Passing Information Between Two ASP.NET Websites

A

anewell

I need to build website on my webserver which has information securely
passed to it from a web site running on a client's webserver.

My client has a website that has a secure login process running under
SSL. When a user has succesfully logged into that website they will be

able to follow a link to my website. As part of this link I need an id

of the user to be passed to my website so I know who the user is, I do

NOT need the user's username or password. The ids of all users is
already known to both websites.


My site can run using SSL and the simplest solution is to pass the id
of the user as part of the query string, i.e. the link is an anchor
with a HREF such as WWW.ADYSITE.CO.UK?id=123456789', but I do not know

how secure this is. I could envrypt the querystring so it is not
reable but I am not sure if this is necessary if I am using SSL, this
would mean that both the client and I would need to share envyption
keys.


I would like to limit the the amount of work the client will have to do

at their end so I need the simplest solution possible.


Any advice as to possible solutions would be welcome.


Regards
Ady
 
G

Guest

you could encrypt the query string using .net's built in encryption support,
then use HttpUtility to Encode the string to make it url friendly.

(reply if you need an example)

end up with for eg.
http://sub.domain.com/postback.aspx?param=[your url friendly encrypted data]

This would rely on both servers knowing a shared encryption key and using
the same encryption algorithm.

Using SSL i the data passed between the servers will be encrypted - meaning
data intercepted between the servers will be secure, however the user would
be able to see the parameters being passed, in your case maybe their user id.

I would probably create a web service for doing what your suggesting. Very
similar method, just different implementation. Using VS.NET, create a web
service, it should be fairly obvious what to do with a little reading. You
then create a web reference to the service from the web app you want to call
the service. VS.NET creates a proxy class, which you can simply execute
methods from.

Food for thought
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Want to host websites that I will probably be the only user from home. Sacrilege, I know, but it has always been a dream of mine. Where do I start? 2
Only one table shows up with the information 2
User Authentication between two websites 1
SSL from squarespace to my EC2 0
Single login/logout for two different websites: How? 1
One of two identical asp.net websites not responding 7
Trying to creade method .between() 3
How to have two html audio players on one page? 0

Members online

No members online now.
Total: 46 (members: 0, guests: 46)
Robots: 278

Forum statistics

Threads
473,997
Messages
2,570,240
Members
46,828
Latest member
LauraCastr

Latest Threads

Top