Professional ASP.NET 2.0 Security, Membership, and Role Management
| |||||||||||||||||||||||||||||
|
| |||||||||||||||||||||||||||||
| Sort customer reviews by: | |||||||||||||||||||||||||||||
|
Show All Reviews on Page
Hide All Reviews on Page
| |||||||||||||||||||||||||||||
| Professional ASP.NET 2.0 Security, Membership, and Role Management | |||||||||||||||||||||||||||||
|
Experienced developers who are looking to create reliably secure sites with ASP.NET 2.0 will find that Professional ASP.NET 2.0 Security, Membership, and Role Management covers a broad range of security features including developing in partial trust, forms authentication, and securing configuration. The book offers detailed information on every major area of ASP.NET security you’ll encounter when developing Web applications.
You’ll see how ASP.NET 2.0 version contains many new built-in security functions compared to ASP.NET 1.x such as Membership and Role Manager, and you’ll learn how you can extend or modify various features. The book begins with two chapters that walk you through the processing ASP.NET 2.0 performs during a web request and the security processing for each request, followed by a detailed explanation of ASP.NET Trust Levels. With this understanding of security in place, you can then begin working through the following chapters on configuring system security, forms authentication, and integrating ASP.NET security with classic ASP including integrating Membership and Role Manager with classic ASP. The chapter on session state looks at the limitations of cookieless session identifiers, methods for heading off session denial of service attacks, and how session state is affected by trust level. After the chapter explaining the provider model architecture in ASP.NET 2.0 and how it is useful for writing custom security providers you go to the MembershipProvider class and configuring the two default providers in the Membership feature, SqlMembershipProvider and ActiveDirectoryMembershipProvider. You'll see how to use RoleManager to make it easy to associate users with roles and perform checks declaratively and in code and wrap up working with three providers for RoleProvider – WindowsTokenRoleProvider, SqlRoleProvider, and AuthorizationStoreRoleProvider (to work with Authorization Manager or AzMan). This book is also available as part of the 5-book ASP.NET 2.0 Wrox Box (ISBN: 0-470-11757-5). This 5-book set includes:
|
|||||||||||||||||||||||||||||
|
Now in its second version, ASP.NET has over one million programmers, and they all need to know how to use the new, tighter security model Helps programmers build better sites, control user access, and interface securely with other parts of the Microsoft platform, such as Windows Server, Active Directory, LDAP, and SQL Server 2005 Explains in depth all the security and user management functionality of ASP.NET 2.0, including many new built-in security functions that free the developer from hand-coding
|
|||||||||||||||||||||||||||||
| Reader Reviews 1 - 8 of 8 | |||||||||||||||||||||||||||||
| Review Date |
Review Rating(5 High) |
Review Helpful to: |
Customer Review | Reviewer Info |
Permanent Link |
||||||||||||||||||||||||
| Reader Reviews Below Sorted by Newest First | |||||||||||||||||||||||||||||
| 02-15-08 | 5 | (NA) |
| Reviewer | Permalink | ||||||||||||||||||||||||
|
I bought this book because I needed the information for a project that I am currently engaged in. The information contained within was immediately relevant in shaping the solution design. It gave me the how and the why to architect a solid, yet flexible solution.
This text is not a how-to for a beginner. It is also not light reading. It is a dense book; lots of information crammed into it. You have to bring your experience to this book for the full weight of the teaching to come to bear. I highly recommend it to application architects and development team leads. (Review Data Last Updated: 2008-12-27 05:15:12 EST)
|
|||||||||||||||||||||||||||||
| 01-14-08 | 2 | 1\1 |
| Reviewer | Permalink | ||||||||||||||||||||||||
|
This book is like those instruction you will want to give to your team members if you are the leader, but having to keep reading that for close to 600 pages!
Yes, the target is clearly not defined and if you want to get a work done by reading this book, please forget it. If you implemented membership and roles, and seeking some extra advice may be you might find it useful. It does not really explain the various systems, illustrating each well enough. I opened Forms Authetication, hoping to learn how to implement it in my project, just to read more than a page of people creating 50 years cookie. Is 2 or 3 lines of sentenses not enough to let someone know about 50 years cookie? (Review Data Last Updated: 2008-02-15 03:35:56 EST)
|
|||||||||||||||||||||||||||||
| 11-26-07 | 4 | 1\1 |
| Reviewer | Permalink | ||||||||||||||||||||||||
|
I bought this book for help with over-riding the membership providers and possible the profile providers. What I got was a full on introduction to how things really work under the covers. Didn't really help me with my original intention, but certainly improved my understanding of security in ASP.Net 2.0.
