Profile

Cover photo
Richard Deeming
Works at Nevalee Business Solutions
Attended University of Southampton
Lives in West Sussex
5 followers|6,968 views
AboutPosts

Stream

Richard Deeming

Deep Technical Q's  - 
 
Does anyone know of a (preferably open-source) solution for server-side revocation of FormsAuth tickets?

Customer is complaining that if they store the authentication cookie, log out, and then issue a new request with the stored cookie, they're still authenticated.

Before I start trying to build something myself, I'm wondering if it's already been done.
2
Jim Scott's profile photoDave Santosuosso's profile photoRichard Deeming's profile photoJoe Dluzen's profile photo
16 comments
 
+Jim Scott Thanks for the suggestion. That still wouldn't prevent the cookie replay attack that my customer's worried about though.
Add a comment...
Have him in circles
5 people
Hayley Evison's profile photo
People
Have him in circles
5 people
Hayley Evison's profile photo
Education
  • University of Southampton
    Maths, 1995 - 1998
  • Worthing College
    1993 - 1995
  • Chatsmore Catholic High School
    1988 - 1993
Basic Information
Gender
Male
Relationship
Single
Work
Occupation
Software Developer
Skills
C#, ASP.NET, WPF, SQL
Employment
  • Nevalee Business Solutions
    Software Developer, 2012 - present
  • Arcom IT Ltd
    Software Developer, 1998 - 2012
Places
Map of the places this user has livedMap of the places this user has livedMap of the places this user has lived
Currently
West Sussex
Links
Contributor to