Quantity:


	Amazon Prime Free Trial required. Sign up when you check out. Learn More

More Buying Choices

Have one to sell? Sell yours here

Share your own customer images

Search inside this book

Tell the Publisher!
I'd like to read this book on Kindle

Don't have a Kindle? Get your Kindle here, or download a FREE Kindle Reading App.

Professional ASP.NET 2.0 Security, Membership, and Role Management (Wrox Professional Guides) [Paperback]

Stefan Schackow (Author)

4.1 out of 5 stars See all reviews (9 customer reviews) |

List Price:	$39.99
Price:	$26.39 & this item ships for FREE with Super Saver Shipping. Details
Deal Price:
You Save:	$13.60 (34%)
	Special Offers Available
	o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o

In Stock.
Ships from and sold by Amazon.com. Gift-wrap available.

Only 1 left in stock--order soon (more on the way).

Want it delivered Monday, January 30? Choose One-Day Shipping at checkout. Details

FREE Two-Day Shipping for Students. Learn more

Book Description

ISBN-10: 0764596985 | ISBN-13: 978-0764596988 | Publication Date: January 31, 2006 | Edition: 1

Experienced developers who are looking to create reliably secure sites with ASP.NET 2.0 will find that Professional ASP.NET 2.0 Security, Membership, and Role Management covers a broad range of security features including developing in partial trust, forms authentication, and securing configuration. The book offers detailed information on every major area of ASP.NET security you’ll encounter when developing Web applications.

You’ll see how ASP.NET 2.0 version contains many new built-in security functions compared to ASP.NET 1.x such as Membership and Role Manager, and you’ll learn how you can extend or modify various features. The book begins with two chapters that walk you through the processing ASP.NET 2.0 performs during a web request and the security processing for each request, followed by a detailed explanation of ASP.NET Trust Levels.

With this understanding of security in place, you can then begin working through the following chapters on configuring system security, forms authentication, and integrating ASP.NET security with classic ASP including integrating Membership and Role Manager with classic ASP. The chapter on session state looks at the limitations of cookieless session identifiers, methods for heading off session denial of service attacks, and how session state is affected by trust level. After the chapter explaining the provider model architecture in ASP.NET 2.0 and how it is useful for writing custom security providers you go to the MembershipProvider class and configuring the two default providers in the Membership feature, SqlMembershipProvider and ActiveDirectoryMembershipProvider. You'll see how to use RoleManager to make it easy to associate users with roles and perform checks declaratively and in code and wrap up working with three providers for RoleProvider – WindowsTokenRoleProvider, SqlRoleProvider, and AuthorizationStoreRoleProvider (to work with Authorization Manager or AzMan).

This book is also available as part of the 5-book ASP.NET 2.0 Wrox Box (ISBN: 0-470-11757-5). This 5-book set includes:

Professional ASP.NET 2.0 Special Edition (ISBN: 0-470-04178-1)
ASP.NET 2.0 Website Programming: Problem - Design - Solution (ISBN: 0764584642 )
Professional ASP.NET 2.0 Security, Membership, and Role Management (ISBN: 0764596985)
Professional ASP.NET 2.0 Server Control and Component Development (ISBN: 0471793507)
ASP.NET 2.0 MVP Hacks and Tips (ISBN: 0764597663)
CD-ROM with more than 1000 pages of bonus chapters from 15 other .NET 2.0 and SQL Server(TM) 2005 Wrox books
DVD with 180-day trial version of Microsoft(r) Visual Studio(r) 2005 Professional Edition

#outer_postBodyPS { display: none; } #psGradient { display: none; } #psPlaceHolder { display: none; } #psExpand { display: none; } Experienced developers who are looking to create reliably secure sites with ASP.NET 2.0 will find that Professional ASP.NET 2.0 Security, Membership, and Role Management covers a broad range of security features including developing in partial trust, forms authentication, and securing configuration. The book offers detailed information on every major area of ASP.NET security you’ll encounter when developing Web applications.

