asp.net.ph
Home  
Getting Started  
Skip Navigation Links
Web Forms  
Skip Navigation Links
Data Access  
Skip Navigation Links
Web Apps  
Skip Navigation Links
Web Basics  
Skip Navigation Links
Show Me   Search
Friday, January 10, 2025 

DefaultAuthenticationEventArgs Constructor

System.Web.Security Namespace   DefaultAuthenticationEventArgs Class

Initializes a new instance of the DefaultAuthenticationEventArgs class. 

[ VB ]
Public Sub New ( _
   context As HttpContext _
)

[ C# ]
public DefaultAuthenticationEventArgs (
   HttpContext context
);

[ C++ ]
public: DefaultAuthenticationEventArgs (
   HttpContext* context
);

[ JScript ]
public function DefaultAuthenticationEventArgs (
   context : HttpContext
);

Parameters

context
The context for the event.

Remarks

The DefaultAuthenticationModule object constructs a DefaultAuthenticationEventArgs object using the current HttpContext and passes it to the DefaultAuthentication_OnAuthenticate event.

You can use the Context property of the DefaultAuthenticationEventArgs object supplied to the DefaultAuthentication_OnAuthenticate event to set the User property of the current HttpContext to a custom IPrincipal object.

If you do not specify a value for the User property of the HttpContext referenced by the Context property, the DefaultAuthenticationModule sets the User property of the HttpContext to a GenericPrincipal object that contains no user information.

The DefaultAuthentication_OnAuthenticate event is raised after the AuthenticateRequest event and before the AuthorizeRequest event. If you have an authorization section that depends on the user name to deny or allow access to your application, modifying the User property of the current HttpContext can affect the behavior of your application. Be sure that the user name you set during the DefaultAuthentication_OnAuthenticate event is considered when you specify the authorization section in your configuration.

Example

The following code example uses the DefaultAuthentication_OnAuthenticate event to test whether the User property of the current HttpContext is a null reference ( Nothing in Visual Basic ) . If the property is a null reference ( Nothing in Visual Basic ), the example sets the User property of the current HttpContext to a GenericPrincipal object where the Identity property of the GenericPrincipal object is a GenericIdentity object with a Name property value of "default".

NOTE: The DefaultAuthentication_OnAuthenticate event is raised before the AuthorizeRequest event. As a result, if you set the User property of the current HttpContext to a custom identity, it can affect the behavior of your application. For example, if you are using the FormsAuthentication class and you are ensuring that only authenticated users have access to your site, by using the authorization section and specifying <deny users = "?" />, you will cause the deny element in this example to be ignored, as the user will have a name, which is "default". Instead you would specify <deny users = "default" /> to ensure that only authenticated users can access your site. 

public void DefaultAuthentication_OnAuthenticate ( object src,
                                                                         DefaultAuthenticationEventArgs args ) {
   if ( args.Context.User == null )       args.Context.User =          new System.Security.Principal.GenericPrincipal (
            new System.Security.Principal.GenericIdentity ( "default" ),
            new String[0] );
}
  C# VB

See Also

DefaultAuthenticationEventArgs Members Skip Navigation Links




Home
Suggested Reading

Previous page Back to top Next page

© 2000-2010 Rey Nuñez All rights reserved.

If you have any question, comment or suggestion
about this site, please send us a note

You can help support asp.net.ph