更新时间:2022-06-12 10:35:09
您好,
ASP.NET具有验证用户身份的方法:
1)表单身份验证
2)Windows身份验证
Windows身份验证提供程序是ASP.NET应用程序的默认身份验证提供程序.当使用此身份验证的用户登录到应用程序时,凭据将通过IIS与Windows域匹配.
Windows身份验证方法有4种类型:
1)匿名身份验证-IIS允许任何用户
2)基本身份验证-Windows用户名和密码必须通过网络发送(以纯文本格式,因此不太安全).
3)摘要式身份验证-与基本身份验证相同,但是凭据已加密.仅适用于IE 5或更高版本
4)集成Windows身份验证-依靠Kerberos技术,具有强大的凭据加密
表单身份验证-此身份验证依赖于开发人员编写的代码,其中凭据与数据库匹配.凭据是在Web表单上输入的,并且与包含用户信息的数据库表匹配.
希望它会有用. :-)
Hi,
ASP.NET has ways to Authenticate a user:
1) Forms Authentication
2) Windows Authentication
Windows Authentication provider is the default authentication provider for ASP.NET applications. When a user using this authentication logs in to an application, the credentials are matched with the Windows domain through IIS.
There are 4 types of Windows Authentication methods:
1) Anonymous Authentication - IIS allows any user
2) Basic Authentication - A windows username and password has to be sent across the network (in plain text format, hence not very secure).
3) Digest Authentication - Same as Basic Authentication, but the credentials are encrypted. Works only on IE 5 or above
4) Integrated Windows Authentication - Relies on Kerberos technology, with strong credential encryption
Forms Authentication - This authentication relies on code written by a developer, where credentials are matched against a database. Credentials are entered on web forms, and are matched with the database table that contains the user information.
Hope it will be usefull. :-)
703,000 results on difference between form authentication and windows authentication
Enjoy