I am trying to pass auth forms from the root application to a routine running in a virtual directory. I am having problems authenticating with a sub site.
In the parent application, everything works as expected.
I have the following setup:
Parent application:
- URL :
http://localhost:1336/ <forms loginUrl="~/account/sign-in" protection="All" timeout="30" name=".MYAPPLICATION" path="/" requireSSL="false" slidingExpiration="true" cookieless="UseDeviceProfile" enableCrossAppRedirects="true" defaultUrl="/" />
Virtual directory:
- URL :
http://localhost:1336/subsite <forms loginUrl="/account/sign-in" protection="All" timeout="30" name=".MYAPPLICATION" path="/" requireSSL="false" slidingExpiration="true" cookieless="UseDeviceProfile" enableCrossAppRedirects="true" defaultUrl="/" />
When I try to execute http://localhost:1336/subsite , I get the following stream:
- GET for
http://localhost:1336/subsite β 302 to / account / sign-in? ReturnUrl =% 2fsubsite (looks normal) - Enter username / password
- POST to
http://localhost:1336/account/sign-in?ReturnUrl=%2fsubsite β 302 / subsite (great, auth looks like successful) - GET for
http://localhost:1336/subsite β 302 to / account / sign-in? ReturnUrl =% 2fsubsite (IE, the child node does not consider it authenticated)
I can also see the cookie in the list in my browser (so itβs actually there)
What I got wrong in my configuration that stops my child node from sharing the parent cookie?
I am running this on IISExpress
source share