FormsAuthentication Cookie Name and Domain
1. Is it possible to change the name of the forms authentication cookie that Sitefinity 4.0 uses?
2. Is it possible to set the cookie at the domain level - rather than at the host level?
I would like the SF authentication cookie to be shared with other sites on the same domain. I am accustomed to accomplishing this with a <forms.../> element in the web.config - something along the lines of:
<
authentication
mode
=
"Forms"
>
<
forms
name
=
".CustomCookieName"
loginUrl
=
"login.aspx"
domain
=
".somedomain.com"
enableCrossAppRedirects
=
"true"
/>
</
authentication
>
Hi Valerie,
You can change the name of the Authentication cookie and HttpCookie.Domain from Sitefinity >> Administration >> Settings >> Advanced >> Security.
By default AuthCookieDomain is set to an empty string. The AuthCookieName is .SFAUTH
Sitefinity uses its own security mode and generally we get all settings from our configuration files located under App_Data/Sitefinity/Configuration folder.
Kind regards,
Ivan Dimitrov
the Telerik team
Great - very simple to change the cookie name and domain. Thanks Ivan!
I want to change the domain of .ASPXAUTH cookie. How should I do it from Sitefinity end?