Persistent Authentication Ticket Problem

Discussion in 'ASP .Net Security' started by Sivaram Manda, Nov 19, 2003.

  1. I am using Forms Authentication in my application. Once
    the user is authenticated, I create an authentication
    ticket with the database login information, encrypt it and
    create a cookie with the same expiration as the ticket.
    While creating the ticket, regardless of whether I set the
    persistence to true or false, a cookie is being created in
    my "documents and settings"\cookies folder.
    As a result, even though persistence is false, if i close
    my browser and re-open it within the expiration time, I
    can retrieve the database login info. from the cookie.
    Am I missing something? Please help!
    Sivaram Manda, Nov 19, 2003
    #1
    1. Advertising

Want to reply to this thread or ask your own question?

It takes just 2 minutes to sign up (and it's free!). Just click the sign up button to choose a username and then you can ask your own questions on the forum.
Similar Threads
  1. e
    Replies:
    1
    Views:
    3,559
    John Saunders
    Oct 24, 2003
  2. gk
    Replies:
    7
    Views:
    955
    Tom Anderson
    Oct 12, 2010
  3. Lauchlan M
    Replies:
    0
    Views:
    217
    Lauchlan M
    Oct 1, 2003
  4. tparks69

    forms authentication ticket expiration problem

    tparks69, Feb 17, 2005, in forum: ASP .Net Security
    Replies:
    2
    Views:
    215
    tparks69
    Feb 17, 2005
  5. jfer
    Replies:
    3
    Views:
    545
    Dominick Baier [DevelopMentor]
    Sep 16, 2005
Loading...

Share This Page