- STAFF PICKS
- GIFTS + GIFT CARDS
- SELL BOOKS
- FIND A STORE
This item may be
Check for Availability
Other titles in the Wrox Professional Guides series:
Professional ASP.Net 2.0 Security, Membership, and Role Management
Synopses & Reviews
Experienced developers who are looking to create reliably secure sites with ASP.NET 2.0 will find that Professional ASP.NET 2.0 Security, Membership, and Role Management covers a broad range of security features including developing in partial trust, forms authentication, and securing configuration. The book offers detailed information on every major area of ASP.NET security you’ll encounter when developing Web applications.
You’ll see how ASP.NET 2.0 version contains many new built-in security functions compared to ASP.NET 1.x such as Membership and Role Manager, and you’ll learn how you can extend or modify various features. The book begins with two chapters that walk you through the processing ASP.NET 2.0 performs during a web request and the security processing for each request, followed by a detailed explanation of ASP.NET Trust Levels.
With this understanding of security in place, you can then begin working through the following chapters on configuring system security, forms authentication, and integrating ASP.NET security with classic ASP including integrating Membership and Role Manager with classic ASP. The chapter on session state looks at the limitations of cookieless session identifiers, methods for heading off session denial of service attacks, and how session state is affected by trust level. After the chapter explaining the provider model architecture in ASP.NET 2.0 and how it is useful for writing custom security providers you go to the MembershipProvider class and configuring the two default providers in the Membership feature, SqlMembershipProvider and ActiveDirectoryMembershipProvider. You'll see how to use RoleManager to make it easy to associate users with roles and perform checks declaratively and in code and wrap up working with three providers for RoleProvider – WindowsTokenRoleProvider, SqlRoleProvider, and AuthorizationStoreRoleProvider (to work with Authorization Manager or AzMan).
This book is also available as part of the 5-book ASP.NET 2.0 Wrox Box (
Now in its second version, ASP.NET has over one million programmers, and they all need to know how to use the new, tighter security model Helps programmers build better sites, control user access, and interface securely with other parts of the Microsoft platform, such as Windows Server, Active Directory, LDAP, and SQL Server 2005 Explains in depth all the security and user management functionality of ASP.NET 2.0, including many new built-in security functions that free the developer from hand-coding
ASP.Net security covers a broad range of subjects. Concepts such as Web security features, developing in partial trust, forms authentication, and securing configuration - just to name a few p are all integral components to helping developers ensure reliable security. Addressing the ASP.NET security features from the developer's point of view, this book offers detailed information on very major area of ASP.NET security that you'll encounter when developing Web applications.
You'll see how the 2.0 version contains many new built-in security functions, such as Membership and Role Manager, and you'll learn how you can extend or modify various features. As you work through this book, you'll gain a solid understanding of the many security features in ASP.NET 2.0.
What you will learn from this book
Who this book is for
This book is for experienced developers who are looking to master the new security features of ASP.NET 2.0, as well as more advanced techniques for extending ASP.NET 2.0 security.
Wrox Professional guides are planned and written by working programmers to meet the?? real-world needs of programmers, developers, and IT professionals. Focused and relevant, they address the issues technology professionals face every day. They provide examples, practical solutions, and expert education in new technologies, all designed to help programmers do a better job.
About the Author
Stefan Schackow is a Program Manager on the Web Platform and Tools Team at Microsoft working on the new application services stack in Visual Studio 2005. He owns the Membership, Role Manager, Profile, Personalization and Site Navigation features in ASP.NET 2.0. He also works on features for Microsoft's ASP.NET hosting solution. He is a frequent speaker at Microsoft developer conferences. Prior to joining the ASP.NET team Stefan worked as an application development consultant in Microsoft Consulting Services (MCS) with enterprise customers for four years.
Table of Contents
Chapter 1: Initial Phases of a Web Request.
Chapter 2: Security Processing for Each Request.
Chapter 3: A Matter of Trust.
Chapter 4: Configuration System Security.
Chapter 5: Forms Authentication.
Chapter 6: Integrating ASP.NET Security with Classic ASP.
Chapter 7: Session State.
Chapter 8: Security for Pages and Compilation.
Chapter 9: The Provider Model.
Chapter 10: Membership.
Chapter 11: SqlMembershipProvider.
Chapter 12: ActiveDirectoryMembershipProvider.
Chapter 13: Role Manager.
Chapter 14: SqlRoleProvider.
Chapter 15: AuthorizationStoreRoleProvider.
What Our Readers Are Saying
Computers and Internet » Internet » General