Security Planning
Because most Web-based applications need to restrict access to certain parts of their sites, it's important when developing Internet applications to set aside time during initial planning to consider how security measures will be implemented. Chapter 20, “Securing the Site,” will more fully cover security, but it's appropriate at this point to discuss some of the decisions made regarding security while designing MyGolfGear.NET.
Because we developed MyGolfGear.NET using ASP.NET, we needed to plan for three basic functions. Authentication, authorization, and impersonation are provided for in ASP.NET by the .NET Framework and IIS 5.0. Authentication means confirming whether a user truly is who she claims to be; authorization means ...
Get Building e-Commerce Sites with the .NET Framework now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
