In my work place, we have several classic ASP and ASP.NET application.
All these application though doing different works are integrated through a single sign on mode, which is handled by one main application.
The main application is in classic ASP and verifies the userid and password initially and then stores the UserID in a session variable, which is then used by all other ASP and ASP.NET page as a valid Authenticated user. (For DOT NET pages we use session bridging)
Is this how authentication is done is classic ASP? (I dont know classic ASP much)
From the time I was introduced to this setup, I started to worry whether this setup is flawless? Is there any better way to handle the same ?
Will it be possible to authenticate for both classic asp and DOT NET in the same login page?