Windows认证
<authorization>
<deny users="?" /> //拒绝匿名访问
</authorization>
<authorization>
<allow users="contoso/DeannaMeyer, contoso/MichaelEmanuel" /> //只允许这两个用户登陆。拒绝其他一切用户。
<deny users="*" />
</authorization>
the * character indicates all users; the ? character indicates unauthenticated users.
Form 认证
1 Set the authentication mode in Web.config to Forms.
2 Create a Web form to collect logon information.
3 Create a file or database to store user names and passwords.
4 Write code to add new users to the user file or database.
5 Write code to authenticate users against the user file or database.
<authentication mode="Forms" > <!-- Set authentication mode -->
<forms loginUrl="LogIn.aspx" > <!-- Specify a log on form -->
<credentials passwordFormat="Clear"> <!-- Create a user list -->
<user name="Jesse" password="JuneBug"/>
<user name="Linda" password="Liste"/>
<user name="Henry" password="Henry"/>
</credentials>
</forms>
</authentication>
<authorization>
<deny users="?" /> <!—Deny all unauthenticated users -->
</authorization>
if (FormsAuthentication.Authenticate(txtUserName.Text, txtPassword.Text))
{
// If found, display the application's Start page.
FormsAuthentication.RedirectFromLoginPage(txtUserName.Text, true);
}
Passport 认证
1 Install the Passport SDK. Passport is not included with Visual Studio, although the .NET Framework does include classes for working with the Passport SDK once it is installed.
2 Set the application’s authentication mode to Passport in Web.config. Set authorization to deny unauthenticated users.
3 Use the PassportAuthentication_OnAuthenticate event to access the user’s Passport profile to identify and authorize the user.
4 Implement a sign-out procedure to remove Passport cookies from the user’s machine.