Site Naming Conventions

It is important to be careful of site naming conventions within protected areas to make the user experience as smooth as possible. In particular, even if you have set both and to refer to the same server, it important that links within protected areas be consistently named with one server name, or identified without the server name by path only. This arises because of the way browsers interpret the application of cached credentials as they encounter requests. and will not be considered to be the same server by the browser, and it will ask for credentials a second time. This is harmless, however, it is disconcerting to users who know they are already logged in and do not expect further login prompts.


Access to User Names and Session State
Meta-Refresh Directives
table of contents
full printable document





password protection ...
... industrial strength
distributed password protection
iis basic authentication
iis digest authentication

copyright(c) 2003
all rights reserved

design -