– When the client is authenticated based on a custom page by verifying credentials with database server then it is called as forms-based authentication.
– The security token will be given to the client as an identity of the authenticated client.
Change in web.config for modification:
<forms name=”f1″ loginUrl=”login.aspx”>
Here the name attribute will specify cookie name for maintaining security token.
By default, it will be.ASPXAUTH
Here while writing code in the Login button we have to use RedirectFromTheLoginPage.
RedirectFromTheLoginPage does two things:
– It will provide the requested page to the client.
– It will produce a security token in the form of cookies.