Any suggestions on a good way to validate users as they move from page to page? I initially use forms authentication but they can actually move to other sites.
Forms authentication will still work in this case - it's based on a cookie that gets stored on the user's computer, so it doesn't matter if they visit another site in the meantime. They will still be authenticated as long as their session (set by the Timeout value in web.config) hasn't expired.
-No, other sites won't cause issues, regardless of what they are.
-If the individual bookmarked the site and tried to return, as long as they were within their session timeout they'd get right back in. You can set the auth cookie to not expire, and can use persistent sessions to keep them logged in indefinitely on the server.
That said, IMO it's a bad idea to have infinitely-persistent sessions: they take up extra storage, and are a security issue.
This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
By continuing to use this site, you are consenting to our use of cookies.