Disabling AuthFilter

  • Article

If you do not want the AuthFilter to be applied to your site at the site level, you must select No Filter mode in the Commerce Authentication Filter section of the General Properties tab for an application. You must also remove Autocookie generation for the site.

When you select the No Filter mode for the CS Authentication resource, the AuthFilter is not applied to the Web site. However, if you select No Filter and Autocookie generation is enabled, the AuthFilter is applied to the site.

In No Filter mode, the site developer can apply authentication to individual Active Server Pages (ASP) by invoking methods exposed by the AuthManager object. AuthManager is a Component Object Model (COM) object that exposes methods for identifying users and controlling access to dynamically generated content. For example, a site developer could invoke the GetUserID method of AuthManager to identify a user based on a cookie or a query string.

The Solution Sites for Commerce Server 2000 by default use the No Filter mode and have implemented an authentication scheme based on AuthManager. If you want to change the sites to take advantage of the AuthFilter, you will need to make some changes to the Login.asp and other helper pages for the sites. For more information, see Enabling AuthFilter for the Retail Solution Site and Enabling AuthFilter for the Supplier Solution Site.

To disable AuthFilter

  1. Expand Commerce Server Manager, expand Commerce Sites, and then click the site you want to administer.

  2. Expand Applications, right-click the application you want to configure, and then click Properties.

  3. In the Properties dialog box, in the General tab, in the Authentication Filter box, select No Filter.

  4. Clear the Autocookie box if it is checked, and then click OK.

Ee796844.note(en-US,CS.10).gif Notes

  • After you change a property value in Commerce Server Manager, you must restart Internet Information Services (IIS) 5.0 in order for the change to take effect. For instructions, see Restarting IIS.

  • If you disable AuthFilter for a site by choosing No Filter mode, you must manually configure the security settings that you need on the site. To manually configure the security settings, use IIS, select the security settings that you want for that site, and then restart IIS. For instructions, see Restarting IIS.

See Also

Working with Site Security and Filters

Enabling AuthFilter for the Retail Solution Site

Enabling AuthFilter for the Supplier Solution Site

Unloading an Application from Memory


All rights reserved.