tags:

views:

72

answers:

1
Q: 

Forms authentication service not working

I have a desktop app

I authenticate using the wcf authentication service login method, by calling the desktop application.

Everything seems to work.

I then open internet explorer and try and browse to a protected page.

I get bounced to the login.

Why? How can I authenticate using the WCF Service?

A: 

Internet Explorer and your desktop app are not the same application, so the forms authentication cookie can't be read/encrypted/decrypted by both at the same time. A method you might try is to embed a web-browser control in your desktop app (even make it invisible if you like) and perform a post login through an HttpWebRequest object (formulating post headers etc). This would instantiate a web browser and generate an auth cookie at the same time your desktop app logs in. I can't vouch for the security of it though.

Joel Etherton  2010-09-07 17:31:10
so if my desktop app has an embedded web browser then I wouldn't be able to access the page because it is considered a different application? Is there a way to make a universal cookie?
zachary  2010-09-07 17:34:04
@zachary - no, i'm suggesting that if you embed the web browser that the formsauthentication cookie will be generated from within the desktop application. It can be as you currently have it because your desktop application is not generating the cookie, it is only calling the webservice.
Joel Etherton  2010-09-07 18:26:31
I tried creating a web application and calling the web service, but it still failed to remove the forms authentication and I was bounced from the application.... it is almost as though the service isn't creating a cookie...
zachary  2010-09-07 19:00:05
@zachary - the service isn't creating a cookie. That's not its function, nor does it have the capacity to create such a cookie from within a desktop application. The embedded web browser was admittedly a shot in the dark.
Joel Etherton  2010-09-08 10:47:40
Its weird because in the msdn help it says when you call the login method of the service it creates a cookie... I don't get it
zachary  2010-09-08 13:41:59

related questions

Is it better to create Model classes, or just stick with generic database utility class?
What are effective options for embedding video in an ASP.NET web site?
Visual Studio 2008 debugger already attached work-around
Tracking state using ASP.NET AJAX / ICallbackEventHandler
ASP.NET Display SVN Revision Number
ASP.NET URL Rewriting
How can I change the background of a masterpage from the code behind of a content page?
Easy way to AJAX WebControls
How do I define custom web.config sections with potential child elements and attributes for the properties?
ASP.NET MVC "CRUD" Database Sample
Are Multiple DataContext classes ever appropriate?
How to RedirectToAction in ASP.NET MVC without losing request data
Triple Quotes? How do I delimit a databound Javascript string parameter in ASP.NET?
ASP.NET built in user profile, Vs old stile user class/tables
What's a good book for learning ASP?
Bandwith throttling in IIS 6 by IP Address
ASP .Net Custom Client-Side Validation
How to get the value of built, encoded ViewState?
Decent, simple, GIS/mapping component for ASP.NET?
Checklist for IIS 6/ASP.NET Windows Authentication?
How to write to Web.Config in Medium Trust ?
ASP.NET, Visual Studio and Subversion - how to integrate?
Floating Point Number parsing: Is there a Catch All algorithm?
How do I sync the SVN revision number with my ASP.NET web site?
ASP.NET Site Maps