Posted by : Rhyf Ahmad Wednesday, May 20, 2015

Not every page that you build with ASP.NET is meant to be open and accessible to everyone on the  Internet. Sometimes, you want to build pages or sections of an application that are accessible to only a select group of your choosing. For this reason, you need the security measures explained in this chapter. They can help protect the data behind your applications and the applications themselves from fraudulent use. Security is a very wide - reaching term.

During every step of the application - building process, you must, without a doubt, be aware of how mischievous end users might attempt to bypass your lockout measures. You must take steps to ensure that no one can take over the application or gain access to its resources. Whether it involves working with basic server controls or accessing databases, you should be thinking through the level of security you want to employ to protect yourself.
How security is applied to your applications is truly a measured process. For instance, a single ASP.NET page on the Internet, open to public access, has different security requirements than does an ASP.NET application that is available only to selected individuals because it deals with confidential information such as credit card numbers or medical information. The first step is to apply the appropriate level of security for the task at hand. Because you can take so many different actions to protect your applications and the resources, you have to decide for yourself which of these measures to employ.
This chapter looks at some of the possibilities for protecting your applications. Notice that security is discussed throughout this book. In addition, a couple chapters focus on specific security frameworks provided by ASP.NET that are not discussed in this chapter. Chapters 14 and 15 discuss ASP.NET ’ s membership and role management frameworks, as well as the personalization features in this version. These topics are aspects of security that can make building safe applications even easier for you. Although these security frameworks are provided with this latest release of ASP.NET, you can still build your own measures as you did in the previous versions of ASP.NET. This chapter discusses how to do so.


Contents:

Applying Authentication Measures
  1. The <authentication> Node
  2. Windows-Based Authentication
  3. Forms-Based Authentication
  4. Passport Authentication

Authenticating Specific Files and Folders
Programmatic Authorization
  1. Working with User.Identity
  2. Working with User.IsInRole()
  3. Pulling More Information with WindowsIdentity

Identity and Impersonation
Securing Through IIS
  1. IP Address and Domain Name Restrictions
  2. Working with File Extensions
  3. Using the ASP.NET MMC Snap-In
  4. Using the IIS 7.0 Manager




Ebook Preview
Get the ebook now (820 kB)

If the link above doesn't work, try the link below


Mirror: Get the ebook now (820 kB)

Leave a Reply

You can leave a comment to request any article(s), software(s), ebook(s) or report the dead link.
Then I will reply as soon as I can :)

Subscribe to Posts | Subscribe to Comments

Welcome to My Blog

Recent Post

Recent Posts Widget
Instagram

- Copyright © Madriva -Robotic Notes- Powered by Blogger - Designed by Johanes Djogan -