eramgarden
Contributor
- Joined
- Mar 8, 2004
- Messages
- 579
I was reading:
http://msdn.microsoft.com/msdnmag/issues/02/04/ASPSec/default.aspx
And it has:
If your application requires no special protectionif all of its pages can be freely browsed by anyone and none are personalized for individual usersyou needn't bother with application-level security. Just grant Everyone access to the application's files and be done with it.
We first wanted to use Forms Authentication, them decided on Windows authentication as users dont want to keep logging in. Users can access all the pages. No restirctions. This an application for clients.
My question is: If users can access all pages and there's no restiction, then I dont need Windows Authentication OR any kind of authentication? Just have users double click on the link and enter the app?? Windwos Authentication is used to not only authenticate BUT also to control access to resources?
http://msdn.microsoft.com/msdnmag/issues/02/04/ASPSec/default.aspx
And it has:
If your application requires no special protectionif all of its pages can be freely browsed by anyone and none are personalized for individual usersyou needn't bother with application-level security. Just grant Everyone access to the application's files and be done with it.
We first wanted to use Forms Authentication, them decided on Windows authentication as users dont want to keep logging in. Users can access all the pages. No restirctions. This an application for clients.
My question is: If users can access all pages and there's no restiction, then I dont need Windows Authentication OR any kind of authentication? Just have users double click on the link and enter the app?? Windwos Authentication is used to not only authenticate BUT also to control access to resources?