This forum has migrated to Microsoft Q&A. Visit Microsoft Q&A to post new questions.

Learn More

Remove From My Forums

Is Cookies generated by WebSecurity.Login immutable ?

Question
0

Sign in to vote
We are writing WCF service; which will be consumed by IPhone and Android application.

For authentication we are using

WebSecurity.Login

and was wondering, the cookie generated; is it immutable ?
- Edited by thukralz Tuesday, November 5, 2013 2:17 AM WCF spelled wrong
Tuesday, November 5, 2013 2:17 AM

All replies

0

Sign in to vote

http://stackoverflow.com/questions/17103130/how-to-use-token-generated-at-login-time-for-security-when-user-logs-in-a-php

Wednesday, November 6, 2013 6:45 AM
0

Sign in to vote

So, based on that article you are suggesting to use token in the header for every call and ditch the cookie ?

Wednesday, November 6, 2013 3:50 PM
0

Sign in to vote

could you please tell what does the following mean:

Is Cookies generated by WebSecurity.Login immutable?

I am not understand.

Friday, November 8, 2013 6:53 AM
0

Sign in to vote

I'm using WebMatrix libraries for user authentication. Looking at using same code for Web, and Mobile Apps (IPhone and Android).

If you are making concurrent API requests, it's hard to track mutable cookie.

Friday, November 8, 2013 7:45 AM
0

Sign in to vote

Hi,

We can let the cookie immutable.

This thread has answered:
http://forums.asp.net/t/1652838.aspx .

Thursday, November 28, 2013 9:57 AM
0

Sign in to vote

Sorry, I was going through the article and it talks about persistence. Maybe, I'm missing something.

Saturday, November 30, 2013 3:22 AM