ASP.NET Web Site Administration Tool

From Wikipedia, the free encyclopedia

Web Site Administration Tool

A screenshot of Web Site Administration Tool main page

The ASP.NET Web Site Administration Tool is a utility provided along with Microsoft Visual Studio which assists in the configuration and administration of a website created using Microsoft Visual Studio 2005 and later versions.[1]

Contents

[edit] History

The Web Site Administration tool was first introduced with ASP.NET 2.0 along with ASP.NET Microsoft Management Console (MMC) Snap-in.[2]

[edit] Accessing the Tool

The Web Site Administration Tool could be accessed by clicking ASP.NET Configuration from the Website menu. It can also be accessed by clicking on the ASP.NET Configuration icon in the Solution Explorer window.

[edit] Features

The ASP.NET Web Site Administration tool is a multi-tabbed utility which has the following features:

  • Web Site Administration Tool Security Tab
  • Web Site Administration Tool Application Tab
  • Web Site Administration Tool Provider Tab
  • Web Site Administration Tool Internals

[edit] Web Site Administration Tool Security Tab

The security tab is used to create users and roles, group users under different roles and assign access rules either at the role-level or user-level.[3][4][5][6] When the Web site administration tool is opened to modify the existing settings, a new database is created in the App_Data folder of the application.[3] This database stores ASP.NET membership-related information. The name of the database created is ASPNETDB by default.[3]

The security tab simplifies and optimizes user authentication and authorization.[3] It makes it comparatively easy to configure user permissions than code-based user-defined authentication systems which require a great amount of time, cost and manpower. However, a major drawback of this tool is that access rules could be defined only at the folder-level and not at the page-level.

[edit] Web Site Administration Tool Application Tab

The Application tab is used to specify application settings, configure SMTP settings and enable or disable debugging and tracing apart from other uses.[4] The Application tab interacts with the configuration file of the application (web.config) and not with the ASPNETDB database.[7] Application settings are created as objects and inserted as name-value pairs in the web.config file.[7]

[edit] Web Site Administration Tool Provider Tab

The Provider tab is used to specify the database provider for the ASPNETDB database used to store ASP.NET membership and role information.[4][6] The security page does not appear unless and until the database provider is specified in the Providers tab. An SQL Data provider is generally used, but Oracle Data providers are also used in case of Oracle databases. The provider alloows the user the option of choosing a single database to store all data related to the ASP.NET Website Administration tool or different databases for each purpose.

[edit] Web Site Administration Tool Internals

Apart from these tabs, there are a number of other features and components associated with the ASP.NET Web Administration tool. The ASP.NET Configuration APIs which the ASP.NET Web Site Administration tool makes use of to access and modify the security and application settings in the Web.config file is one of them.

[edit] Programmatic access

Programmatic access to the features provided by the ASP.NET Web Site administration tool is made possible by inclusion of the System.Web.Security namespace in the ASP.NET program. The classes Membership and Roles are used to store, access and modify user information in the ASPNETDB database. The user could be authenticated using the Membership.ValidateUser or FormsAuthentication.Authenticate[8] methods. Page-based user authorization is realized by the usage of the AuthorizeRequest event of the HttpApplication class.[9]

[edit] References

  1. ^ ASP.NET Web Site Administration Tool. MSDN Visual Studio 2005 Development Center. Retrieved on 2008-05-22.
  2. ^ What's New in ASP.NET Configuration. MSDN Visual Studio 2005 Development Center. Retrieved on 2008-05-22.
  3. ^ a b c d Web Site Administration Tool Security Tab. MSDN. Retrieved on 2008-05-23.
  4. ^ a b c Selly, Dominic; Andrew Troelsen, Tom Barnaby (2005). Expert ASP.NET 2.0 Advanced Application Design: Advanced Application Design. Apress, 191. ISBN:159059522X. 
  5. ^ Lesson 9: Securing your Web Site with Membership and Login Controls. Retrieved on 2008-05-23.
  6. ^ a b Armstrong, Damon (2005). Pro ASP.NET 2.0 Website Programming. Apress, 2-6. ISBN:1590595467. 
  7. ^ a b .NET Configuration. Retrieved on 2008-05-23.
  8. ^ FormsAuthentication.Authenticate Method. MSDN. Retrieved on 2008-05-23.
  9. ^ HttpApplication..::.AuthorizeRequest Event. MSDN. Retrieved on 2008-05-23.