Single signon (with FormsAuth) for mutliple web apps

B

Brad

I'm working on single signon for multiple web apps on a single domain. If I
authenticate in wepApp1 then I am authenticated in webApp2 however, anywhere
in the global.asax code of webApp2 the following don't seem to be
set/initialized:
Request.IsAuthenticated
User.Identity
The authentication cookie is available in webApp2's global.asax and once
a form is loaded (i.e. I'm on a pageload event) the values of
Request.IsAuthenticated and User.Identity are available.

So why would the values of user identity and IsAuthenticated not be
avaialble in the global.asax of webApp2?


Thanks


Brad
 
C

Chris Jackson

In terms of your code, both of your assemblies (one for each we application)
are completely separate. One assembly doesn't get to read from the other,
even though they are in the same App Domain. The ability to read the cookie
by both essentially serves as the cross-assembly communication mechanism
(visualize it as serving a similar function to named pipes); others are
available, but this is probably the easiest.

One solution I have implemented is to create a custom logon page that looks
for a cookie that indicates authentication. If I find a valid cookie, then I
go ahead and set up that user as authenticated and return to the page that
requested the authentication. If I don't, then I display the page as normal
and have them enter their user/pass.
 
B

Brad

I found the problem....basicaly a brain lapse on my part after being away
from hands-on coding for a few months.
I can access the authentication info just fine but I need to do it in
Application_AuthenticateRequest. Once I did that then everything works as I
expected: Identity is avaialble and IsAuthenticated is true is the user is
logged in.
Brad
 
J

Jacob Yang [MSFT]

Hi Brad,

I am glad to know that the problem is resolved.

Thank you very much for sharing your solution. It is helpful to everybody
here.

Best regards,

Jacob Yang
Microsoft Online Partner Support
Get Secure! ¨C www.microsoft.com/security
This posting is provided "as is" with no warranties and confers no rights.
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Single external signon with Integrated Auth apps and regular webs 1
login twice on the same web-app on one machine ? 0
Web Single Sign On 4
single web app for both external users and domain users 1
How to increase MaxWorkerThreads for a single web app? 0
Single sign on across domain 3
Single Service Layer across multiple web apps 0
Login mechanism for web apps 3

Members online

No members online now.
Total: 30 (members: 0, guests: 30)
Robots: 221

Forum statistics

Threads
473,763
Messages
2,569,562
Members
45,039
Latest member
CasimiraVa

Latest Threads

Top