We are running CS 2.0 and have it set up correctly to use Custom Authentication. We have a separate .NET app that handles all of our authentication - it uses Forms Authentication (sets the .ASPXAUTH cookie and all that) and redirects the user back to CS. All of this we have set up and working. I am able to login and CS recognizes that I am logged in. However, when I log out, our custom app uses a FormsAuthentication.SignOut() (which the documentation says just removes the forms authentication cookie) and then redirects the user to CS again.
However, after logging out and the redirect to CS, CS still says that I am logged in. I check the actual cookies and find that .ASPXAUTH is indeed gone as it should be - but CS doesn't recognize this! Shouldn't it check authentication for every request in order to determine if I'm logged in? Or did I miss something? Any help is appreciated!
Copyright© 2008 Telligent Systems Inc. All rights reserved CommunityServer.com • Telligent.com