Velocity Reviews - Computer Hardware Reviews

Velocity Reviews > Newsgroups > Programming > ASP .Net > ASP .Net Security > FormsAuthentication cookie problems

Thread Tools

FormsAuthentication cookie problems

Posts: n/a
Our website is confugred to use Forms Authentication. The web.config
<authentication> element has the timeout property set to 45 (minutes). We
are setting the cookie using the RedirectFromLoginPage() which should use
the <authentication> timeout value to configure it properly. At least thats
my understanding of how it should work.

Most times we have no problems, but occasionally a request will come into
the server and the client is redirected to the login page for no reason. We
have looked at the IIS logs and the request coming in has the same
authentication cookie that was assigned previously. But all of a sudden IIS
doesn't like it anymore, after a period of 5 or 10 minutes, nothing near the
timeout value.

I have read previous posts that mention Decrypt() occasionally fails to
decrypt the cookie properly, which causes the client to be redirected to
login. Does anyone know if this is a known bug? Does anyone have any other

Any help would be appreciated.

Scott Lorenz Removed)

Reply With Quote

Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
How can I add my own data to a Web.FormsAuthentication cookie? Rof ASP .Net 0 12-07-2005 02:13 PM
ASP.NET 2.0 RTM breaks FormsAuthentication.SetAuthCookie cookie Bill Henning ASP .Net 8 11-09-2005 04:48 PM
Clearing FormsAuthentication cookie manually tshad ASP .Net 3 01-17-2005 05:45 PM
FormsAuthentication Expired Cookie Brian Shannon ASP .Net 0 08-18-2004 03:46 PM
FormsAuthentication Cookie Q George Durzi ASP .Net 2 10-16-2003 05:31 AM