| Michael Vidrevich 2005-02-13, 7:47 am |
| Hi, dear All.
I have a couple of virtual directories with different security settings
(authentication methods): "Anonymous access" (directory A) and "Integrated
Windows authentication" (directory B).
HTML page B\1.htm contains code that opens new window and executes
replacement to form page (A\2.htm). Form data should be sent to A\3.dll?<any
parameters>.
My problem is following: the HTTP-request sent from form page already
contains security tag for NTLM authorization scheme, cached from previous
interaction with server, and it does not contains any form data.
In this case IIS passes request to ISAPI extension and send "100 Continue"
to browser. My ISAPI extension DLL processes this request and send fails
with error. I can't continue receiving because I don't know what is really
request length (Context-Length tag is zero, so "total bytes" and "available"
are zero too).
I can't use ClearAuthenticationCache function (it can solve the problem)
because parent window continue working in the "security" zone.
Could somebody help me with this trouble? What may cause this strange
behavior of IIS/browser? Can somebody explain me what happens when browser
changes authentication method? How I can solve this problem?
Thanks in advance,
Michael
|