1.Topics‎ > ‎Dot.Net‎ > ‎C.ASP.NET‎ > ‎A.ASP.Net (Web Forms)‎ > ‎

Z.ASP.Net FAQ

    1. Releases History
      1. What’s new in ASP.NET 2.0 in terms of authentication?
    2. Architecture 
      1. What is the life cycle of a page in ASP.Net 4.0
      2. What is ASP.Net Application Life Cycle in 4.0
      3. What is ASP.NET HTTP modules 
      4. ASP.NET Http module vas GLobal.asax
      5. ASP.NET HTTP module Vs HTTP Handlers 
      6. ASP.Net HTTP Module Vs ISAPI Extensions 
      7. Asp.Net WebSite Vs Web Application Project
      8. What is the purpose of AutoEventWireUp 
      9. What is shadow copy in ASP.Net 
    3. State Management 
      1. Session Management 
        1. What are different session options available in ASP.Net 
        2. How to change session mode in ASP.Net?
        3. Advance Question on Session Management ( For Answer read this MSDN Forum Link)
          1. Session state works on some browsers, but not on others. Why?
          2. In InProc mode, why do I lose all my session occasionally?
          3. Session states works on some web servers but not on others.
          4. Why isn't session state available?
          5. Why isn't Session_End fired?
          6. Why are my Session variables lost frequently when using InProc mode?
          7. Why does the SessionID remain the same after the Session times out or abandoned?
          8. Why does the SessionID changes in every request?
          9. What is the difference between Session.Abandon() and Session.Clear()?
          10. Is the session Timeout attribute a sliding timeout value?
          11. Can I share session state between ASP.NET and ASP pages?
          12. Can I share session state between web applications (i.e. "virtual directories" or "applications" in IIS)?
          13. What kinds of object can I store in session state?
          14. Why did my request hang after I switch to SQLServer mode?
          15. How come Response.Redirect and Server.Transfer is not working in Session_End?
          16. In Session_End, do I have a valid HttpSessionState object and HttpContext object?
          17. How do I use session state with web services?
          18. I am writing my own HttpHandler. Why is session state not working?
          19. I am using a webfarm, and I lost session state when directed to some web servers.
          20. If using "cookieless", how can I redirect from a HTTP page to an HTTPS page?
          21. Does session state have a locking mechanism that serialize the access to state?
          22. How do I detect a session has expired and redirect it to anther page?
          23. In Session_End, I tried to do some cleanup job using SQL but it failed. Why?
          24. I am using SQLServer mode. Why aren't my sessions expiring?
          25. I have a frameset page which has an HTM extension, and I found out each frame it contains display a different session id on the first request. Why?
          26. I set EnableSessionState to "ReadOnly", but in InProc mode I can still modify the session. Why is that?
          27. I set "cookieless" to true, and now my session variables are lost after a Redirect. Why?
          28. What are the disadvantages of setting cookieless to true?
          29. In InProc mode, I change the timeout value of a session programmatically, and that causes my Session_End to be called. Why?
          30. In SqlServer mode, can I store my session state in a database other than tempdb?
          31. How can I avoid putting plain password for my sql connection?
          32. What SQL permissions do I need when using SqlServer mode?
          33. Can I write my own custom session state module?
          34. How does (de)serialization work in SqlServer and State Server mode?
          35. How can I secure my state server?
          36. Can I subscribe to SessionStateModule.End event using a non-global.asax handler method?
          37. Can different apps store their session state in different databases on the same SQL server?
      2. Cookie Management  
      3. View State 
        1. View State Vs Control State 
        2. Does server controls uses view state
        3. When and how to disable view state.
    4. UI and Controls
      1. What are different type of controls available in ASP.Net 
        1. Client Side Controls (Pure HTML Controls)
        2. Server Controls 
          1. HTML Server Controls (HTML Controls with RunAt="Server")
          2. ASP.Net Web Controls 
          3. Validation Controls 
          4. User Controls
      2. How Data Grid View performs paging.
      3. How does Validation controls works in ASP.Net
      4. HTML Server Vs ASP.Net Web Controls
      5. What is AutoPostBack?
      6. Which gets loaded first Master or Content page 
      7. How to access master page from content page.
      8. How master page can be changed dynamically.
      9. Can master pages be nested.
      10. What are themes skins and how they works
      11. How themes can be changes programmatically
      12. What is the purpose of Localize Controls
      13. What is the purpose of View and MultiView Control
      14. What is the purpose of Substitution controls
      15. Difference between GridView ,DataList ,Repeater controls
      16. Data Form View Vs Detailed View 

