• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 590
  • Last Modified:

Partial Success with Forms Authentication Single Sign On

I have the second web app not calling up the Login.aspx page when the first web app is signed on properly, so that's progress.  (Please see attached code for web.config)

The problem I have is that when I close the first application, I need the cookie deleted so refresh calls up the login screen on the second application.  Also, the cookie nener goes away and the second web app can be started and restarted without a login.

I know the lont timeout is a factor, but I do not want to wait even one minute (the minimum) before blocking access from the second site.  Once he first site is closed I want access blocked immediately from the second site.

Any ideas?

newbieweb


<forms cookieless="UseCookies"
             loginUrl="~/Account/LogOn" 
             name=".ASPXFORMSAUTH" 
             protection="All" 
             defaultUrl="~/" 
             slidingExpiration="true" 
             timeout="50000" />

    </authentication>
    <machineKey
          validationKey="C50B3C89CB21F4F1422FF158A5B42D0E8DB8CB5CDA1742572A487D9401E3400267682B202B746511891C1BAF47F8D25C07F6C39A104696DB51F17C529AD3CABE"
          decryptionKey="8A9BE8FD67AF6979E7D20198CFEA50DD3D3799C77AF2B72F"
          validation="SHA1" />

Open in new window

0
newbieweb
Asked:
newbieweb
1 Solution
 
newbiewebAuthor Commented:
Thanks.
0

Featured Post

Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now