HELP - Forms Auth Cookie persists after closing browser...

Mike, I don't know what's causing it to behaive this way... I'm running out of options! This is my code:

if (_IsAuthenticated)
{
FormsAuthenticationTicket _ticket = new FormsAuthenticationTicket(1,
this.userHandletbx.Text + "_" + DateTime.Now.ToString(),
DateTime.Now,
DateTime.Now.AddMinutes(30),
false, // Value of IsPersistent property
String.Empty,
FormsAuthentication.FormsCookiePath);

  string \_encryptedTicket = FormsAuthentication.Encrypt(\_ticket);

  HttpCookie \_authCookie = new HttpCookie(
                FormsAuthentication.FormsCookieName,
                \_encryptedTicket);

  \_authCookie.Secure = false;

  Response.Cookies.Add(\_authCookie);

  FormsAuthentication.RedirectFromLoginPage(this.userHandletbx.Text, true);

}

And this is my web.config:

<authentication mode="Forms">
<forms loginUrl="Login.aspx"
name=".ASPXFORMSAUTH"
protection="All"
path="/"
timeout="40"
defaultUrl="Home.aspx"
enableCrossAppRedirects="false"
slidingExpiration="true">

</forms>

</authentication>

...and no matter where I stick

FormsAuthentication.SignOut()

it doesn't kill that darn cookie! Am I missing something? Is this a blonde moment I'm having? ;P Thanks for your help, by the way.

Green Grape

Hi Guys, I need your help :-) I have forms authentication setup on an asp.net portal. Even though I have the auth ticket to "NOT" persist, it does so after closing the browser... I have tried all the tricks with FormsAuthentication.SignOut() but still no cure. Is there a way I could get rid of the forms auth cookie when the client browser is closed?? Many thanks in advance :-)

Green Grape

Thanks Mika- I will give it a try :-) Hopefully it will work!

Green Grape

Hi Guys, I have this weird problem... I installed SQL Server 2008 Enterprise on a Windows 2008 (x64) virtual server the other day. The installation wizard did his thing and everything went well, except that when all was done, I realized Management Studio was not there!! I looked in all related directories, checked the installed components, but that darn Management Studio was not installed! Does anyone know how I can get that installed seperately? Has anyone encountered that problem? Thanks :-)

Green Grape

Hi Guys Does anyone know of a good (easy to use) free utility I could use to generate PKCS#10 certificate requests? I hate using what IIS has to offer... and the trial version of Crypto4 is not sufficient. Any help is much appreciated. Thanks!!!

Green Grape

Problem was fixed by 3 wonderful gentlemen!! Apparently the temp files were accumulating since Nov 07. :-D

Green Grape

I have recently inherited a few applications within a web portal [long story] and all the associated projects are set up for automated build with NAnt. NAnt recently decided to stop building, and no matter what we do we can't get it fixed. Though I'm strictly a developer (and we do have a config manager on board), the task of fiding a fix has fallen on me, and I was hoping someone could give an insight or maybe lend me a third eye... First off, all the builds (for multiple portals) are failing, and only one of the builds shows explanation for failure that reads something like this: d:\build\BuildSomeProject\NAnt\base.build(112,6): External Program Failed: m:\Build\DependencyGrapher\DependencyTracker.exe (return code was -532459699) I know the return code -532459699 refers to a COM+ error, but beyond that I can't figure out this problem. Can anyone help? Maybe direct me to a site that talks about this type issues? :confused: Thank you so much!! :-)

Green Grape

Hello Guys, I need your help desprately! I have this DetailsView that has a DropDownList (as templated field). The DropDownList raises a postback event (onSelectedIndexChanged) and its handler performs a conditional operation that changes the HeaderText in one of the DetailView's fields. I wrote the code, nothing special, then when I tested it worked only half the time! Sometimes the postback ocures but nothing changes on the DetailsView and the new value of the DropDownList does not show up. Can someone explain to me why this is happening?? Thank you :-)

Grapes

Thanks alot George!!

Grapes

Hi Guys, I am not that good with xPath, so please don't laugh at my question :-) Trying to query an XmlNode to find a given element's parent's attribute... For example: Mike Rose Basically, I'm trying to find the name of "Mike's" parent (Mom). If you can help me out, thank you so much... thousand kisses to you! Grapes

Yes it is. You should be able to incorporate that within your DirectoryEntry object: DirectoryEntry entry = new DirectoryEntry("LDAP://yourdomain.com", _userNameParam,_passwordParam,authenticationType); ... Then proceed with the rest of your code, if the DirectorySearcher is able to return any result(s) then you have authenticated, if not, then the "password" must have had been incorrect.

Nila

You want to 'retrieve' the password, or simply authenticate a user? Most directories have hash/encryption methods put in place to prevent the interrogating agents from physically gaining access to information such as password.

Nila

It may sound silly, but try preceding your file path string with the @ symbol... ascii should work too.

Nila

Thanks a bunch Mark!! I really like your signature, btw - it's so witty :-)

Nila

Silly me, I must have confused the session with cache :-O During the most severe case, at most I will have 400 people using it, and I have only one virtualized server (that's another 'uhhh' story) to dish out this app. Now when Im done with a variable that is stored in session, if I set its value to null will the space be conserved, or do I pretty much have to abandon/timeout session all together?

Nila

uhh... i H-A-T-E viewstate but it's just too convenient. Do you think it's a good idea to store the between-postback data in session instead? If so, would you suggest storing it on client or server?

Nila

Hello friends, I don't know why I have memory leak (on client browser, not the server) at each postback, even on pages that don't use any javascripts or 3rd party RAD controls (which often use leaky javascript!). Does anyone know why this happens?

Nila

Have you generated the proper key for your stage/production server? Can you post your script so we all can take a look at it? ;P

Nila

You can set your gridview's width to 100% then put it inside a Panel control. Panel can be set to be scrollable...

Nila

It's not about making myself comfortable; Im just trying to remedy this and move on- there is lots of pressure when you develop for an emergency operations type group. And I agree with you on finding out exactly WHY sometimes things behave the way they do :-) But now is not the time for that, maybe later. Let me do a couple of things, and then I will send you the code. Thanks again!

Nila