspx.

Can anyone tell me where to find detailed documentation on exactly how Forms
Authentication works?
The docs and tutorials I've found don't tell you much, just how to use it in
a common scenario but there's no description of what's going on - it's just

Hello, I am trying to figure out how can I run a process under the
authenticated user's credentials without having to prompt for a
username and password?  Is there anyway to allow for pass thru
authentication?  I am tying to use the ProcessStartInfo class and I

Has anyone found any kind of solution of how to protect user passwords from
snuffiers without having to use , the server CPU ressource killer SSL?
Many thanks
Thanks

If you do not cache role provider to Cookies with the
cacheRolesInCookie="True" in your role provider configuration, will it
default to cache to Session.   We may have over 200 roles for some users and
I am concerned about the size of the cookie but would like the role cached if

We have a website in which we will have an SSL component for order
processing. We just found out that we will have a hardware SSL accelerator
card
within the network architecture. From what we understand, the card will TX/RX

I am observing (via fiddler) a problem where "webresource.axd" files are
being deployed over http (port 80) hot https (443) even when the request is
https://xxx.xx.
IE6 doesn't seem to mind this and reports the page as secure (padlock

  I've built an administration application using ASP.NET. Now how I could
ensure only domain admin could use the ASP.NET web page ? I tried setting
window autentication for virtual directory security and aspz security and
add domain adminstartor in allowed users in allowed users ...

I have created a simple windows control that had one button and opens
up FolderBrowserdialog box.
When I a try to uses this control in my asp.net app, it generates the
following error:

SqlMembershipProvider does (allmost) what I want.
So I'm not willing to write my own provider.
But I want to change some little things.
a.) I want to be able to add an "Email-OptIn feature"

Dear Friends
Recently our business partner asked our company to send financial
informations in XML format to their defined URL address, its a kind of EDI.
They also told us that transfer protocol should be HTTPS and it needs

I want to use the AuthorizationStoreRoleProvider class using my own code but
NOT to authenticate and authorize the users in my current web application,
only to manage some security part of my active directory.
In my web.config, I have added some configuration information (like the ...

i'm trying to write a simple test login page which will provide login
for 2 users. my web.config file reads as follows:
<?xml version="1.0" ?>
<configuration

I have an asp.net app and in one aspx I need to read and write in a
shared direcotry in a cluster.
My code is the following:
log.Debug("I am...." +

I am an applications developer with very basic knowledge of networking
security concepts so please bear with while I try my best to explain
the situation.
I am looking for some best practice advice for how to structure the