This articles was originally at wiki.asp.net but has now been given a new home on CodeProject. Editing rights for this article has been set at Bronze or above, so please go in and edit and update this article to keep it fresh and relevant.
AJAX adds one more wrinkle to web security. I find that videos and demonstrations help me understand subtle topics like this.
Videos
- Security in ASP.NET AJAX Client Applications - In this webcast, we cover Microsoft ASP.NET AJAX client application security from every angle. We discuss the common security attacks your applications may encounter and how to protect against them.
- How Do I: Secure my Site using Membership and Roles? - Learn how to secure a web site using the new Membership and Roles features of ASP.NET 2.0. Topics include user registration, password recovery, and restricting access to content with roles.
Webcasts
From a series of Webcasts that Joe Stagner put together, this is a five part series on Ajax and Security. Long, but worth your time.
Blogs
Enjoy.
The ASP.NET Wiki was started by Scott Hanselman in February of 2008. The idea is that folks spend a lot of time trolling the blogs, googlinglive-searching for answers to common "How To" questions. There's piles of fantastic community-created and MSFT-created content out there, but if it's not found by a search engine and the right combination of keywords, it's often lost.
The ASP.NET Wiki articles moved to CodeProject in October 2013 and will live on, loved, protected and updated by the community.