Re: Use owa cookie for authentication

Tech-Archive recommends: Repair Windows Errors & Optimize Windows Performance

From: Mathias Erlandsson (MathiasErlandsson_at_discussions.microsoft.com)
Date: 01/18/05

• Next message: Lee Derbyshire [MVP]: "Re: Use owa cookie for authentication"
• Previous message: Lee Derbyshire [MVP]: "Re: Use owa cookie for authentication"
• In reply to: Lee Derbyshire [MVP]: "Re: Use owa cookie for authentication"
• Next in thread: Lee Derbyshire [MVP]: "Re: Use owa cookie for authentication"
• Reply: Lee Derbyshire [MVP]: "Re: Use owa cookie for authentication"
• Messages sorted by: [ date ] [ thread ]

---

Date: Tue, 18 Jan 2005 05:05:05 -0800

Thanks for your patience!

No, they are empty.

What I need is a signle sign on solution with forms based owa as the portal,
If I could use the cookies owa generates.

It seems that it is a Base64 hash stored in the cadata cookie. Perhaps I can
use this to authenticate my application?

/Mathias

"Lee Derbyshire [MVP]" wrote:

> "Mathias Erlandsson" <MathiasErlandsson@discussions.microsoft.com> wrote in
> message news:50082452-62EE-43BA-8469-91CB249DE5AE@microsoft.com...
> > Yes, but the username and password are entered in owa:s logon-page. I have
> > no
> > access to these values from my application since it is called after the
> > user
> > has logged on. So I either need to decrypt the cookie to get the username
> > and
> > password or use this cokkie somehow to authenticate the user in my
> > application.
> >
> > I am not calling owaauth.dll from my application since I don't want the to
> > have to login twice.
>
> I don't think the un and pw are returned in the cookies. Are the
> ServerVariables AUTH_USER and AUTH_PASSWORD available to you?
>
>
>

---

• Next message: Lee Derbyshire [MVP]: "Re: Use owa cookie for authentication"
• Previous message: Lee Derbyshire [MVP]: "Re: Use owa cookie for authentication"
• In reply to: Lee Derbyshire [MVP]: "Re: Use owa cookie for authentication"
• Next in thread: Lee Derbyshire [MVP]: "Re: Use owa cookie for authentication"
• Reply: Lee Derbyshire [MVP]: "Re: Use owa cookie for authentication"
• Messages sorted by: [ date ] [ thread ]

---

Relevant Pages Re: Use owa cookie for authentication ... The user loggs into owa as usual and gets his mailbox. ... How can I use a cookie to authenticate my application? ... >> I have managed to get theese cookies, but I'm not sure on how to use them. ... > component, and then add the sessionid and cadata request headers (no, you ... (microsoft.public.exchange.development) Re: [PHP] Session Authentication ... On 4/9/07, Peter Lauri wrote: ... >>> I know they are encrypted, but trust me, cookies can be edited. ... but i guess you're not only storing if the user has ... > And if that's not the case, then you could authenticate by creating a ... (php.general) Re: Using Cookies ... You will need to use more than cookies. ... authenticate themselves, so that you can identify them uniquely. ... > I have an asp.net application (Survey form). ... I kinda have an idea that I'll ... (microsoft.public.dotnet.general) Re: Access Database Using Python ... >K> I can't figure out how to authenticate and then load a page, ... >K> page requires cookies for authentication. ... Piet van Oostrum ... Private email: piet@xxxxxxxxxxxxxx ... (comp.lang.python) Re: Cookies- Why do I need to enable cookies to log into a website? ... Because http is stateless, the site uses a cookie to authenticate your ... session. ... You don't allow cookies, you can't get in. ... (microsoft.public.security)

---

• Windows
• Science
• Usenet

• Archive
• About
• Privacy
• Search
• Imprint

www.tech-archive.net  > Archive  > Exchange  > microsoft.public.exchange.development  > 2005-01