ARTICLE

Single Sign on (SSO) using Cookie in ASP.Net

Posted by Ahsan Murshed in Articles | ASP.NET Programming on April 30, 2010

Tags: ASP.Net, Cookie, Cookie in ASP.Net, Single Sign on, SSO

I would like to give a brief overview of how to use cookie to implement Single Sign on(SSO) in asp.net web application.

Tweet
6989
0

Reader Level: Beginner

There are various ways to use Single Sign On (SSO) in asp.net web application. We can use cookies, session (state server), SAML and web services etc. Now we would like to give a brief overview of how to use cookie to implement Single Sign on(SSO) in asp.net web application.

Assume that we have two web application hosted on different virtual directory but under same domain. As for example, our root domain is:

http://www.cookietest.com and

Other two virtual directory hosted under this domain are

http://www.cookietest.com/cookiesite1/Login.aspx

http://www.cookietest.com/cookiesite2/Default.aspx

If we login successfully in cookiesite1 then it writes the login information in cookie and now opens another tab or a new window in same browser (IE, FF whatever you like). Place this address http://www.cookietest.com/cookiesite2/Default.aspx in address bar logged in automatically in cookiesite2. When we try to access in cookiesite2 -> Default.aspx it checks the login information from cookie. If desired value found in cookie then you logged in automatically. Remember you need to enable cookie in your browser for all of these activities.

Configuration:

1. Web.Config

Before coding we need to some configure in our web.config file. Though cookiesite1 and cookiesite2 are in different virtual directory their web.config file must contains the same machine validationKey, decryptionKey and validation.

Like this,

2. IIS

In IIS->Directory security tab add the "ASPNET Machine Account" user and set the full rights.

Coding:

Write cookie after login complete:

Place this code in cookiesite1->Login.aspx.cs

if (login_Successful)

{

//Create a new cookie, passing the name into the constructor

HttpCookie cookie = new HttpCookie("strCookieName");

//Set the cookies value

cookie.Value ="set_cookie_value";

//Set the cookie to expire in 5 minute

DateTime dtNow = DateTime.Now;

TimeSpan tsMinute = new TimeSpan(0, 0, 5, 0);

cookie.Expires = dtNow + tsMinute;

//Add the cookie

Response.Cookies.Add(cookie);

Response.Write("Cookie written. ");

}

Check cookie exist or not on page_load

Place this code in cookiesite2->Default.aspx.cs

protected void Page_Load(object sender, EventArgs e)

{

//Grab the cookie

HttpCookie cookie = Request.Cookies["strCookieName"];

//Check to make sure the cookie exists

if (cookie != null)

{

ReadCookie();

}

else

{

lblCookie.Text = "Cookie not found. ";

}

Read cookie when page load:

Add this method in cookiesite2->Default.aspx.cs

protected void ReadCookie()

{

//Get the cookie name the user entered

//Grab the cookie

HttpCookie cookie = Request.Cookies["strCookieName"];

//Check to make sure the cookie exists

if (cookie == null)

{

lblCookie.Text = "Cookie not found. ";

}

else

{

//Write the cookie value

String strCookieValue = cookie.Value.ToString();

lblCookie.Text = "The cookie contains: " + strCookieValue + "";

}

Test the application under localhost/or under your domain..

post comment

TOP LEADERS

View All

TRENDING UP

Learn MVC (Model view controller) Step by Step in 7 days – Day 3 Learn C# Corner - Home Using Border Radius and Gradients in CSS3: Part I Learn C# Corner - Footer iPhone 5 First Look Learn .NET and C# in 60 Days Lab13(Day 5): - Classes and objects Samsung Galaxy Note Review WCF - Authentication and Authorization in Enterprise Architecting How to write a good article on C# Corner How to Display Data in ListBox From SQL Database in ASP.NET

View All

Sponsored by

6 Months Free & No Setup Fees ASP.NET Hosting!

Become a Sponsor

MOST LIKED ARTICLE

Learn .NET in 60 days – Part 1 (13 Labs) Working with ProgressBar in C# Resizable TextBox in ASP.NET using AjaxControlToolKit Word Processing with an Extended Rich Text Box Control Notepad in C#

PREMIUM SPONSORS

Introducing MaxV - one click. infinite control. Hyper-V Hosting from MaximumASP.

Finally – a virtual platform that delivers next-generation Windows Server 2008 Hyper-V virtualization technology from a managed hosting partner you can truly depend on. Visit www.maximumasp.com/max for a FREE 30 day trial. Hurry offer ends soon. Climb aboard the MaxV platform and take advantage of High Availability, Intelligent Monitoring, Recurrent Backups, and Scalability – with no hassle or hidden fees. As a managed hosting partner focused solely on Microsoft technologies since 2000, MaximumASP is uniquely qualified to provide the superior support that our business is built on. Unparalleled expertise with Microsoft technologies lead to working directly with Microsoft as first to offer IIS 7 and SQL 2008 betas in a hosted environment; partnering in the Go Live Program for Hyper-V; and product co-launches built on WS 2008 with Hyper-V technology.

ASP.NET 4 Hosting

Get 2 Months Free of ASP.NET Hosting for Only $4.95/month! Receive FREE MS SQL and MySQL Databases Including ASP.NET 4/3.5, MVC 3.0, Silverlight 4, Windows 2008/IIS 7.0 Plus FREE IIS 7 Modules. Host UNLIMITED ASP.NET Web Sites - Click Here!

LATEST JOBS

Applying for job Metro Style App Developer .NET Developer WPF or Silverlight exp Boston MA ASP .Net Developers Split Testing Designer .NET Developer Web Developer Application Engineer Expert .NET Developer Application Developer

View All Jobs |Post a New Job

Single Sign on (SSO) using Cookie in ASP.Net

Related Articles