身份验证与授权
认证方式有下面几种
none
Windows 基于windows身份验证 首先判断用户的身份和组
Forms 基于Cookie的身份认证机制
Passport
<configuration>
<system.web>
<authentication mode="Forms/Windows/Passport/None"/>
<./system.web>
</configuration>
--------------------------------------------------------------------
<configuration>
<system.web>
<authentication mode="Forms">
<form name=".ASPXCOOKIEDEMO" loginUrl="login.aspx" protection="All" timeout="30" path="/">
<!--protection="All|None|Encryption|Validation"-->
</authentication>
<authorization>
<deny users="?"/>
</authorization>
</system.web>
</configuration>
==================================================
Encryption 使用des或者3层des对cookie进行加密
Validation 监视cookie保证传输中不会被监听或篡改
All同时使用Encrytion 和Validation
___________________________________________________________________
if ((UserEmail.Value == "jie@eyou.com") && (UserPass.Value == "密码")) {
FormsAuthentication.RedirectFromLoginPage(UserEmail.Value, PersistCookie.Checked);
}
else {
Msg.Text = "凭据无效:请再试一次";}
退出cookie使用----FormsAuthentication.SignOut();