Reputation: 22580
How is ASP.NET User filled in after Authentication?
I have an ASP.NET 4.0 Web Forms application and I want to handle authentication. I have a default page that ASP.NET gave me that contains a <asp:Login> Control. I have created a MembershipProvider and filled in the ValidateUser() method successfully.
Now, the authentication works, but ASP.NET somehow filled in the User.Identity for me without me ever getting a chance to set it with the information I would like. I am not sure how this User is getting populated or where any of the authentication outside of my ValidateUser() method is happening. Where is this happening? Thanks.
Upvotes: 1
Views: 62
Answers (1)
Reputation: 12538
It is set by a ASP.NET HttpModule, called FormsAuthenticationModule
HttpModules are like java filters, and they are executed before and after a request reaches the HttpHandler. Simple flow :
Request -> HttpModules -> HttpHandler -> HttpModules -> Client
It sets the user based on Cookie, usually named .aspxauth
Upvotes: 1
Related Questions
- How does Membership.ValidateUser method access a database?
- Custom ValidateUser() in custom .net MembershipProvider
- What is the purpose of Membership.ValidateUser()
- How does the membership authentication flow work? What are the responsibilities of each step in the process?
- C#, .Net - Implementing Forms Authentication using a custom user validation
- How does ASP.NET's Authentication module work?
- Implement custom "ValidateUser" in MembershipProvider
- Password validator for MembershipProvider?
- MembershipProvider in asp.net
- ASP.Net membership validating users created manually