Modifying the forms authentication behavior


You can modify the behavior of the forms-based authentication by defining that behavior within a forms section in the web.config file.

See how it happens:

forms authentication

forms authentication

I specifically want to point out this part :

cookieless: Specifies how the cookies are handled by ASP.NET. The possible values include UseDeviceProfile, UseCookies, AutoDetect, and UseUri. The default value is UseDevice-Profile. This value detects whether to use cookies based on the user agent of the device.
UseCookies requires that all requests have the credentials stored in a cookie. AutoDetect auto-determines whether the details are stored in a cookie on the client or within the URI (this is done by sending a test cookie first). Finally, UseUri forces ASP.NET to store the details within the URI on all instances.


Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )


Connecting to %s