|
Home > Archive > Microsoft Content Management Server > April 2006 > 2 questions about authentication
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
| Author |
2 questions about authentication
|
|
|
| hi, i have a CMS 2002 application and i have two questions about
authentication:
1.- How can i avoid the "acces denied" page (a blank page with only
those words written on the top) when the cookie expires? i have several
groups of suscribers so i can filter the content of my site, and i also
have several groups of editors, and if they are logged in and leave the
page open for a while, when they refresh they get the access denied
page, and there is no way to go back to the application other than
deleting the cookies from IE.
Id like to redirect the user to a login page, or at least be able to
customize the error page so the user knows what it happening.
2.- How can i close the user session once he closes the browser window?
thank you very much
Eli
| |
| Stefan [MSFT] 2006-04-27, 7:27 am |
| Hi Eli,
1) this would require a custom ISAPI filter as this response is returned
directly by the ISAPI filter of MCMS.
The new ISAPI filter would have to parse the response and then replace it
with your custom page.
2) the server does not see the browser. As the browser does not send a
request to the server on browser close there is no way notify the server.
Usually this is done by ensuring that the session cookies are not
persistant.
Then the browser will throw away the cookie on close and - although the
session still exists - the next browser window will use a new session.
Cheers,
Stefan
--
This posting is provided "AS IS" with no warranties, and confers no rights
New to MCMS?
Check out this book: Building Websites Using MCMS: http://tinyurl.com/6zj44
Check out the new book as well: Advanced MCMS development:
http://tinyurl.com/8ugwj
----------------------
"Eli_b" <elibravs@gmail.com> wrote in message
news:1145579387.234960.205260@j33g2000cwa.googlegroups.com...
> hi, i have a CMS 2002 application and i have two questions about
> authentication:
>
> 1.- How can i avoid the "acces denied" page (a blank page with only
> those words written on the top) when the cookie expires? i have several
> groups of suscribers so i can filter the content of my site, and i also
> have several groups of editors, and if they are logged in and leave the
> page open for a while, when they refresh they get the access denied
> page, and there is no way to go back to the application other than
> deleting the cookies from IE.
> Id like to redirect the user to a login page, or at least be able to
> customize the error page so the user knows what it happening.
>
>
> 2.- How can i close the user session once he closes the browser window?
>
> thank you very much
>
> Eli
>
| |
|
| Stefan, thank you for your response,
do you have an example of how can i change the ISAPI filter?
thank you
Eli
| |
| Stefan [MSFT] 2006-04-27, 7:27 am |
| Hi Eli,
you can't change the ISAPI filter.
You need to develop a new one that does this job.
Sorry: I don't have sample code on how to develop an ISAPI filter. That is
more an IIS topic.
You might want to post to an IIS related newsgroup.
Cheers,
Stefan
--
This posting is provided "AS IS" with no warranties, and confers no rights
New to MCMS?
Check out this book: Building Websites Using MCMS: http://tinyurl.com/6zj44
Check out the new book as well: Advanced MCMS development:
http://tinyurl.com/8ugwj
----------------------
"Eli_b" <elibravs@gmail.com> wrote in message
news:1145649385.876301.267880@i40g2000cwc.googlegroups.com...
> Stefan, thank you for your response,
>
> do you have an example of how can i change the ISAPI filter?
>
> thank you
>
> Eli
>
|
|
|
|
|