[Mono-list] Current state of FormsAuthentication

Jesse Pasichnyk jesse@pasichnyk.net
Thu, 3 Mar 2005 10:29:03 -0700 

Jim,

I'm running on RHEL4.

My mono version is 1.1.4 from the FC3 RPM.

Mod-mono version is 1.0.5 from source.  (had to go back to this because of
the virtual host issue in 1.0.6)

XSP version is 1.0.6 from source.



>From httpd.conf  (replaced actual domain with [domain], and ip address with
11.11.11.11)

<VirtualHost 11.11.11.11:80>
   ServerName rma.[domain].com
   DocumentRoot /home/rma/htdocs/domains/rma.[domain].com/html
   MonoApplications /:/home/rma/htdocs/domains/rma.[domain].com/html
   MonoUnixSocket /usr/local/aspnet/rma.[domain].com/mono_socket
   MonoWapiDir /usr/local/aspnet/rma.[domain].com
   DirectoryIndex Default.aspx
   <Directory />
      AddHandler mono .aspx .ascx .asax .ashx .config .cs .asmx .dll
   </Directory>
   ErrorLog /home/rma/htdocs/domains/rma.[domain].com/logs/error_log
   CustomLog /home/rma/htdocs/domains/rma.[domain].com/logs/access_log
combined
</VirtualHost>


Here is the applicable stuff from my Web.config:

<system.web>
      <sessionState
            mode="InProc"
            stateConnectionString="tcpip=127.0.0.1:42424"
            sqlConnectionString="data
source=127.0.0.1;Trusted_Connection=yes"
            cookieless="false"
            timeout="20"
      />

      <authentication mode="Forms">
         <forms name="RMA.Administration"
loginUrl="Administration/Login.aspx" protection="All"
path="/Administration/"/>
      </authentication>

   </system.web>

   <location path="Administration">
      <system.web>
         <authorization>
            <!-- Order and case are important below -->
            <allow roles="Administrator"/>
            <deny users="*"/>
         </authorization>
      </system.web>
   </location>



Another question that I have, is my state server run automatically by XSP or
something? Or is this something I have to configure separately?

Thanks,

Jesse

-----Original Message-----
From: mono-list-admin@lists.ximian.com
[mailto:mono-list-admin@lists.ximian.com] On Behalf Of Jim Erwin
Sent: Wednesday, March 02, 2005 12:18 PM
To: mono-list@lists.ximian.com
Subject: Re: [Mono-list] Current state of FormsAuthentication

Jesse,

Some additional information might be helpful, such as OS (linux distro if 
applicable) and version, what version of mono you're using, how it was 
installed, are you using Apache with mod_mono or xsp, maybe your site 
configuration and web.config.

There are quite a bit of variables involved here, and a clearer picture of
the 
issue might help someone to help you resolve it.

regards,

JE

On Wednesday 02 March 2005 12:45, Jesse Pasichnyk wrote:
> I am working on developing an ecommerce site with mono/postgres and am
> having some issues with the a Forms based security login area.
>
>
>
> I have the directory of /Administration/ protected and a login page of
> /Administration/Login.aspx set as the login page.  When you try to go to
> /Administration/ it tries to direct to the login page, but I get the
> following:
>
>
>
>
> Server error in '/' application
>
>
>
>   _____
>
>
>
> Unauthorized
>
>
> Description: Error processing request.
>
> Error Message: HTTP 401. Unauthorized
>
>
>
>
>
>
>
> I'm guessing this is because I explicitly need to disable protection of
the
> Login.aspx page, but under the MS framework, this worked fine.  I just
> wanted to bring up this issue, and see if this decision was made for a
> reason, or if it was an accident.
>
>
>
> Also, is there anything I should be aware of, as in non-functional parts
of
> the FormsAuthentication functionality in Mono 1.1.4?
>
>
>
> Thanks in advance,
>
>
>
> Jesse Pasichnyk
_______________________________________________
Mono-list maillist  -  Mono-list@lists.ximian.com
http://lists.ximian.com/mailman/listinfo/mono-list