XHTTP Authenticator.NET: Overview

XHTTP Authenticator.NET is a HTTP authentication Module for ASP.NET Web Applications that provides additional authentication modes other than Forms, Windows and Passport modes.

The Supported HTTP authentication modes are:

• Basic HTTP Authentication
• Digest HTTP Authentication

With XHTTP Authenticator.NET, you can now use basic and digest authentications just by configuring your application web.config and authenticate users using your own authentication mechanism.

Examples of the HTTP authentication login dialogs with Internet Explorer

Advantages

• Take advantage of the browser authentication login capabilities
• Great solution for securing web applications quickly and securely
• Can store login credentials in the web.config like with ASP.NET Forms authentication
• Implement your own login logic
• Choice between 2 extended authentication modes (Basic or Digest)
• Easy to setup
• Secure with credentials encryption
• Flexible licensing schemes

How does it work?

XHTTP Authenticator.NET works as a HTTP Module for ASP.NET Web Applications. All configuration settings are stored inside the web.config.

The built-in login credentials are stored in the web.config and support encryption. Custom implementation of the module can be done to override the default built-in login validation and use your own login logic like doing a database lookup instead.

The module sends the authentication headers to the browser and receive the username and password from the login dialog box. There is no need to create a page with a login box, everything is managed by the browser and the module.