Session for Form Auth?

[localhost]

Can sessions used be for Form Authentication instead of cookies? I am
thinking of using Forms Authentication for locked-down browsers that
do not allow cookies.

Thanks.

 

[.NET Follower]

hi this is amit
this is a very good topic
and was going to post the same ?
i found a site
on this
http://www.developer.com/net/asp/article.php/2216431
http://www.codeproject.com/aspnet/cookieless.asp
we can carry on the discusions

amit
india

 

[Do Quyet Tien]

ASP.NET support cookies-less session, it automatic append session ID as a query parameter in every query string.

Tiendq,
(e-mail address removed)

 

[Steven Cheng[MSFT]]

Hi,



Thanks for posting in the community!
From your description, you'd like to know whether it is possible to
implement cookieless FormsAuthentication in ASP.NET, yes?
If there is anything I misunderstood, please feel free to let me know.

I've viewed the messages in the thread and found that Amit has provided a
very cool tech article on this:
#Cookieless forms authentication
http://www.codeproject.com/aspnet/cookieless.asp

I believe that'll be helpful to you. Please check out the web link.



Regards,

Steven Cheng
Microsoft Online Support

Get Secure! www.microsoft.com/security
(This posting is provided "AS IS", with no warranties, and confers no
rights.)

 

[.NET Follower]

hi,
steven
hv u tried out cookiless mode in real world apps
coz there r lot of issues related to it ...
specially forms authentication

 

[.NET Follower]

hi,
if we use cookieless mode
then
at login
i do not use FormsAuth.setauthcookie method
or other methods which puts roles in to cookie
i just retrieve roles from DB.
then put them into session and just retieve
them from session in a method and attach it to the pricipal object
and can use the user.InRole method
withod dpending on cookie

what u people think
abt this

 

[Steven Cheng[MSFT]]

Hi Localhost,


Have you had a chance to check out the suggestions in the former reply or
have you got any new ideas on this issue?
If you need any further assistance, please feel free to let me know.




Regards,

Steven Cheng
Microsoft Online Support

Get Secure! www.microsoft.com/security
(This posting is provided "AS IS", with no warranties, and confers no
rights.)

 

[.NET Follower]

hi,
steven
did u see my earlier post of using formsAuth without cookies

is the method right
how do feel
please reply

 

[.NET Follower]

hi, localhost

hv u figured out how to use cookieless forms authentication...

please share ur experiences with us