11/17/2009 5:06:16 PM
Forms Authentication LoginUrl - Configuration Issue or Bug?
I've set up forms authentication in my Kentico site like so:
where kenticoSite is my Kentico site
and othersite is a separate .Net application
<forms loginUrl="http://othersite.domain.com/login.aspx" domain=".domain.com" name=".ASPXAUTH" enableCrossAppRedirects="true"/>
1. When a user has the authentication cookie set, my Kentico site works as expected & the user is properly authorized.
2. When an unauthenticated user attempts to go to http://kenticoSite.domain.com/CMSDesk, user is redirected properly to http://othersite.domain.com/login.aspx
3. When an unauthenticated user attempts to post to a forum that requires authorization on my published site http://kenticoSite.domain.com, user is redirected to http://kenticoSite.domain.com/cmspages/logon.aspx
I expected BOTH scenarios 2 and 3 to redirect to the loginUrl specified in my formsAuthentication - http://othersite.domain.com/login.aspx. Why the different behavior?