|
User Redirected to another server -- Raj --
Hi All, I have one application running on 2 different server. Server A and Server B At some point I make User ti jump from Server A ----> Server B As application is secure it requires user to relogin. Is there any way I can redirect user to certain page without relogin ? I dont want to compromise with security. Second thing Session Mode is "In Proc" on both server. Please share your thoughts....might help me :) Thanks Raj |
|
-- JamieFraser --
1) Why are you using 2 servers? 2) Possibly (im not sure) but you could use something like Sql Server to store state, and it might persist across domains, or you could store something in a db when the login to server A, and pass a token across to server B which would be verified against the Db? On 20/07/06, Raj <vimaljani> wrote: Hi All, I have one application running on 2 different server. Server A and Server B At some point I make User ti jump from Server A ----> Server B As application is secure it requires user to relogin. Is there any way I can redirect user to certain page without relogin ? I dont want to compromise with security. Second thing Session Mode is "In Proc" on both server. Please share your thoughts....might help me :) Thanks Raj > |
|
-- BradleyPeter --
I think a bit more info would help, e.g. Are both servers Windows boxes? Are they both on a Windows domain? Are they both reachable from outside of your corporate firewall? Are you using a proxy? Is the proxy redirecting to internal IP addresses? Peter -----Original Message----- From: DotNetDevelopment on behalf of Raj Sent: Thu 7/20/2006 7:14 PM To: DotNetDevelopment, VB.NET, C# .NET, ADO.NET, ASP.NET, XML, XML Web Services,.NET Remoting Cc: Subject: User Redirected to another server Hi All, I have one application running on 2 different server. Server A and Server B At some point I make User ti jump from Server A ----> Server B As application is secure it requires user to relogin. Is there any way I can redirect user to certain page without relogin ? I dont want to compromise with security. Second thing Session Mode is "In Proc" on both server. Please share your thoughts....might help me :) Thanks Raj |
|
-- Raj --
Hi Jamie and Peter, Thanks to you very much for your help. Thing my app is generating "Receipt" using crystal reports on server A and Server B out of which temp due to some licensing issue CR on Server A is not working and as it is imergency I had to deploy this project on new server so that I dont hold my user getting their payment receipt. And CR works fine on Server B. This is temp thing so I was trying to find easy solution for that rather changing session mode for that coz any ways once CR on Server A is fixed I will deactivate app on Server B. Second thing as Peter would like to know abt env, so Yes both boxes are Windows and both on Windows domain.. also both reachable from outside of firewall. About proxy I dont know much but I dont think I am using proxy that redirect to internal IP as I have provided temp link and clicking on which user would be redirected to app on server B. Thanks again for your help, Regards Raj |
|
-- BradleyPeter --
Hi Raj, If that means that both your servers have external IP addresses, then I guess you're going to have to do something like connect from box A to box B over a trusted connection (which you can do because both are on the domain). If someone tries to connect directly to box B from outside, the connection will not be trusted. However this will only work with Windows authentication, I think. Not Forms authentication unless you could do something clever passing Generic or Windows Principal objects about the place. But there's nothing in principle that says your known external users shouldn't be present in, say, Active Directory with a group membership that restricts them to a few things only and doesn't give them access to your LAN. BTW, I think you need to consider how your servers are set up. It's much more secure to connect to your corporate Web servers via a proxy (firewall) that redirects to internal IP addresses. This allows you to filter out anything dodgy at the proxy firewall, and means your corporate Web servers are not visible to the Web-at-large (because they only have internal IP addresses). Also, and IMHO, Web servers should never be on a Windows domain. Any connections they make to other boxes should be untrusted (and preferably filtered by an internal firewall, which effectively locates the Web servers in a DMZ). I don't know if any of this is any help, but I hope that it is. Cheers Peter -----Original Message----- From: DotNetDevelopment Re: User Redirected to another server Hi Jamie and Peter, Thanks to you very much for your help. Thing my app is generating "Receipt" using crystal reports on server A and Server B out of which temp due to some licensing issue CR on Server A is not working and as it is imergency I had to deploy this project on new server so that I dont hold my user getting their payment receipt. And CR works fine on Server B. This is temp thing so I was trying to find easy solution for that rather changing session mode for that coz any ways once CR on Server A is fixed I will deactivate app on Server B. Second thing as Peter would like to know abt env, so Yes both boxes are Windows and both on Windows domain.. also both reachable from outside of firewall. About proxy I dont know much but I dont think I am using proxy that redirect to internal IP as I have provided temp link and clicking on which user would be redirected to app on server B. Thanks again for your help, Regards Raj |
|
-- Raj --
Peter, Thanks for such a wonderful explaination. I would do more research in direction you have mentioned, I hope this would help me. Raj |