how to avoid authentication

[Konrad]

Hi

All users should authenticate to reach
some page. How to avoid this for some users.

Thanks
Konrad

[Bassel Tabbara [MSFT]]

Hello Konrad,
It depends which type of authentication you are using. If it is Windows
Authentication, you might need
to create a Windows Groups and allow that group access, and the others
require authentication.
If you are using Form Authentication, you might need to use Role
Authentication.
Role-based security in ASP.NET is similar to the role-based security that
Microsoft COM+ and
Microsoft Transaction Server (MTS) use, although there are important
differences. Role-based
security in ASP.NET is not limited to Windows accounts and groups. For
example, if Windows
authentication and impersonation is enabled, the identity of the user is a
Windows identity
(User.Identity.Name = "Domain\username"). You can check identities for
membership in specific roles and restrict access accordingly. For example:
If User.IsInRole("BUILTIN\Administrators") Then
Response.Write("You are an Admin")
Else If User.IsInRole("BUILTIN\Users") then
Response.Write("You are a User")
Else
Response.Write("Invalid user")
End if


If you are using Forms authentication, roles are not assigned to the
authenticated user; you must do this programmatically. To assign roles to
the
authenticated user, use the OnAuthenticate event of the authentication
module (which is the Forms
authentication module in this example) to create a new GenericPrincipal
object and assign it to the
User property of the HttpContext.

For more information, you might refer to the following Kb article:
306590 INFO: ASP.NET Security Overview
[url]http://support.microsoft.com/?id=306590[/url]

Thanks,
Bassel Tabbara
Microsoft, ASP.NET

This posting is provided "AS IS", with no warranties, and confers no rights.


--------------------
| From: "Konrad" <konrad007@poczta.onet.pl>
| Newsgroups: microsoft.public.dotnet.framework.aspnet
| Subject: how to avoid authentication
| Date: Wed, 25 Jun 2003 10:41:13 +0200
| Organization: tp.internet - [url]http://www.tpi.pl/[/url]
| Lines: 9
| Message-ID: <bdbn83$111$1@atlantis.news.tpi.pl>
| NNTP-Posting-Host: pj12.szczecin.sdi.tpnet.pl
| X-Trace: atlantis.news.tpi.pl 1056530500 1057 217.98.201.12 (25 Jun 2003
08:41:40 GMT)
| X-Complaints-To: [email]usenet@tpi.pl[/email]
| NNTP-Posting-Date: Wed, 25 Jun 2003 08:41:40 +0000 (UTC)
| X-Priority: 3
| X-MSMail-Priority: Normal
| X-Newsreader: Microsoft Outlook Express 6.00.3790.0
| X-MimeOLE: Produced By Microsoft MimeOLE V6.00.3790.0
| Path:
cpmsftngxa06.phx.gbl!TK2MSFTNGP08.phx.gbl!newsfeed 00.sul.t-online.de!t-onlin
e.de!news-spur1.maxwell.syr.edu!news.maxwell.syr.edu!newshos ting.com!news-xf
er2.atl.newshosting.com!newsfeed.news2me.com!newsf eed.tpinternet.pl!atlantis
..news.tpi.pl!news.tpi.pl!not-for-mail
| Xref: cpmsftngxa06.phx.gbl microsoft.public.dotnet.framework.aspnet:154667
| X-Tomcat-NG: microsoft.public.dotnet.framework.aspnet
|
| Hi
|
| All users should authenticate to reach
| some page. How to avoid this for some users.
|
| Thanks
| Konrad
|
|
|