1. 首页
  2. 问答
  3. 自动登录和退出FBA SharePoint站点

自动登录和退出FBA SharePoint站点

2009-06-26 61 views
1

我们已经有一个使用基于窗体的身份验证(FBA)的WSS 3.0站点。我们希望设置网站,以便某些用户可以自动登录,而不是登录屏幕,我不确定最佳的方式。自动登录和退出FBA SharePoint站点

实际上,基于this article,我已经创建了一个处理登录的HTTP模块。更具体地说,我创建了一个备用登录页面,当该页面被点击时,它会以所需用户身份登录。但是,在关闭浏览器后,它可以让用户登录。也就是说,我启动浏览器,进入备用登录页面,我的HTTP模块代码被触发并以所需用户身份登录,然后关闭浏览器。当我然后尝试去该网站时,网站的标准登录页面被跳过,因为我仍然以早期用户身份登录到网站。

我想我的问题归结为如何确保我注销?有没有办法做到这一点与HTTP模块/处理程序,或者我想在global.asax做些什么?

来源

2009-06-26 LunaCrescens

+0

你如何确定何时打网页,而不是标准的登录页面? – Rob 2009-06-26 14:26:09

回答

0

傻我。我的FormsAuthentication.RedirectFromLoginPage命令的cookie参数设置为True。这意味着认证cookie将会持续50年。我想要的是让浏览器关闭时Cookie停止。如果cookie参数设置为False,那么这很容易完成。这里是我的代码,如果有人感兴趣...

Imports System.Web 
Imports System.Web.Security 
Imports System.Collections.Specialized 
Imports System.Security.Principal 
Imports System.Threading 
Imports System.Web.UI 

Public Class AuthModule 
    Implements IHttpModule 

    Public Sub Dispose() Implements System.Web.IHttpModule.Dispose 
    End Sub 

    Public Sub Init(ByVal app As System.Web.HttpApplication) Implements System.Web.IHttpModule.Init 
     AddHandler app.PreRequestHandlerExecute, New EventHandler(AddressOf OnPreRequestHandlerExecute) 
    End Sub 

    Public Sub OnPreRequestHandlerExecute(ByVal sender As Object, _ 
              ByVal e As EventArgs) 

     ' Check to see if the alternate page has been accessed 
     If HttpContext.Current.Request.Url.ToString.ToUpper.EndsWith("AUTOLOGIN.ASPX") Then 
      ' Alternate page has been accessed, so log in using predetermined account 

      ' Retrieve the user name and password 
      Dim userName As String = "user" 
      Dim userPassword As String = "password" 

      ' Build the user id 
      Dim roles As String() = Nothing 
      Dim webIdentity As New GenericIdentity(userName, "Form") 
      Dim principal As New GenericPrincipal(webIdentity, roles) 

      ' Specify the user 
      HttpContext.Current.User = principal 
      Thread.CurrentPrincipal = principal 

      ' Redirect from the login page to the start page 
' Note, this is the line I initially had incorrect. That is, I had the 
' second parameter set to True, which will persist the authentication cookie. 
' Setting the second parameter to False will cause the authentication cookie 
' to go away when the browser is closed. Yeah! 
      FormsAuthentication.RedirectFromLoginPage(HttpContext.Current.User.Identity.Name.ToString, False) 
     End If 

    End Sub 

End Class

来源

2009-06-26 18:52:07 LunaCrescens

相关问题

 相关问题