Configuring a Web Application for Security

The sample web application that was illustrated in the previous section has one important limitation: It can be accessed by anonymous users that can access important data. If your application just presents information, in most cases anonymous access is a good idea. But if instead your application has the purpose of managing data or restricted information, you want to force users to login with their own credentials, such as username and password. ASP.NET provides a convenient and easy way for configuring web applications to require login credentials (by storing user information inside a SQL Server database) but also roles and registration; another interesting new feature is that in the past you had ...

Get Visual Basic® 2010 Unleashed now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.