diff options
author | Gonzalo Paniagua Javier <gonzalo.mono@gmail.com> | 2004-08-23 01:54:27 +0400 |
---|---|---|
committer | Gonzalo Paniagua Javier <gonzalo.mono@gmail.com> | 2004-08-23 01:54:27 +0400 |
commit | a989e0c3bf1bc35634e2cebb6b03a95cab482648 (patch) | |
tree | adf5d6ee100dba0bd196cad187b211eb7dc98d99 | |
parent | bd25692de9765d1675d15e010c032d888c4ee00c (diff) |
2004-08-22 Gonzalo Paniagua Javier <gonzalo@ximian.com>
* FormsAuthenticationModule.cs: don't renew expired cookies. Only renew
the cookie if SlidingExpiration is set. Thanks to Jim Pease.
svn path=/branches/mono-1-0/mcs/; revision=32677
-rw-r--r-- | mcs/class/System.Web/System.Web.Security/ChangeLog | 5 | ||||
-rw-r--r-- | mcs/class/System.Web/System.Web.Security/FormsAuthenticationModule.cs | 7 |
2 files changed, 11 insertions, 1 deletions
diff --git a/mcs/class/System.Web/System.Web.Security/ChangeLog b/mcs/class/System.Web/System.Web.Security/ChangeLog index cf7612e3ae3..18d1dade663 100644 --- a/mcs/class/System.Web/System.Web.Security/ChangeLog +++ b/mcs/class/System.Web/System.Web.Security/ChangeLog @@ -1,3 +1,8 @@ +2004-08-22 Gonzalo Paniagua Javier <gonzalo@ximian.com> + + * FormsAuthenticationModule.cs: don't renew expired cookies. Only renew + the cookie if SlidingExpiration is set. Thanks to Jim Pease. + 2004-06-12 Pedro Martínez Juliá <yoros@wanadoo.es> * FormsAuthentication.cs: Undo last change. diff --git a/mcs/class/System.Web/System.Web.Security/FormsAuthenticationModule.cs b/mcs/class/System.Web/System.Web.Security/FormsAuthenticationModule.cs index f46923ad5b8..ac9f3c31327 100644 --- a/mcs/class/System.Web/System.Web.Security/FormsAuthenticationModule.cs +++ b/mcs/class/System.Web/System.Web.Security/FormsAuthenticationModule.cs @@ -82,7 +82,12 @@ namespace System.Web.Security return; FormsAuthenticationTicket ticket = FormsAuthentication.Decrypt (cookie.Value); - ticket = FormsAuthentication.RenewTicketIfOld (ticket); + if (ticket == null || ticket.Expired) + return; + + if (config.SlidingExpiration) + ticket = FormsAuthentication.RenewTicketIfOld (ticket); + context.User = new GenericPrincipal (new FormsIdentity (ticket), new string [0]); cookie.Value = FormsAuthentication.Encrypt (ticket); |