I have the following code in my web application asp.net using C#: bool isValid

Question

0

Asked: June 13, 20262026-06-13T03:24:01+00:00 2026-06-13T03:24:01+00:00

I have the following code in my web application asp.net using C#: bool isValid

0

I have the following code in my web application asp.net using C#:

            bool isValid = pc.ValidateCredentials(username.Text, password.Text);
            if (isValid == true)
            {
                Session["user"] = username.Text;
            }

The username is actually a textbox. The end-user will key in their username and password, which will authenticate against a AD (Active Directory) server using the PrincipalContext pc.

So, I was wondering if it is safe or are there improvement to be make for the above code so that it can be more secure?

Report

Leave an answer
Cancel reply

You must login to add an answer.

Need An Account,

1 Answer

Editorial Team · Answer 1 · 2026-06-13T03:24:05+00:00

Editorial Team

2026-06-13T03:24:05+00:00Added an answer on June 13, 2026 at 3:24 am

Yes, storing the username in the session is safe because the session is stored on the server. On the other hand you probably want to read about Forms Authentication to make sure that you are not reinventing some wheels.

0

Reply
Share
Share

- Report

Sign Up

Sign In

Forgot Password

The Archive Base Latest Questions

I have the following code in my web application asp.net using C#: bool isValid

Leave an answerCancel reply

1 Answer

Leave an answer
Cancel reply