This book is also available as part of the 5-book ASP.NET 2.0 Wrox Box (ISBN: 0-470-11757-5). This 5-book set includes:

Professional ASP.NET 2.0 Special Edition (ISBN: 0-470-04178-1)
ASP.NET 2.0 Website Programming: Problem - Design - Solution (ISBN: 0764584642 )
Professional ASP.NET 2.0 Security, Membership, and Role Management (ISBN: 0764596985)
Professional ASP.NET 2.0 Server Control and Component Development (ISBN: 0471793507)
ASP.NET 2.0 MVP Hacks and Tips (ISBN: 0764597663)
CD-ROM with more than 1000 pages of bonus chapters from 15 other .NET 2.0 and SQL Server(TM) 2005 Wrox books
DVD with 180-day trial version of Microsoft(r) Visual Studio(r) 2005 Professional Edition

Special Offers and Product Promotions

Buy $50 in qualifying physical textbooks, get $5 in Amazon MP3 Credit. Here's how (restrictions apply)

Frequently Bought Together

Price For All Three: $87.58

Show availability and shipping details

Buy the selected items together

This item: Professional ASP.NET 2.0 Security, Membership, and Role Management (Wrox Professional Guides) by Stefan Schackow Paperback $26.39

In Stock.
Ships from and sold by Amazon.com.
This item ships for FREE with Super Saver Shipping. Details
ASP.NET 2.0 Website Programming: Problem - Design - Solution (Programmer to Programmer) by Marco Bellinaso Paperback $25.92

In Stock.
Ships from and sold by Amazon.com.
This item ships for FREE with Super Saver Shipping. Details
Professional ASP.NET 2.0 AJAX (Programmer to Programmer) by Matt Gibbs Paperback $35.27

In Stock.
Ships from and sold by Amazon.com.
This item ships for FREE with Super Saver Shipping. Details

Customers Who Bought This Item Also Bought

Professional ASP.NET 3.5 Security, Membership, an... by Bilal Haidar
4.0 out of 5 stars (3)

$35.74
Developing More-Secure Microsoft� ASP.NET 2.0 A... by Dominick Baier
5.0 out of 5 stars (5)
Professional ASP.NET 2.0 Special Edition (Wiley Des... by Bill Evjen
4.4 out of 5 stars (7)

$37.79
ASP.NET 2.0 Website Programming: Problem - Des... by Marco Bellinaso
4.5 out of 5 stars (68)

$25.92
Professional ASP.NET 2.0 AJAX (Programmer to Progra... by Matt Gibbs
4.0 out of 5 stars (7)

$35.27
Professional ASP.NET 2.0 Design: CSS, Themes,... by Jacob J. Sanford
4.7 out of 5 stars (3)

$26.39

Editorial Reviews

From the Back Cover

ASP.Net security covers a broad range of subjects. Concepts such as Web security features, developing in partial trust, forms authentication, and securing configuration - just to name a few p are all integral components to helping developers ensure reliable security. Addressing the ASP.NET security features from the developer's point of view, this book offers detailed information on very major area of ASP.NET security that you'll encounter when developing Web applications.

You'll see how the 2.0 version contains many new built-in security functions, such as Membership and Role Manager, and you'll learn how you can extend or modify various features. As you work through this book, you'll gain a solid understanding of the many security features in ASP.NET 2.0.

What you will learn from this book

The security??professing that is performed for each HTTP request
What ASP.NET trust levels are and how they work to provide secure environments
The new options for locking down and protecting configuration sections
New security features for forms authentication and session state
Ways to write your own custom provider-based features
How to extend Membership with password histories and custom password encryption
How to use Active Directory with the new Membership and Role Manager features

Who this book is for

This book is for experienced developers who are looking to master the new security features of ASP.NET 2.0, as well as more advanced techniques for extending ASP.NET 2.0 security.

Wrox Professional guides are planned and written by working programmers to meet the?? real-world needs of programmers, developers, and IT professionals. Focused and relevant, they address the issues technology professionals face every day. They provide examples, practical solutions, and expert education in new technologies, all designed to help programmers do a better job.

About the Author

Stefan Schackow is a Program Manager on the Web Platform and Tools Team at Microsoft working on the new application services stack in Visual Studio 2005. He owns the Membership, Role Manager, Profile, Personalization and Site Navigation features in ASP.NET 2.0. He also works on features for Microsoft's ASP.NET hosting solution. He is a frequent speaker at Microsoft developer conferences. Prior to joining the ASP.NET team Stefan worked as an application development consultant in Microsoft Consulting Services (MCS) with enterprise customers for four years.

Product Details

Paperback: 648 pages
Publisher: Wrox; 1 edition (January 31, 2006)
Language: English
ISBN-10: 0764596985
ISBN-13: 978-0764596988
Product Dimensions: 9.2 x 7.4 x 1.4 inches
Shipping Weight: 2.1 pounds (View shipping rates and policies)

Average Customer Review: 4.1 out of 5 stars See all reviews (9 customer reviews)

Amazon Best Sellers Rank: #957,587 in Books (See Top 100 in Books)

Would you like to update product info or give feedback on images?

