Programmatically Login

sorry, i just noticed you are the same user one that i previously answered.
So i guess you dident find a way of doing this. where are you blocking?
 

look at that question , i got a B on that one, but i think it should help.
http://www.experts-exchange.com/Programming/Languages/.NET/ASP.NET/Q_24127907.html
 

Thank you for the response. I have not found away to successfully do what I want "securely".  I have been able to duplicate this using javascript, however, it is insecure because the username and password must be placed in the html.  I know there is away to make this happen, just not sure how.

I just got an idea, maybe you could wirte something that will play has the men in the middle by just forwarding all request to the intranet server and forward back the response using response.write
http://wiki.asp.net/page.aspx/285/httpwebrequest/
http://www.worldofasp.net/tut/WebRequest/Working_with_HttpWebRequest_and_HttpWebResponse_in_ASPNET_114.aspx
What do you think about this?

Thank you for the reply, the sites you have given me might work.  Below is the code that I am using.  I think I will try something different tonight based on the sites you have provided.  

Uri serverUri = new Uri(string.Format(AuthenticationUrl, scheme, host));
        
        HttpWebRequest webRequest = WebRequest.Create(serverUri) as HttpWebRequest;
 
        CookieContainer owaCookies = new CookieContainer();
 
        webRequest.CookieContainer = new CookieContainer();
        webRequest.ContentType = RequestContentType;
        webRequest.Method = RequestMethod;
        webRequest.KeepAlive = true;
        webRequest.AllowAutoRedirect = false;
 
        byte[] body = Encoding.UTF8.GetBytes(string.Format(PostData, destination, domain, userName, password));
 
        webRequest.ContentLength = body.Length;
 
        using (Stream stream = webRequest.GetRequestStream())
        {
            stream.Write(body, 0, body.Length);
        }
 
        using (HttpWebResponse webResponse = webRequest.GetResponse() as HttpWebResponse)
        {
            foreach (Cookie aCookie in webResponse.Cookies)
            {
                owaCookies.Add(new Cookie(aCookie.Name, aCookie.Value, aCookie.Path, aCookie.Domain));
                
                HttpCookie cookie = new HttpCookie(aCookie.Name);
 
                cookie.Value = aCookie.Value;
                cookie.Path = aCookie.Path;
                cookie.Domain = aCookie.Domain;
 
                Response.Cookies.Add(cookie);
            }
        }
 
        webRequest = WebRequest.Create(destination) as HttpWebRequest;
        webRequest.CookieContainer = owaCookies;
        webRequest.ContentType = RequestContentType;
        webRequest.Method = "GET";
        webRequest.KeepAlive = true;
        webRequest.AllowAutoRedirect = true;
 
        StreamReader responseStream = new StreamReader(webRequest.GetResponse().GetResponseStream());
 
        string responseData = responseStream.ReadToEnd();
        Response.Write(responseData);

Select allOpen in new window

I am almost there, I am getting the cookies back like I want, and I am getting into the correct mail box on exchange, however, each fame of the mail box shows the login form.  However, the url is pointing to the correct mailbox.  I know there is a way to make this work.  Any help would be appreciated.  

Thank you.

I think the problem is that when I change the domain of the cookie, it seems to either delete the cookie, or the browser ignores it.  

I don`t really know. I don`t know exactly what you are doing, but my intuition is that your problem is passing the cookie to the client.
My idea was not to forward the URL (and the cookie) to the client, i dont` even know if it is possible, but to forward and retrieve the request/responses to/from the intranet server. that way the client see the server though the app, like on a terminal.
 it`s also possible that approach does not even work.
I jsut read the last message and, yes i think it does not like it. I know there is a setting in IE7 to ignore 3th party cookie (under security). you should look onder page/webpage privacy policy to check if the cookie is "blocked".
I hope that will help

Thank you for the response, I am trying to emulate a single sign on function.  I cannot imagine that I am the first person that has attempted this, however, i have not seen any code samples of this being done in the past.  Basically, I have a sql server with usernames and passwords and when the user clicks, say email, I will authenticate them to the email server, and log them in.  That is the ultimate goal, however, I am not sure that it can be done now.  Again, thank you for your help.
 

I just found those 2 article that I think you will find interesting.
http://www.codeproject.com/KB/web-security/aspnetsinglesignon.aspx
http://www.codeproject.com/KB/web-security/PassThroughSecurity.aspx 

I was wondering how you are doing on the one and i noticed you opened a new question on that specific cookie problem.
http://www.experts-exchange.com/Programming/Languages/.NET/ASP.NET/Q_24173435.html
Well, i`t a good idea since i think i gave you all I have. But i added the link for anyone who will read that question later.
Good luck

I really appreciate your help on this issue, I have come to realize that what I want todo may not be possible. I need to find an alternative.  

Thank you for your advice and help.  

Thank you for your help.

Simple curiosity, and for the benefit of any further reader, how do you ended on that one?

I was not ever able to get it to work, I had to go back and have the third party services assist, they offered API's that I used.  I was never able to get it to completely work just from my end alone.  

Ok, I will keep that in mind. Thanks for sharing that,