(Review Data Last Updated: 2008-01-15 08:22:07 EST)
|
|||||||||||||||||||||||||||||
| 07-18-06 | 5 | 9\9 |
| Reviewer | Permalink | ||||||||||||||||||||||||
|
I am using ASP.NET 2.0 with forms-based security and wanted to authenticate and authorize using Active Directory users and groups as ASP.NET users and roles. After many hours and much research, I had authentication working. After more hours and research, I was looking at doing authorization using ADAM and not getting it to work. I was reading posts, blogs, MSDN articles, everything I could find. I purchased this e-book and downloaded it. Within hours I had authorization working in Active Directory like I originally wanted to.
If you have needs like these, or if you just want to understand these aspects of ASP.NET 2.0 Security in great detail, this book will be invaluable. As I worked through the chapters, the author even anticipated the errors I would encounter, explained them and explained what to do to solve them. While not everything is explained in total detail, there is enough for someone who is not an Active Directory expert to set it up and get it working. I've gotten more value in a shorter amount of time from this book than any other I've ever purchased. (Review Data Last Updated: 2007-11-27 04:50:15 EST)
|
|||||||||||||||||||||||||||||
| 07-10-06 | 5 | (NA) |
| Reviewer | Permalink | ||||||||||||||||||||||||
|
This is one of the best technical books I've ever read. It gives us detailed information of how ASP.NET 2.0 works behind the scene.
If you are simply looking for a book teaching you how to use Role Management, Membership and other cool features offered by ASP.NET 2.0, this book might not be a good fit for you because it tends to explain lots of background info before jumping into the new features. However if what you want is to understand how all these puzzles interact with each other in the ASP.NET security world, this book should be your first choice. (Review Data Last Updated: 2006-07-19 09:36:08 EST)
|
|||||||||||||||||||||||||||||
| 02-25-06 | 5 | 4\4 |
| Reviewer | Permalink | ||||||||||||||||||||||||
|
This is a great book about asp.net 2.0, IIS and security. It provides a lot of background info, once you have that the other pieces of asp.net fall into place and things make a lot more sense. I think for code examples I can always use Google, background info on how it all works together is what you read a book for and this book delivers. I hope this will not be the author's last book.
(Review Data Last Updated: 2006-07-07 08:36:37 EST)
|
|||||||||||||||||||||||||||||
| 02-05-06 | 3 | 10\18 |
| Reviewer | Permalink | ||||||||||||||||||||||||
|
I'm just making the transition from 1.1 to 2.0 and wanted to learn more about the new login/membership controls and classes.
The book is too much on theory and not enough on examples. The code is also in C#, would be nice to have also included VB examples. With an entire book dedicated to security and membership it would be nice to include some real world project walkthroughs. I'm specifically needing to apply my existing user database table to the new membershipuser class. I need to extend the membershipuser object to include some fields/properties. There's a brief couple of paragraphs that attempt to explain but didn't give me much. A lot of the other topics in the book are about things that most developers would never need to think about. (Review Data Last Updated: 2006-07-07 08:36:37 EST)
|
|||||||||||||||||||||||||||||
| 01-22-06 | 5 | 7\9 |
| Reviewer | Permalink | ||||||||||||||||||||||||
|
My peers,
This book provides the reader with material that only an individual who works on the Microsoft ASP.Net team can supply. Stefan does a marvelous job at giving the reader insight into the "plumbing" of the ASP.Net runtime. In addition, the manual contains excellent coverage of the new ASP.Net 2 membership and role management services! If you are an ASP.Net professional who wishes to gain a deeper understanding of the product outside of how to write code against it, pick it up! by Derek Comingore (Review Data Last Updated: 2006-07-07 08:36:37 EST)
|
|||||||||||||||||||||||||||||
| Reader Reviews 1 - 8 of 8 | |||||||||||||||||||||||||||||
| All Books | Arts | Biography | Click Here For An A-Z Index Of All 213 Best-Seller Subjects | Business | Children's | Comics | ||||||
| Computers | Cooking | Engineering | Entertainment | Health | History | Home | Horror | Humor | Law | Fiction | Medicine | Mystery |
| Nonfiction | Outdoors | Parenting | Professional | Reference | Religion | Romance | Science | Sci-Fi | Sports | Teens | Travel | |