More About the Author

› Visit Amazon's Stefan Schackow Page

Discover books, learn about writers, read author blogs, and more.

Customer Reviews

9 Reviews

5 star:		(4)
4 star:		(3)
3 star:		(1)
2 star:		(1)
1 star:		(0)

Average Customer Review

4.1 out of 5 stars (9 customer reviews)

Share your thoughts with other customers:

Create your own review

Most Helpful Customer Reviews

11 of 12 people found the following review helpful:

5.0 out of 5 stars Great book , gives background info., February 24, 2006

Drewes J. Kooi (Columbus, OH) - See all my reviews
(REAL NAME)

This review is from: Professional ASP.NET 2.0 Security, Membership, and Role Management (Wrox Professional Guides) (Paperback)

This is a great book about asp.net 2.0, IIS and security. It provides a lot of background info, once you have that the other pieces of asp.net fall into place and things make a lot more sense. I think for code examples I can always use Google, background info on how it all works together is what you read a book for and this book delivers. I hope this will not be the author's last book.

Help other customers find the most helpful reviews

Was this review helpful to you? Yes No

Report abuse | Permalink

Comment Comment

8 of 9 people found the following review helpful:

5.0 out of 5 stars Great book, July 10, 2006

Allen Z. Deng (Vancouver, BC Canada) - See all my reviews
(REAL NAME)

This review is from: Professional ASP.NET 2.0 Security, Membership, and Role Management (Wrox Professional Guides) (Paperback)

This is one of the best technical books I've ever read. It gives us detailed information of how ASP.NET 2.0 works behind the scene.

If you are simply looking for a book teaching you how to use Role Management, Membership and other cool features offered by ASP.NET 2.0, this book might not be a good fit for you because it tends to explain lots of background info before jumping into the new features. However if what you want is to understand how all these puzzles interact with each other in the ASP.NET security world, this book should be your first choice.

Help other customers find the most helpful reviews

Was this review helpful to you? Yes No

Report abuse | Permalink

Comment Comment

2 of 2 people found the following review helpful:

4.0 out of 5 stars It's about how things work under the covers, November 26, 2007

T. Haynes "Developer & Architect" (Houston, TX) - See all my reviews
(REAL NAME)

This review is from: Professional ASP.NET 2.0 Security, Membership, and Role Management (Wrox Professional Guides) (Paperback)

I bought this book for help with over-riding the membership providers and possible the profile providers. What I got was a full on introduction to how things really work under the covers. Didn't really help me with my original intention, but certainly improved my understanding of security in ASP.Net 2.0.

Help other customers find the most helpful reviews

Was this review helpful to you? Yes No

Report abuse | Permalink

Comment Comment

Share your thoughts with other customers: Create your own review

› See all 9 customer reviews...

Most Recent Customer Reviews

4.0 out of 5 stars explain lots of background info before explaining the provider model features
I highly recommend this book simply to have as a reference working with the security features in ASP.NET 2. Read more

Published 23 months ago by Joseph A. Skarulis

4.0 out of 5 stars Easy and smooth read
This book is an easy read and takes you from Alpha to Omega of ASP.NET in smooth flow. This is also very thorough with illustrations.

Published on May 9, 2009 by A. Jain

5.0 out of 5 stars Thorough, excellent writing
I bought this book because I needed the information for a project that I am currently engaged in. The information contained within was immediately relevant in shaping the... Read more

Published on February 15, 2008 by D. Norton

2.0 out of 5 stars Not useful
This book is like those instruction you will want to give to your team members if you are the leader, but having to keep reading that for close to 600 pages! Read more

Published on January 14, 2008 by Paul Selormey

3.0 out of 5 stars Good but was looking for something more
I'm just making the transition from 1.1 to 2.0 and wanted to learn more about the new login/membership controls and classes. Read more

Published on February 4, 2006 by M. Dondero

5.0 out of 5 stars A professionals review
My peers,

This book provides the reader with material that only an individual who works on the Microsoft ASP.Net team can supply. Read more

Published on January 22, 2006 by Derek Comingore

› See all 9 customer reviews...

