Velocity Reviews - Computer Hardware Reviews

Velocity Reviews > Newsgroups > Programming > ASP .Net > ASP .Net Security > Custom Authentication

Reply
Thread Tools

Custom Authentication

 
 
SirPyros
Guest
Posts: n/a
 
      04-04-2005
I am implementing some custom authentication for an intranet app I am
building for my company. It is all done and working but I was wondering
if anyone knows if there are any downsides in terms of speed and
scalability in making your own authentication. Obviously if it is badly
coded you will have perfomance issues but if anyone knows of any common
pitfalls or any information they can share on the matter it will be
greatly appreciated.

 
Reply With Quote
 
 
 
 
Shaun Wilde
Guest
Posts: n/a
 
      04-06-2005
Can you explain more about your custom authentication?

Do you mean username and password? or something else?

Shaun

"SirPyros" wrote:

> I am implementing some custom authentication for an intranet app I am
> building for my company. It is all done and working but I was wondering
> if anyone knows if there are any downsides in terms of speed and
> scalability in making your own authentication. Obviously if it is badly
> coded you will have perfomance issues but if anyone knows of any common
> pitfalls or any information they can share on the matter it will be
> greatly appreciated.
>
>

 
Reply With Quote
 
 
 
 
SirPyros
Guest
Posts: n/a
 
      04-06-2005
its an ihttp module which handles the authenticaterequest event. It's
similar to forms authentication, but I added better role checking, and
the permissions don't have to be in the web.config, I populate a class
with all of my page permissions and load it into application variable.
Then when user tries to go to a page it sees if page is restricted , if
it is it checks if user is authenticated and then checks if the user
belongs to a role that can access this page.

 
Reply With Quote
 
Shaun Wilde
Guest
Posts: n/a
 
      04-07-2005
It sounds similar to what we do where I get the users permissions from the
database

and is also similar to the samples presented by IBuySpy and dotnetnuke

we build the permissions and then use the IsInRole method of a class whose
name escapes me at the moment


"SirPyros" <(E-Mail Removed)> wrote in message
news:(E-Mail Removed) ups.com...
> its an ihttp module which handles the authenticaterequest event. It's
> similar to forms authentication, but I added better role checking, and
> the permissions don't have to be in the web.config, I populate a class
> with all of my page permissions and load it into application variable.
> Then when user tries to go to a page it sees if page is restricted , if
> it is it checks if user is authenticated and then checks if the user
> belongs to a role that can access this page.
>



 
Reply With Quote
 
 
 
Reply

Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Failed Authentication, Status "Unsupported Authentication Algorithm" Rafael Cisco 1 11-26-2004 03:57 PM
Basic Authentication v. Integrated Windows Authentication w/ Delegation Mark ASP .Net 0 01-20-2004 03:13 PM
ASP.Net Forms authentication with basic authentication popup Brett Porter ASP .Net 2 01-20-2004 02:17 PM
Moving from Baisc Authentication to Forms Authentication raj mandadi ASP .Net 0 12-22-2003 12:16 AM
Forms Authentication, external authentication server, & rerouting to orig. req. URL Andrew Connell ASP .Net 1 10-21-2003 05:41 PM



Advertisments