ASP.NET - What is Authorization in ASP.NET? - June 03,
2009 at 11:00 AM by Shuchi Gauri
What is Authorization in ASP.NET?
Authorization is a process that takes place based on the authentication of the
user. Once authenticated, based on user’s credentials, it is determined what
rights des a user have. In ASP.NET, there are two ways to authorize access to a
given resource:
a. File authorization
b. URL authorization
Also read
Define Authentication and Authorization
What is the authentication mode available in ASP.NET?
How do you set authentication mode in the ASP.NET application?
List out the difference between windows authentication and form authentication
How do you impersonate the authenticated user in ASP.NET?
How do you provide secured communication in ASP.NET?............
Authentication is the process of verifying the identity of a user, authorization
is process of checking whether the user has access rights to the
system...........
ASP.NET checks for the presence of a special session cookie when a user requests
a page for the application............
ASP.NET impersonation is controlled by entries in the applications web.config
file..............
ASP.NET runs inside the process of IIS due to which there are two authentication
layers which exist in the system.............
Forms authentication can be easily implemented using login controls without
writing any code............
Passport authentication provides authentication using Microsoft’s passport
service. If passport authentication is configured and users login using
passport then the authentication duties are off-loaded to the passport
servers.............
Selection of an authentication provider is done through the entries in the
web.config file for an application...............
If windows authentication mode is selected for an ASP.NET application, then
authentication also needs to be configured within IIS since it is provided by
IIS.................
|
