Thursday, May 14, 2009

Professional ASP.NET 2.0 Security Membership and Role Management

Professional ASP.NET 2.0 Security Membership and Role Management
Paperback: 648 pages
Publisher: Wrox (January 31, 2006)
Language: English
ISBN-10: 0764596985
ISBN-13: 978-0764596988
Product Dimensions: 9 x 7.3 x 1.5 inches







Experienced developers who are looking to create reliably secure sites with ASP.NET 2.0 will find that Professional ASP.NET 2.0 Security, Membership, and Role Management covers a broad range of security features including developing in partial trust, forms authentication, and securing configuration. The book offers detailed information on every major area of ASP.NET security you’ll encounter when developing Web applications.

You’ll see how ASP.NET 2.0 version contains many new built-in security functions compared to ASP.NET 1.x such as Membership and Role Manager, and you’ll learn how you can extend or modify various features. The book begins with two chapters that walk you through the processing ASP.NET 2.0 performs during a web request and the security processing for each request, followed by a detailed explanation of ASP.NET Trust Levels.

With this understanding of security in place, you can then begin working through the following chapters on configuring system security, forms authentication, and integrating ASP.NET security with classic ASP including integrating Membership and Role Manager with classic ASP. The chapter on session state looks at the limitations of cookieless session identifiers, methods for heading off session denial of service attacks, and how session state is affected by trust level. After the chapter explaining the provider model architecture in ASP.NET 2.0 and how it is useful for writing custom security providers you go to the MembershipProvider class and configuring the two default providers in the Membership feature, SqlMembershipProvider and ActiveDirectoryMembershipProvider. You'll see how to use RoleManager to make it easy to associate users with roles and perform checks declaratively and in code and wrap up working with three providers for RoleProvider – WindowsTokenRoleProvider, SqlRoleProvider, and AuthorizationStoreRoleProvider (to work with Authorization Manager or AzMan).

This book is also available as part of the 5-book ASP.NET 2.0 Wrox Box (ISBN: 0-470-11757-5). This 5-book set includes:
  • Professional ASP.NET 2.0 Special Edition (ISBN: 0-470-04178-1)
  • ASP.NET 2.0 Website Programming: Problem - Design - Solution (ISBN: 0764584642 )
  • Professional ASP.NET 2.0 Security, Membership, and Role Management (ISBN: 0764596985)
  • Professional ASP.NET 2.0 Server Control and Component Development (ISBN: 0471793507)
  • ASP.NET 2.0 MVP Hacks and Tips (ISBN: 0764597663)
  • CD-ROM with more than 1000 pages of bonus chapters from 15 other .NET 2.0 and SQL Server(TM) 2005 Wrox books
  • DVD with 180-day trial version of Microsoft(r) Visual Studio(r) 2005 Professional Edition


From the Back Cover
ASP.Net security covers a broad range of subjects. Concepts such as Web security features, developing in partial trust, forms authentication, and securing configuration - just to name a few p are all integral components to helping developers ensure reliable security. Addressing the ASP.NET security features from the developer's point of view, this book offers detailed information on very major area of ASP.NET security that you'll encounter when developing Web applications.

You'll see how the 2.0 version contains many new built-in security functions, such as Membership and Role Manager, and you'll learn how you can extend or modify various features. As you work through this book, you'll gain a solid understanding of the many security features in ASP.NET 2.0.

What you will learn from this book
  • The security professing that is performed for each HTTP request
  • What ASP.NET trust levels are and how they work to provide secure environments
  • The new options for locking down and protecting configuration sections
  • New security features for forms authentication and session state
  • Ways to write your own custom provider-based features
  • How to extend Membership with password histories and custom password encryption
  • How to use Active Directory with the new Membership and Role Manager features

Who this book is for

This book is for experienced developers who are looking to master the new security features of ASP.NET 2.0, as well as more advanced techniques for extending ASP.NET 2.0 security.



User Review on the book:


This is a great book about asp.net 2.0, IIS and security. It provides a lot of background info, once you have that the other pieces of asp.net fall into place and things make a lot more sense. I think for code examples I can always use Google, background info on how it all works together is what you read a book for and this book delivers. I hope this will not be the author's last book.



Free Rapidshare download:


Free download Link 2:
password: books_for_all

No comments: