Advantys.Security.dllassemblies must be copied to the
\binfolders of your web forms. Your web services must continue to use Basic or Integrated Authentication.
web.configfile. This will expire the user session in case of inactivity after a period of time (in minutes) as specified by the value of the
ApplicationSessionTimeOutconfiguration parameter. For example, to set the user session to expire after 30 minutes of inactivity, modify the parameter as follows:
<add key="ApplicationSessionTimeOut" value="30" />.
\binfolders of your web forms. Your web services can use Basic or Integrated authentication, or your custom HTTP Module.
login.aspxcode to validate the credentials passed over HTTP Basic against the external configuration repository. If you don’t have any external configuration repository, you can add users directly in the web.config of WorkflowGen (refer to the .NET documentation).
login.aspxfile must be copied to all of your webforms folders. This should only be applied to webforms. Web services must continue to use either Basic or Integrated authentication and therefore the
login.aspxpage cannot be used for them.
web.configfile, register the authentication form:
protection="All"attribute under the
"All"is used, the
machineKeyattribute and value must be added as well. (For more information about form-based authentication, see http://quickstarts.asp.net/QuickStartv20/aspnet/doc/security/formsauth.aspx.)
web.configfile and reset the security settings to Basic or Integrated in IIS for these folders.
corsnode with the list of external domains and their methods and headers (where HTTP requests will be allowed) to the WorkflowGen web configuration settings (located in
\wfgen\web.config). See some common examples below.