Vous voulez voir cette page en français ? Cliquez ici.

Sign in to turn on 1-Click ordering.
More Buying Choices
Have one to sell? Sell yours here
Tell the Publisher!
I'd like to read this book on Kindle

Don't have a Kindle? Get your Kindle here, or download a FREE Kindle Reading App.

Professional ASP.NET 2.0 Security, Membership, and Role Management [Paperback]

Stefan Schackow

List Price: CDN$ 47.99
Price: CDN$ 30.23 & FREE Shipping. Details
You Save: CDN$ 17.76 (37%)
o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o
Usually ships within 1 to 4 months.
Ships from and sold by Amazon.ca. Gift-wrap available.
Save Up to 50% on "For Dummies" Books
Lighthearted but not lightweight, For Dummies books are great references not only for tackling new subjects but also for brushing up on subjects with which you're already familiar. Get results while saving up to 50%. See more.
Join Amazon Student in Canada

Book Description

Jan. 31 2006 Wrox Professional Guides
Experienced developers who are looking to create reliably secure sites with ASP.NET 2.0 will find that Professional ASP.NET 2.0 Security, Membership, and Role Management covers a broad range of security features including developing in partial trust, forms authentication, and securing configuration. The book offers detailed information on every major area of ASP.NET security you’ll encounter when developing Web applications.

You’ll see how ASP.NET 2.0 version contains many new built-in security functions compared to ASP.NET 1.x such as Membership and Role Manager, and you’ll learn how you can extend or modify various features. The book begins with two chapters that walk you through the processing ASP.NET 2.0 performs during a web request and the security processing for each request, followed by a detailed explanation of ASP.NET Trust Levels.

With this understanding of security in place, you can then begin working through the following chapters on configuring system security, forms authentication, and integrating ASP.NET security with classic ASP including integrating Membership and Role Manager with classic ASP. The chapter on session state looks at the limitations of cookieless session identifiers, methods for heading off session denial of service attacks, and how session state is affected by trust level. After the chapter explaining the provider model architecture in ASP.NET 2.0 and how it is useful for writing custom security providers you go to the MembershipProvider class and configuring the two default providers in the Membership feature, SqlMembershipProvider and ActiveDirectoryMembershipProvider. You'll see how to use RoleManager to make it easy to associate users with roles and perform checks declaratively and in code and wrap up working with three providers for RoleProvider – WindowsTokenRoleProvider, SqlRoleProvider, and AuthorizationStoreRoleProvider (to work with Authorization Manager or AzMan).

This book is also available as part of the 5-book ASP.NET 2.0 Wrox Box (ISBN: 0-470-11757-5). This 5-book set includes:

  • Professional ASP.NET 2.0 Special Edition (ISBN: 0-470-04178-1)
  • ASP.NET 2.0 Website Programming: Problem - Design - Solution (ISBN: 0764584642 )
  • Professional ASP.NET 2.0 Security, Membership, and Role Management (ISBN: 0764596985)
  • Professional ASP.NET 2.0 Server Control and Component Development (ISBN: 0471793507)
  • ASP.NET 2.0 MVP Hacks and Tips (ISBN: 0764597663)
  • CD-ROM with more than 1000 pages of bonus chapters from 15 other .NET 2.0 and SQL Server(TM) 2005 Wrox books
  • DVD with 180-day trial version of Microsoft(r) Visual Studio(r) 2005 Professional Edition

Customers Who Bought This Item Also Bought

Product Details

Product Description

From the Back Cover

ASP.Net security covers a broad range of subjects. Concepts such as Web security features, developing in partial trust, forms authentication, and securing configuration - just to name a few p are all integral components to helping developers ensure reliable security. Addressing the ASP.NET security features from the developer's point of view, this book offers detailed information on very major area of ASP.NET security that you'll encounter when developing Web applications.

You'll see how the 2.0 version contains many new built-in security functions, such as Membership and Role Manager, and you'll learn how you can extend or modify various features. As you work through this book, you'll gain a solid understanding of the many security features in ASP.NET 2.0.

