Thread: How to Implementing Role Based Security in ASP.NET
View Single Post
  #6 (permalink)  
Old 03-31-2008, 10:34 PM
amansundar amansundar is offline
D-Web Analyst
  
Join Date: May 2007
Posts: 324
amansundar is on a distinguished road
Red face Re: How to Implementing Role Based Security in ASP.NET
When to authorize a user?

Note that you should authorize a user only after authenticating. The Request.IsAuthenticated property tells you whether the user is authenticated or not. You should check this in Application_AuthenticateRequest event handler in Global.asax. This event is fired for each request at the time of authenticating the user. If the user is already authenticated by windows or forms authentications then you follow above steps .
__________________
cheers
Aman
Reply With Quote