The web application that I am working on uses "Windows" authentication. My question is: How is the HttpApplication.User property set up, and is it safe to use the information contained in it? Can the information that is passed to this be spoofed?
I'm fairly new to the security side of web development, and I can't seem to find many resources on this topic.
Aucun commentaire:
Enregistrer un commentaire