I have an asp.net project and I am trying to develop the user profile part, so that users can log in with their own profile (profile containing admin and users).Is it okay to set a cookie on users computer, when the user is logged in and then let the user browse in site?I mean after after I check user name and password, by checking this cookie on every page I let the user browse the page or redirect to the login page.Is this way okay?
Is this safe to use?
Is there any better approach for this?
Is this safe to use?
Is there any better approach for this?