This is what I am trying to pull off. Before I keep wracking my brain on how to do it, I thought I'd ask the experts to see if it was even possible.
I have an application with a login page to authenticate users to use the application. Authentication is determined by session. If you have a valid username and password, a session is created and subsequent pages look for a valid session.
I want to have third parties be able to post a username and password over SSL connection to that login page and have them get validated (create a session). Right now I have it posting the data to the login page using the WebClient class and UploadString method. It posts fine. It creates the session but when the post is complete, the session is removed.
What am I missing here?
I've looked into a "CookieAwareWebClient" but wanted out third parties to have to have as little code as possible on their end and only have to post the username and password to the login page.
ASP and PHP sessions are normally identified by a cookie placed in the client browser. If that cookie is not returned with each request, the server can not know what session data belongs to the client.
We all know we need to protect and secure our privileges, but where to start? Join Experts Exchange and ManageEngine on Tuesday, April 11, 2017 10:00 AM PDT to learn how to track and secure privileged users in Active Directory.