auth_user is lying ?
trying to achieve windows authentication on the fly (without the file
configured to deny anonymous access in IIS)
i returned a 401 status if the
Request.ServerVariables("auth_user") = ""
this is OK, the 401 status Code returned with additional headers and the
browser performed windows authentication
and the next time i had auth_user correctly.
but after closing the browser and re-opening it and requesting the same page
again, i get the auth_user filled with the old value without the
authentication being done again!
how can this be?
( i use fiddler to see http comunication between client and server)
TIA.
.
Relevant Pages
- Re: Windows Authentication question
... That's still possible even if you use integrated Windows authentication. ... configured not to pass the client user credentials or because the client ... logon dialog by the browser. ...
(microsoft.public.dotnet.framework) - Re: Windows Authentication question
... That's still possible even if you use integrated Windows authentication. ... configured not to pass the client user credentials or because the client ... logon dialog by the browser. ...
(microsoft.public.dotnet.security) - Re: MOSS via Citrix?
... Usually if that happens on your desktops are connected to the network, ... you need to add your portal to the intranet zone in your browser. ... way it'll use your windows authentication to log in to the site. ... authentication for credentials when they hit the sharepoint page? ...
(microsoft.public.sharepoint.portalserver) - Different behavior for Windows Authentication with same app
... I have an asp.net app that uses windows authentication. ... In the browser if I enter: ... (machine.config, web.config or IIS)? ...
(microsoft.public.dotnet.framework.aspnet.security) - ASP.NET Security
... I'm using windows authentication. ... Once the session times out we are presented with the error page.Then ... the user suppose click in the address bar of the browser and backspace ...
(microsoft.public.dotnet.framework.aspnet.security) |
|
