Posts

Showing posts from August, 2012

National Do-Not-Call Registry (Singapore)

Information regarding the proposed National DNC registry can be found here . The DNC registry allows individuals to opt-out of marketing messages in the forms of email , SMS/ MMS, faxes, phone-call. A message is regarded as a marketing message as long as it is determined that part of the message has a purpose which is marketing in nature as defined . Messages that are marketing in nature if one of the purposes of the message is: to offer to supply, advertise or promote goods or services , the suppliers or prospective suppliers of goods and services to supply, advertise or promote land, interests in land, business or investment opportunities

Poor Man's SSO with Multiple ASP.NET Web Applications

It is quite straightforward to have (poor man's) single sign-on for multiple ASP.NET web applications without sourcing for an enterprise solution. Based on the following premise: assuming the web applications are in the same domain  forms or custom authentication is used for the web application In order to have things work, a couple of steps are required, namely: Enable Forms authentication for the relevant web applications, use: < authentication mode = " Forms " > Ensure that the validationKey and decryptionKey settings (under the machineKey element) are not auto-generated but are explicitly coded and shared across the relevant web applications (and web farm, if applicable). For IIS6, you can use this website to generate the keys For IIS7+, you can use IIS Manager to do so . Customise the name of the cookie (instead of the default .ASPXAUTH) but more importantly, set the cookie path to the default root "/" and the domain to a valid one,...