Remove From My Forums

How much form authetication is secured

Question
0

Sign in to vote

User88744855 posted

i like to know what kind of data is stored in auth cookie as encrypted data in client pc?

user and password both stored in auth cookie or only user name ?

in case of cookie less form authentication how everything works ?

please read this url write up for CSRF attack and form authentication http://www.asp.net/signalr/overview/security/introduction-to-security#csrf

what would be best approach to protect CSRF attack when using form auth persistent cookie?

looking for good insight. thanks

Thursday, February 5, 2015 6:35 AM

Answers

0

Sign in to vote
User-734925760 posted

Hi,

So far as I know, we will contain a user table where we will store username and password, and some other information.

For more information, please refer to the link below:

http://www.asp.net/web-forms/overview/older-versions-security/introduction/forms-authentication-configuration-and-advanced-topics-cs

http://stackoverflow.com/questions/4935321/formsauthentication-is-it-secure

Hope it's useful for you.

Best Regards,

Michelle Ge
- Marked as answer by Anonymous Thursday, October 7, 2021 12:00 AM
Monday, February 9, 2015 2:28 AM