FormsAuthenticationTicket Constructor (Int32, String, DateTime, DateTime, Boolean, String, String)

FormsAuthenticationTicket.FormsAuthenticationTicket(Int32, String, DateTime, DateTime, Boolean, String, String) Constructor

Initializes a new instance of the FormsAuthenticationTicket class with cookie name, version, directory path, issue date, expiration date, persistence, and user-defined data.

Namespace: System.Web.Security
Assembly: System.Web (in system.web.dll)

Public Sub New ( _
	version As Integer, _
	name As String, _
	issueDate As DateTime, _
	expiration As DateTime, _
	isPersistent As Boolean, _
	userData As String, _
	cookiePath As String _
Dim version As Integer
Dim name As String
Dim issueDate As DateTime
Dim expiration As DateTime
Dim isPersistent As Boolean
Dim userData As String
Dim cookiePath As String

Dim instance As New FormsAuthenticationTicket(version, name, issueDate, expiration, isPersistent, userData, cookiePath)
public FormsAuthenticationTicket (
	int version, 
	String name, 
	DateTime issueDate, 
	DateTime expiration, 
	boolean isPersistent, 
	String userData, 
	String cookiePath
public function FormsAuthenticationTicket (
	version : int, 
	name : String, 
	issueDate : DateTime, 
	expiration : DateTime, 
	isPersistent : boolean, 
	userData : String, 
	cookiePath : String
Not applicable.



The version number of the ticket.


The user name associated with the ticket.


The local date and time at which the ticket was issued.


The local date and time at which the ticket expires.


true if the ticket will be stored in a persistent cookie (saved across browser sessions); otherwise, false. If the ticket is stored in the URL, this value is ignored.


The user-specific data to be stored with the ticket.


The path for the ticket when stored in a cookie.


The userData parameter cannot be a null reference (Nothing in Visual Basic).

The following code example stores the result of the Encrypt method in a cookie using the FormsCookieName property and redirects the user to the URL returned from the GetRedirectUrl method.

Security noteSecurity Note:

This example contains a text box that accepts user input, which is a potential security threat. By default, ASP.NET Web pages validate that user input does not include script or HTML elements. For more information, see Script Exploits Overview (Visual Studio).

<%@ Page Language="VB" %>
<%@ Import Namespace="System.Web.Security" %>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
<script runat="server">

  Private Sub Login_Click(sender As Object, e As EventArgs)
    ' Create a custom FormsAuthenticationTicket containing
    ' application specific data for the user.

    Dim username As String      = UserNameTextBox.Text
    Dim password As String      = UserPassTextBox.Text
    Dim isPersistent As Boolean = PersistCheckBox.Checked

    If Membership.ValidateUser(username, password) Then
      Dim userData As String = "ApplicationSpecific data for this user."

      Dim ticket As FormsAuthenticationTicket = New FormsAuthenticationTicket(1, _
        username, _
        DateTime.Now, _
        DateTime.Now.AddMinutes(30), _
        isPersistent, _
        userData, _

      ' Encrypt the ticket.
      Dim encTicket As String = FormsAuthentication.Encrypt(ticket)

      ' Create the cookie.
      Response.Cookies.Add(New HttpCookie(FormsAuthentication.FormsCookieName, encTicket))

      ' Redirect back to original URL.
      Response.Redirect(FormsAuthentication.GetRedirectUrl(username, isPersistent))
      Msg.Text = "Login failed. Please check your user name and password and try again."
    End If
  End Sub

<html xmlns="" >
    <title>Forms Authentication Login</title>
    <form id="form1" runat="server">
        <span style="BACKGROUND:#80ff80; font-weight:bold"> 
          Login Page
        <asp:Label id="Msg" ForeColor="maroon" runat="server" /><br />
        <table border="0">
                    <td><asp:TextBox id="UserNameTextBox" runat="server" /></td>
                      <asp:RequiredFieldValidator id="RequiredFieldValidator1" 
                                                  runat="server" ErrorMessage="*" 
                                                  ControlToValidate="UserNameTextBox" />
                    <td><asp:TextBox id="UserPassTextBox" TextMode="Password" runat="server" /></td>
                      <asp:RequiredFieldValidator id="RequiredFieldValidator2" 
                                                  runat="server" ErrorMessage="*" 
                                                  ControlToValidate="UserPassTextBox" />
                    <td>Check here if this is
                        <span style="text-decoration:underline"> not </span>
                        <br />a public computer:</td>
                    <td><asp:CheckBox id="PersistCheckBox" runat="server" autopostback="true" /></td>
        <input type="submit" value="Login" runat="server" onserverclick="Login_Click" />

Windows 98, Windows Server 2000 SP4, Windows Server 2003, Windows XP Media Center Edition, Windows XP Professional x64 Edition, Windows XP SP2, Windows XP Starter Edition

The Microsoft .NET Framework 3.0 is supported on Windows Vista, Microsoft Windows XP SP2, and Windows Server 2003 SP1.

.NET Framework

Supported in: 3.0, 2.0, 1.1, 1.0

Community Additions

© 2016 Microsoft