Category: authentication

User Authentication in ASP.NET with user data not even readable by admin or man-in-the-middle

Imagine you have an ASP.NET based website that users have to authenticate for to get access. The user data (such as username, password and other information relevant for the website) is stored in a Microsoft Sql database. I know that it is possible to write an custom membership provider to create an own authentication method. […]