Windows Authentication Logout

S

Stuart Shay

Hello All:



I am using Windows Authentication in my VB/ASP.NET Intranet Web Application.



How do I create a method that will release the authentication Token, so the
user will no longer have access to any of the resources on the site?



Thanks

Stuart
 
D

Dale

I don't think you can disable the "Token" on the fly. To dynamically
control access, store those who are allowed in a table and those who are not
allowed in another table - or separate views of the same table - or an
array or arraylist and use something like this:


foreach(string user in BannedUsers)
{
if (user == User.Identity.Name)
{
throw new Exception ("You are not authorized");
}
}

You could do a PrincipalPermission.Demand() on the user against a list of
users, but I don't think it buys you much in this case. The concept there
is you create a PermissionPrincipal:

bool allowed = false;
foreach(string user in AllowedUsers)
{
try
{
PrincipalPermission pp = new PrincipalPermission(null, user);
pp.Demand();
allowed = true;
}
catch(Exception ex)
{
}
}

if (!allowed)
throw new Exception ("You're not allowed here!");

Hope this helps

Dale

If the
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Windows Authentication Logout 1
What language should I learn to create an authentication website? 2
IIS settings & windows authentication 2
ASP.NET Integrated Windows Authentication 2
asp.net windows authentication 3
Prob: Connecting to MSSQL using windows authentication 7
Windows Authentication 4
Custom Authentication 1

Members online

No members online now.
Total: 34 (members: 1, guests: 33)
Robots: 302

Forum statistics

Threads
473,755
Messages
2,569,536
Members
45,007
Latest member
obedient dusk

Latest Threads

Top