PassMark Logo
Home » Forum

Announcement

Collapse
No announcement yet.

Indexing File Requiring Authentication

Collapse
X
 
  • Filter
  • Time
  • Show
Clear All
new posts

  • Indexing File Requiring Authentication

    Hello,
    I am using Zoom Search 6.0 (build 102.

    I am trying to index files on an ASP.NET 4.0 website with Forms Authentication enabled.
    The version of IE on my indexing machine in 9.0.5.

    I have read the documentation on Authentication listed here:
    http://www.wrensoft.com/zoom/support/auth.html

    In addition, I have read the posting here:
    http://www.wrensoft.com/forum/showthread.php?t=3530

    I am having difficulty authenticating while indexing.
    I tried using Cookies from IE setting to no avail.
    Next, I tried the Automatic Login feature, with no luck.
    I stripped down my login page to the bare minimum, having only on button that performs a postback, which didn't do the trick either.

    Unfortunately, none of my efforts have succeeded.

    Any help would be greatly appreciated.

    Thanks,
    Jeff

  • #2
    There are a few different ways authentication can be done with .NET, can you post the URL for your login form so we can have a look at it.

    Comment


    • #3
      Your form may need additional parameters to login, besides just the username and password. For example, it may need the name of the Submit button that was clicked (often the case if the form has multiple actions, e.g. another button will retrieve password for the username entered). In which case, you will need the V7 Alpha to specify the additional parameters (see post #4 in the thread below):
      http://www.wrensoft.com/forum/showthread.php?t=4676

      If you can change the authentication code, you may also be able to allow a particular IP address or User-Agent string to bypass the authentication. This will depend on your coding ability though.
      --Ray
      Wrensoft Web Software
      Sydney, Australia
      Zoom Search Engine

      Comment


      • #4
        Thanks for the replies,

        Ray, I took your suggestion and found a fairly simple solution.

        I am using the global.asax to catch IP and User Agent.

        protected void Application_AuthenticateRequest(object sender, EventArgs e)
        {
        if (Request.UserHostAddress == "10.10.10.100"
        & Request.UserAgent == "ZoomSpider - wrensoft.com [ZSEBOT]")
        {
        HttpContext.Current.SkipAuthorization = true;
        }
        }

        Thanks,
        Jeff

        Comment


        • #5
          Looks good. It is easy for forge the user agent. But not so easy to forge the IP address. Should be secure.

          Comment


          • #6
            The enterprise edition of Zoom also lets you change the User-Agent string (under "Configure"->"Advanced"). So you could potentially change it to something private if security is really really important. But as mentioned, the above is generally enough.
            --Ray
            Wrensoft Web Software
            Sydney, Australia
            Zoom Search Engine

            Comment

            Working...
            X