O'Reilly logo

The ASP.NET 2.0 Anthology by Phil Haack, Jon Galloway, Wyatt Barnett, Jeff Atwood, Scott Allen

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Chapter 7 Membership and Access Control

Any site that provides a level of customization or interaction will need to be able to authenticate and authorize its users. Authentication is the act of determining the identity of a user, while authorization is the determination of whether a user is permitted to perform a certain action or not.

One type of site that implements authentication and authorization is a blog (or web log). Typically, any users have permission to read the content posted to a blog without having to identify themselves. However, the blog won’t allow just anyone to create a new post on the site. A user must first log in (authentication) and have the correct permissions (authorization) before he or she can create a new post. ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required