Export (0) Print
Expand All
This topic has not yet been rated - Rate this topic

FormsAuthenticationConfiguration.Protection Property

Gets or sets the encryption type used to encrypt the cookie.

Namespace:  System.Web.Configuration
Assembly:  System.Web (in System.Web.dll)
[ConfigurationPropertyAttribute("protection", DefaultValue = FormsProtectionEnum.All)]
public FormsProtectionEnum Protection { get; set; }

Property Value

Type: System.Web.Configuration.FormsProtectionEnum
One of the FormsProtectionEnum enumeration values. The default value is All.
Note   Be sure to use the default value for this property if you want both data validation and encryption to help protect the cookie. This option uses the configured data-validation algorithm based on the machineKey. Triple-DES (3DES) is used for encryption, if available and if the key is long enough (48 bytes or more).
To improve the protection of your cookie, you may also want to set the RequireSSL to true.

The following code example shows how to access the Protection property. Refer to the code example in the FormsAuthenticationConfiguration class topic to learn how to get the section.


            // Get the current Protection.
            FormsProtectionEnum currentProtection = 
                formsAuthentication.Protection;

            // Set the Protection property.
            formsAuthentication.Protection = 
                FormsProtectionEnum.All;



.NET Framework

Supported in: 4, 3.5, 3.0, 2.0

Windows 7, Windows Vista SP1 or later, Windows XP SP3, Windows XP SP2 x64 Edition, Windows Server 2008 (Server Core not supported), Windows Server 2008 R2 (Server Core supported with SP1 or later), Windows Server 2003 SP2

The .NET Framework does not support all versions of every platform. For a list of the supported versions, see .NET Framework System Requirements.
Did you find this helpful?
(1500 characters remaining)
Thank you for your feedback

Community Additions

ADD
Show:
© 2014 Microsoft. All rights reserved.