E
Eric Pearson
I implement my own HTTP server and pass ASP.Net requests via HttpWorkerRequest.
When I authenticate a client, I pass the correct windows token inside of
GetUserToken(), and within my pages/webservices HttpContext.Current.User
matches the token I authenticated.
However, when I perform an anonymous request I get a token for the anonymous
user ("NT AUTHORITY\ANONYMOUS LOGON", S-1-5-7) and return that in GetUserToken.
When asp.net gets it, HttpContext.Current.User is a zero-token Identity
with name="", which is unusable. HttpContext.Request.LogonUserIdentity however
does contain the correct windows identity for NTAUTH\ANONYMOUSUSER.
I do not want to impersonate, I just need HttpContext.User to contain the
correct, actual windows identity of "ANONYMOUS LOGON". What could I be doing
wrong?
Any help greatly appreciated.
-Eric Pearson
When I authenticate a client, I pass the correct windows token inside of
GetUserToken(), and within my pages/webservices HttpContext.Current.User
matches the token I authenticated.
However, when I perform an anonymous request I get a token for the anonymous
user ("NT AUTHORITY\ANONYMOUS LOGON", S-1-5-7) and return that in GetUserToken.
When asp.net gets it, HttpContext.Current.User is a zero-token Identity
with name="", which is unusable. HttpContext.Request.LogonUserIdentity however
does contain the correct windows identity for NTAUTH\ANONYMOUSUSER.
I do not want to impersonate, I just need HttpContext.User to contain the
correct, actual windows identity of "ANONYMOUS LOGON". What could I be doing
wrong?
Any help greatly appreciated.
-Eric Pearson