Jan 15- I'll be in LA for a MSDN Event on ASP.NET security

  • Article

In Century City. Also I'll be in NorCal (Jan 24 - Dublin), and in WA (Jan 29 - Tacoma and Jan 31 - Seattle) presenting this same content.  I am looking forward to seeing you there!

Session 1 | Safer, Smarter, Stronger: What’s New for Web Developers in IIS7

You’ll learn about the modular design of IIS and the integrated pipeline, providing for new scenarios that involve sharing authentication across IIS, ASP.NET and other dynamic web server runtimes. We’ll explore how the new IIS protocol listeners enable IIS to host WCF services on a variety of protocols (not just HTTP), providing a scalable and manageable host for your distributed applications. You’ll see how easy it is to write modules and handlers in managed code. Plus you’ll learn about the new security aspects of IIS 7, from initial deployment to feature delegation to administrator lists.

•     Authentication methods and integration between ASP.NET and IIS 7

•     Writing IIS managed handlers and modules

•     How the IIS protocol listeners support hosting WCF services on TCP, Named Pipes and more

•     IIS handler permissions, request filtering and administration lists

•     How the XML replacement for the Metdata Config file makes it easy to duplicate Web servers

•     Features and protocols that make IIS 7 secure right out of the box

Session 2 | Extending ASP.NET 2.0 Application Services

ASP.NET 2.0 includes powerful and flexible Application Services that provide support for things like membership (user name / password credential storage), role management and navigation right out of the box. In this session, you’ll learn how to extend these services and consume them from a variety of clients. We’ll begin with an overview of the included providers and how to configure them and use their basic controls. We’ll also discuss how to create a custom provider. Next, we’ll explore how to interact with application services using hot Web technologies such as ASP.NET AJAX and Silverlight. Finally, we’ll take a look at using the new ASP.NET 3.5 client application services from a Windows client. You’ll leave this session with a thorough understanding of how to use Application Services to build membership, profile and other systems that meet your Web and Windows application needs.

•     Membership, role and profile provider overviews

•     How to configure the built-in providers and use the basic login, role and navigation controls

•     How to create and integrate a custom provider

•     Using application services from AJAX and Silverlight clients

•     Using ASP.NET 3.5 client application services from a Windows client.