Skip to content

Latest commit

 

History

History
38 lines (25 loc) · 1.11 KB

README.md

File metadata and controls

38 lines (25 loc) · 1.11 KB

httpsecurecookie

Store encrypted data within encoded cookies for use in server-side implementations without requiring sessions.

Note: 0.2 version of the assembly uses new .NET machine key api. Use NET40 compiler constant to target 4.0 encode/decode pair (obsolete, but works). Use NET45 compiler constant to target 4.5 protect/unprotect pair. Delta code added by Keyur, Infosys.

I originally wrote about the need for encrypted cookies a while back, 2006 to be accurate: http://www.codeproject.com/Articles/8742/Encrypting-Cookies-to-prevent-tampering

This library is conveniently hosted on NuGet at http://nuget.org/httpsecurecookie

PS> Install-Package httpsecurecookie

Some sample code to illustrate how easy it is to encrypt:

void Set_CookieValue()
{
    HttpCookie cookie = new HttpCookie("protect");
    cookie.Value = "protect_this_value";

    Response.Cookies.Set(HttpCookieEncryption.Encrypt(cookie));
}

void Get_CookieValue()
{
    HttpCookie protected = HttpCookieEncryption.Decrypt(Request.Cookies["protect"]);

	string protected_And_tamperProof_Value = protected.Value;
}