Inside This Book (learn more)

First Sentence:
Before the first line of code you write for an . aspx page executes, both Internet Information Services (IIS) and ASP.NET have performed a fair amount of logic to establish the execution context for a HyperText Transfer Protocol (HTTP) request. Read the first page

Key Phrases - Statistically Improbable Phrases (SIPs): (learn more)
forms authentication ticket, role manager feature, password answer attempts, bad password answers, application impersonation, child configuration files, forms authentication feature, custom trust level, partial trust web application, custom policy file, impersonation credentials, session state cookie, static feature class, session state feature, forms authentication cookie, custom provider, cookieless forms authentication, named permission set, admin provider, forms authentication login page, login page redirects, performing authorization checks, standalone assembly, cache cookie, cookieless support

Key Phrases - Capitalized Phrases (CAPs): (learn more)
Active Directory, Visual Studio, Windows Server, Role Principal, Console Root, Normal Users, Internet Explorer, Saved Queries, File Action View Favorites Window Help, Forms Identity, Trust Level Granted Permission Full Unrestricted, High Unrestricted, Recycle Bin, Internet Information Services, Program Data, Web Administration Tool, Cancel Figure, Recyde Bin, Server Express, Virtual Server, Application Role, Cancel Help Figure, Configuration Permission, File Action View Window Help, Generic Principal

New!
Books on Related Topics | Concordance | Text Stats

Citations (learn more)

This book cites 2 books:

Design Patterns by Erich Gamma on page 333
Design Patterns: Elements of Reusable Object-Oriented Software by Erich Gamma on page 333

Books on Related Topics (learn more)

ASP.NET 2.0 Website Programming by Marco Bellinaso

Discusses:

Programming Microsoft ASP.NET 2.0 Core Reference by Dino Esposito

Discusses:

Murach's ASP.NET 2.0 Web Programming with VB 2005 by Anne Boehm

Discusses:

Microsoft SharePoint Technologies by Kevin Laahs

Discusses:

What Other Items Do Customers Buy After Viewing This Item?

Professional ASP.NET 3.5 Security, Membership, and Role Management with C# and VB (Wrox Programmer to Programmer) by Bilal Haidar Paperback
4.0 out of 5 stars (3)

$35.74

Beginning ASP.NET Security (Wrox Programmer to Programmer) by Barry Dorrans Paperback
4.8 out of 5 stars (4)

$28.04

Developing More-Secure Microsoft� ASP.NET 2.0 Applications (Pro-Developer) by Dominick Baier Paperback
5.0 out of 5 stars (5)

Professional ASP.NET 2.0 Special Edition (Wiley Desktop Editions) by Bill Evjen Hardcover
4.4 out of 5 stars (7)

$37.79

› Explore similar items

Tags Customers Associate with This Product

(What's this?)

Click on a tag to find related items, discussions, and people.

aspnet(5)

security(3)

dot net(2)

asp(1)

asp net 2(1)

network security(1)

wrox box(1)

Agree with these tags?

See all 8 tags...

Sell a Digital Version of This Book in the Kindle Store

If you are a publisher or author and hold the digital rights to a book, you can sell a digital version of it in our Kindle Store. Learn more

.jsOffDisplayBlock { display: block; } .jsOffDisplayInline { display: inline; } .jsOffVisibility { visibility: visible; } .jsOnDisplayBlock { display: none; } .jsOnDisplayNoneBlock { display: block; } .jsOnDisplayNoneInline { display: inline; } .jsOnDisplayInline { display: none; } .jsOnVisibility { visibility: hidden; } .jqOnDisplayBlock { display: none; } .jqOnDisplayInline { display: none; } .jqOnVisibility { visibility: hidden; } .jqOnDisplayNoneBlock { display: block; } .jqOnDisplayNoneInline { display: inline; }

Customer Discussions

This product's forum

Discussion	Replies	Latest Post
No discussions yet

Ask questions, Share opinions, Gain insight

Start a new discussion

Topic:

First post:

Receive e-mail when new posts are made

Prompts for sign-in

Guidelines

Active discussions in related forums

Discussion	Replies	Latest Post
Textbook forum I just received a "very good" textbook without its disc - what are your thoughts?	168	1 day ago
Textbook forum Never buy school textbooks. Download them to your reading device or computer	3	3 days ago
Textbook forum Never Again	27	3 days ago
Textbook forum Buyer requested return but I haven't been paid by amazon yet?	2	9 days ago
Textbook forum Instructor Edition Textbooks?	5	10 days ago
Textbook forum "Special edition" textbooks: how to sell?	3	18 days ago