Reputation: 563
ASP.NET FormsAuthentication does not use State Server
I would like to use State Server for sessionState. This works fine for all session variables but not for authentication. What must I do to store authentication in State Server so I can use a farm of Webservers? My web.config looks like..
<system.web>
<authentication mode="Forms">
<forms loginUrl="~/Account/Login" timeout="20" slidingExpiration="true" />
</authentication>
<authorization>
<deny users="?" />
</authorization>
<sessionState mode="StateServer" stateConnectionString="tcpip=localhost:42424" cookieless="false" timeout="20" />
<machineKey validationKey="F2FCB9C6C8F045A198D4885C6E...
Upvotes: 0
Views: 302
Answers (1)
Reputation: 93444
I'm unclear about what you mean by "store authentication in State Server".
Authentication Is never stored in session variables, and it's a poor practice to do so. Authentication is stored on the users local computer in the form of an encrypted cookie (either non-persistent or persistent), and therefore is inherently immune to any webfarm issues so long as your machinekey is specified in common on all servers.
Session and FormsAuthentication are to different systems in .NET.
Upvotes: 1
Related Questions
- Why my Authentication State Provider not work?
- Unable to make the session state request to the session state server
- ASP.NET MVC issue with configuration of forms authentication section
- FormsAuthentication in ASP.NET MVC 4 doesn't work
- Problems with ASP.Net State Service
- MVC 3.0 formsauthentication authenticates in localhost server, but not on the webhost
- Sessions and auth in asp.net
- MVC3: C# Forms Authentication and Session State
- MVC 3 FormsAuthentication Not working when deployed
- FormsAuthentication problem