We are using FormsAuthentication with custom MembershipProvider and custom RolePrivoder. For our Users we

Question

0

Asked: May 29, 20262026-05-29T11:36:53+00:00 2026-05-29T11:36:53+00:00

We are using FormsAuthentication with custom MembershipProvider and custom RolePrivoder. For our Users we

0

We are using FormsAuthentication with custom MembershipProvider and custom RolePrivoder. For our Users we have a unique UserName, ID (mssql auto-key) and a GUID (all three unique).

I’m not sure which one to use for the Formsauthentication:

FormsAuthentication.GetAuthCookie(userName, false);

UserName, ID or GUID. Can we even store all three informations as UserData in the FormsTicket.

Per Default Asp.net takes the UserName (e.g. E-Mail adress). But I think UserName is a little bit weak if it is stored on the client. A MSSQL Auto-Key also.

So what is the securest way?

Report

Leave an answer
Cancel reply

You must login to add an answer.

Need An Account,

1 Answer

Editorial Team · Answer 1 · 2026-05-29T11:37:08+00:00

Editorial Team

2026-05-29T11:37:08+00:00Added an answer on May 29, 2026 at 11:37 am

You can serialize and encrypt your UserData object to a string and use that for the cookie.

I answered a similar question about that here:
Store user data in MVC 2

0

Reply
Share
Share

- Report

Sign Up

Sign In

Forgot Password

The Archive Base Latest Questions

We are using FormsAuthentication with custom MembershipProvider and custom RolePrivoder. For our Users we

Leave an answerCancel reply

1 Answer

Leave an answer
Cancel reply