Managing Users by Using Membership
ASP.NET membership enables you to validate and manage user information for your Web application. It provides functionality for validating user credentials, creating and modifying membership users, and managing user settings such as passwords and e-mail addresses. ASP.NET membership is primarily intended for use with ASP.NET forms authentication, but can be used anywhere within an ASP.NET application.
ASP.NET membership enables you to manage user authentication for your application while keeping the user information in the data source of your choice. Because ASP.NET membership uses providers to the membership data source, it does not require extensive code to read and write membership information.
ASP.NET membership consists primarily of built-in membership providers, which communicate with the data source, and the static Membership class that exposes the functionality of the membership providers. You call the Membership class from your ASP.NET code to perform user validation and management.
Most of the functionality that the Membership class and the membership providers provide is encapsulated in several user management web controls. For more information, see the Login control.
In This Section
Basic Security Practices for Web Applications
Describes common types of Web site security attacks and how to help prevent them.
Security in the .NET Framework
Describes general .NET Framework security concepts, services, and best practices.
Securing ASP.NET Web Sites
Provides links to all topics on security in ASP.NET security.
ASP.NET Login Controls Overview.
Provides information about controls you can use to create pages for logging in, managing passwords, and creating new users.