本文发表在 rolia.net 枫下论坛> Credentials can be used for both Windows authentication (what you called company domains) and Forms authentication
From my understanding, there are mainly two ways to secure web content:
HTTP level and application level.
HTTP level security is impelemented directly in http protocol, you can get permission from any entry of a web site. standard HTTP only support two authentication: BASIC and another one ( digest? never saw it used ). Microsoft added its own NTLM authentication. .Net Windows authentication is using NTLM authentication. since NTLM is not standard HTTP and not all the browser support it, few people will use it in internet application. from my point of view, it's same as BASIC , you see a popup window asking username and password.
Application level security will have a single login enery for whole site, once login server remember client's login information by cookie or url parameter. .Net Form authentication is using application level security. Most other language web server ( php, perl, java? ) use application level security.
I thought .Net Credentials is only for Http level application ( I believe it also work for BASIC authentication), but from what you say, it also work for .Net Form authentication ? But one thing for sure, it won't work for other language web server.更多精彩文章及讨论,请光临枫下论坛 rolia.net
From my understanding, there are mainly two ways to secure web content:
HTTP level and application level.
HTTP level security is impelemented directly in http protocol, you can get permission from any entry of a web site. standard HTTP only support two authentication: BASIC and another one ( digest? never saw it used ). Microsoft added its own NTLM authentication. .Net Windows authentication is using NTLM authentication. since NTLM is not standard HTTP and not all the browser support it, few people will use it in internet application. from my point of view, it's same as BASIC , you see a popup window asking username and password.
Application level security will have a single login enery for whole site, once login server remember client's login information by cookie or url parameter. .Net Form authentication is using application level security. Most other language web server ( php, perl, java? ) use application level security.
I thought .Net Credentials is only for Http level application ( I believe it also work for BASIC authentication), but from what you say, it also work for .Net Form authentication ? But one thing for sure, it won't work for other language web server.更多精彩文章及讨论,请光临枫下论坛 rolia.net