What you will learn from this book

  • The security??professing that is performed for each HTTP request
  • What ASP.NET trust levels are and how they work to provide secure environments
  • The new options for locking down and protecting configuration sections
  • New security features for forms authentication and session state
  • Ways to write your own custom provider-based features
  • How to extend Membership with password histories and custom password encryption
  • How to use Active Directory with the new Membership and Role Manager features

Who this book is for

This book is for experienced developers who are looking to master the new security features of ASP.NET 2.0, as well as more advanced techniques for extending ASP.NET 2.0 security.

Wrox Professional guides are planned and written by working programmers to meet the?? real-world needs of programmers, developers, and IT professionals. Focused and relevant, they address the issues technology professionals face every day. They provide examples, practical solutions, and expert education in new technologies, all designed to help programmers do a better job.

About the Author

Stefan Schackow is a Program Manager on the Web Platform and Tools Team at Microsoft working on the new application services stack in Visual Studio 2005. He owns the Membership, Role Manager, Profile, Personalization and Site Navigation features in ASP.NET 2.0. He also works on features for Microsoft's ASP.NET hosting solution. He is a frequent speaker at Microsoft developer conferences. Prior to joining the ASP.NET team Stefan worked as an application development consultant in Microsoft Consulting Services (MCS) with enterprise customers for four years.

Inside This Book (Learn More)
First Sentence
Before the first line of code you write for an . aspx page executes, both Internet Information Services (IIS) and ASP.NET have performed a fair amount of logic to establish the execution context for a HyperText Transfer Protocol (HTTP) request. Read the first page
Explore More
Browse Sample Pages
Front Cover | Copyright | Table of Contents | Excerpt | Index | Back Cover
Search inside this book:

Sell a Digital Version of This Book in the Kindle Store

If you are a publisher or author and hold the digital rights to a book, you can sell a digital version of it in our Kindle Store. Learn more

Customer Reviews

There are no customer reviews yet on Amazon.ca
5 star
4 star
3 star
2 star
1 star
Most Helpful Customer Reviews on Amazon.com (beta)
Amazon.com: 4.1 out of 5 stars  9 reviews
11 of 12 people found the following review helpful
5.0 out of 5 stars Great book , gives background info. Feb. 24 2006
By Drewes J. Kooi - Published on Amazon.com
This is a great book about asp.net 2.0, IIS and security. It provides a lot of background info, once you have that the other pieces of asp.net fall into place and things make a lot more sense. I think for code examples I can always use Google, background info on how it all works together is what you read a book for and this book delivers. I hope this will not be the author's last book.
8 of 9 people found the following review helpful
5.0 out of 5 stars Great book July 10 2006
By Allen Z. Deng - Published on Amazon.com
This is one of the best technical books I've ever read. It gives us detailed information of how ASP.NET 2.0 works behind the scene.

If you are simply looking for a book teaching you how to use Role Management, Membership and other cool features offered by ASP.NET 2.0, this book might not be a good fit for you because it tends to explain lots of background info before jumping into the new features. However if what you want is to understand how all these puzzles interact with each other in the ASP.NET security world, this book should be your first choice.
2 of 2 people found the following review helpful
4.0 out of 5 stars It's about how things work under the covers Nov. 26 2007
By T. Haynes - Published on Amazon.com
I bought this book for help with over-riding the membership providers and possible the profile providers. What I got was a full on introduction to how things really work under the covers. Didn't really help me with my original intention, but certainly improved my understanding of security in ASP.Net 2.0.
5.0 out of 5 stars A professionals review Jan. 21 2006
By Derek Comingore - Published on Amazon.com
My peers,

This book provides the reader with material that only an individual who works on the Microsoft ASP.Net team can supply. Stefan does a marvelous job at giving the reader insight into the "plumbing" of the ASP.Net runtime. In addition, the manual contains excellent coverage of the new ASP.Net 2 membership and role management services! If you are an ASP.Net professional who wishes to gain a deeper understanding of the product outside of how to write code against it, pick it up!


Derek Comingore
4.0 out of 5 stars explain lots of background info before explaining the provider model features Feb. 18 2010
By Joseph A. Skarulis - Published on Amazon.com
Format:Paperback|Verified Purchase
I highly recommend this book simply to have as a reference working with the security features in ASP.NET 2.0 I agree with other reviewers that alot of the beginning of the book explains teh underlying security details which to many might just want to consider a black box. It is a good reference for the provider models Roles, Membership, but you might want other books for the simpler tutorial to setup login, membership and authentication etc in your ASP.NET 2.0 site

Look for similar items by category