Store Role in Form Authentication Cookie for SSO Authorization

By -


Introduction

This article explains about Customize Form Authentication for store role information with username in Form Authentication Cookie. Storing role in authenticated cookie help when we use SSO -Single Sign On functionality for authentication and role value used in authorize user.

Description

I am working on SSO- Single Sign On Functionality with Disconnected Architecture. SSO for Cross Domain or  Sub Domain. I have three sub domain web site which share common Authentication but hosted at different place like GoDaddy, BlueHost, Big Rocks etc. These system first request for valid authentication and then further processing is done. As all user info is store in main server other Sub Domain do not contain any information about user or role.So Any How I need Functionality for Single Sign On With Authentication as well as Authorization and Finally I  found this solution for requirement.I will guide you internal structure of Form Authentication and also customize Form Authentication Cookie for store Role or other information which is useful for SSO- Single Sign On for Authentication  as well as Authorization.


 FormsAuthenticationTicket ticket = new FormsAuthenticationTicket(2,
       username,
       DateTime.Now,//Cookie Issue Date
       DateTime.Now.AddMinutes(30),//Expire Date
       isPersistent,//Is cookie Persistent or not
       userData,//Custom data here we store current authenticated user's role
       FormsAuthentication.FormsCookiePath);

            // Encrypt the ticket.
            string encTicket = FormsAuthentication.Encrypt(ticket);

            // Create the cookie with authenticated ticket.
            Response.Cookies.Add(new HttpCookie(FormsAuthentication.FormsCookieName, encTicket));

In above code once user is  successfully authenticated with valid credential web can create FormAuthenticatationTicket by storing current user's role information. I have reference above code from MSDN . For More information you can visit this link.

How to access this role information while request in other system?


                FormsAuthenticationTicket ticket = FormsAuthentication.Decrypt(FormsAuthentication.FormsCookieName);
                String data = ticket.UserData;
                String[] roles = data.Split(',');//If you have store multiple role or data with Comma value

As from the above code, we can decrypt authenticated cookie and extract all information we have set like Username, Cookie Issue Date, Expire Date,Userdata etc. As Previously we have store role information in userdata property we can retrieve User's Role value and check whether user have valid access right or not.

Conclusion

In this article we learn store role information with username in Form Authentication Cookie by Customizing Form Authentication Ticket. So we use this custom field in SSO- Single Sign On Authentication and Authorization on Sub Domain project.

Comments

Post a Comment

Popular posts from this blog

Payumoney Integration With Asp.Net

By -
Image
Introduction. PayUMoney is fastest growing Payment Gateway in India,which support all major banks and credit/debit card for payment settlement. PayUMoney is now provide support for enterprise hence its known as PayUBiz Payment Gateway. Description I have created test demo with PayUMoney  in Asp.Net webform which explains in various step as below.  Step1 :   Before we start first we need to configure PayuMoney or PayuBiz for our website,here is below description about technical details Production server : POST URL: https://secure.payu.in/_payment . To post successfully on production server, your merchant application status should be approved and you should use the key sent to you by PayUMoney after confirming the approval of your application. Test server: POSL URL: https://test.payu.in/_payment Key – JBZaLc (This key and salt value is provided by PayuMoney team after our payumoney account is configured and approved.) Salt – GQs7yium In above image Amo
Read more

Dynamic Query in LINQ using Predicate Builder

By -
Introduction This tutorial explains how to create a dynamic query using LINQ, Using Predicate Builder  LINQ to SQL dynamic query and Query with Entity Framework is easy. This concept first implement by albahari Description Predicate Builder is powerful LINQ expression which is mainly used when too many search filter parameter is there for querying data by writing dynamic query expression. We can write a query like Dynamic SQL. To know more about predicate delegate visit Predicate Delegate How To Implement Predicate Builder In this example, I have created an instance of PredicateBuilder with PatientInfo Model and add multiple OR and AND Condition based on their value. Predicate Builder automatically creates a dynamic query with Linq and combined into one Expression. dynamic-linq-sample.cs When We have a grid which filters record based on applied filter and filter parameter is in large number decision of use Dynamic LINQ result very high performance and mi
Read more

Login using Google API with C#

By -
Image
Introduction In this article, we learn about how to login using Google OAuth 2.0 with C#(.NET) or Authenticate Google API in Dot Net. Description As we know Google OAuth 2.0 requires  ClientId and ClientSecret  before we proceeding to further step. So, first of all, we have to generate ClientId and ClientSecret from Google Developer Console by creating credential or generating a credential for Web Application or from Native Application. I hope you have google account already if not then first create one before proceeding further. Step 1:  Create Credential for OAuth App. Select credential type OAuth ClientID Step 2: Select appropriate application type from the available option, Here I have choosed "Other". Select application type Based on where we are using login with google account we can select an application type. Here I have used "other" which works for a console app, Web application hosted on localhost as well as on all doma
Read more