    5. HTML 5 with ASP.Net
      1. How to enable HTML5 features in VS2010
    6. ASP.Net Ajax
      1. How to check if a post back is regular post back or AsyncPostback
      2. What is conditional Update and why it is needed
      3. How and when to make Update Panel trigger Synchronous
      4. How and when external controls (out side update panel) can be used to trigger update panel
      5. What are the core ASP.Net AJAX Client Files 
        1. microsoftajax.js, microsoftajaxTimer.js, microsoftajaxWebForms.js
      6. What is PageRequestManger 
        1. It is a client side java script class that manages partial page updated
      7. What is the use of PageRequestManager Class
        1. Canceling request and showing update like progress bar
      8. What is the purpose of SYS.Application class in AJAX
      9. Can Update panel support multiple Async calls at a time?
      10. Difference between WCF service and AJAX enabled web service 
        1. Mainly it adds support for client callbacks and JSON. Read More ...
        2. It also provides Client side javascript proxy
      11. How ASP.Net AJAX uses the WCF web services
        1. WCF Web Services provides client side proxies that can be used to access web services
      12. What is the use of WebScriptServiceHostFactory 
      13. How to Add an ASP.NET AJAX Endpoint Without Using Configuration
      14. Wow can we check the JS web service proxy generated by WCF service  
      15. How to call ASMX web service through ASP.Net AJAX
      16. How to access static page methods in ASP.Net AJAX (i.e. without JSProxy) 
      17. How to make cross domain calls in ASP.Net AJAX/JQuery
        1. Use JSONP enabled web services If supported (Best Pick)
        2. Make Web Service XDR Compatible if you own it
        3. Server Side Proxy (Cross Domain Proxy)
          1. User Server side Proxy Pages
          2. HttpHandlers as server-side proxies
      18. Where we should load scripts in case of ASP.Net AJAX 
        1. Script manager should be used 
      19. How to optimize (reduce) number of script download 
        1. Use CompositeScript Tag of Script Manager control
      20. How to use ASP.Net AJAX Profile and Membership services on client 
      21. What is the use of ScriptReferenceProfiler 
      22. What are common script shortcut in client ajax library 
      23. What is the purpose of function.createdelegate method
      24. Function.CreateDelegate VS Function.CreateCallback
      25. What are the key namespaces that ASP.Net Ajax Client Library Provides
      26. How to enable localization in JSScripts 
      27. What are the scenarios in which we can use Sys.Net.WebRequest directly 
      28. How Java Scripts handles namespace problem
      29. How JavaScript support inheritance 
      30. How ASP.Net AJAX libraries implements interfaces
      31. What is Extender controls
    7. Authentication
      1. How do I decide my Authentication strategy in ASP.NET?
      2. How do I use Forms Authentication with SQL Server database?
      3. How do I use Forms Authentication with Active Directory?
      4. How do I enable Forms Authentication to work with multiple Active Directory domains?
      5. How do I protect Forms Authentication?
      6. How do I enforce strong passwords using membership feature in ASP.NET 2.0?
      7. How do I protect passwords in user store?
      8. What are the issues with Forms Authentication in Web Farm Scenario?
      9. How do I implement single sign on using forms authentication?
      10. How do I use my custom user / identity store with forms authentication?
      11. How do I configure account lockout using membership feature in ASP.NET 2.0?
      12. When and how do I use windows authentication in ASP.NET 2.0?
      13. How to enable Windows Authentication in ASP.Net Application 
      14. When and how do I use Kerberos authentication in ASP.NET 2.0?
    8. Authorization
      1. What's new in ASP.NET 2.0 in terms of Authorization?
      2. What's the difference between URL Authorization, File Authorization and Role Authorization?
      3. How do I use URL Authorization in ASP.NET 2.0?
      4. How do I use File Authorization in ASP.NET 2.0?
      5. How do I use Role Authorization in ASP.NET 2.0?
      6. How is the AuthorizationStoreRoleProvider different from Authorization Manager APIs?
      7. How do I use Windows Groups for role authorization in ASP.NET 2.0?
      8. How do I use my custom role store for roles authorization?
      9. How do I cache roles in ASP.NET 2.0?
      10. How do I protect authorization cookie when using role caching in ASP.NET 2.0?
      11. How do I lock authorization settings?
    9. Auditing and Logging
      1. What's new in ASP.NET 2.0 in terms of Auditing and Logging?
      2. How do I use the Health Monitoring feature in ASP.NET 2.0?
      3. What all security events do health monitoring feature logs by default?
      4. How do I instrument my application for security?
      5. When writing to a new event source from my ASP.NET application running under the Network service security context, I get registry permission exception. Why is this and how do I correct this?
      6. How do I protect audit and log files?
    10. Code Access Security
      1. What's new in ASP.NET 2.0 in terms of Code Access Security?
      2. How do I use Code Access Security with ASP.NET?
      3. How do I create a custom trust level for ASP.NET?
      4. What are the permissions at the various trust levels?
      5. How do I write partial trust applications?
      6. When should I put assemblies in GAC, what are security implications?
      7. What is permission calculator tool
    11. Impersonation/Delegation
      1. When do I use impersonation in ASP.NET 2.0?
      2. How do I impersonate the original caller?
      3. How do I temporarily impersonate the original caller?
      4. How do I impersonate a specific (fixed) identity?
      5. When should I use programmatic impersonation?
      6. How do I use programmatic impersonation?
      7. What is protocol transition and when do I use it?
      8. What is Constrained Delegation?
      9. How can I retain impersonation in the new thread created from ASP.NET application?
    12. Configuration
      1. What does a secure web.config look like?
      2. How do I encrypt sensitive data in machine.config or web.config file?
      3. How do I run an ASP.NET application with a particular identity?
      4. How do I create a service account for running my ASP.NET applications?
      5. Do I need to create a unique user account for each application pool?
      6. How do I lock configuration settings?
      7. How may ways we can alter configuration of an ASP.Net application
        1. At Machine.Config, Site Root (Web.config), Virtual Dir (Web.config), Sub Dir (Web.config)
        2. Most preferred model is Virtual Dir (Web.config)
      8. What is the purpose of Location tag in configuration file
      9. What are the configuration elements that can not be applied at sub directory level 
      10. What is Process Model tag and where it can be applied
      11. What happens when a configuration file is edited on a live web server ?
        1. It causes app domain to recycle and and all state information is lost.
      12. What are the way to create custom configuration section in a configuration file.
        1. By creating a class derived from
        2. By using XML Serialization
          1. http://www.codeproject.com/Articles/6964/Using-XML-Serialization-to-Read-Custom-Configurati
          2. http://www.codeproject.com/Articles/22534/Strongly-Typed-Custom-Configuration-Sections-using 
      13. How to lock configuration settings at higher level directories so that lower level can not override
      14. What are the special directories in ASP.Net 
    13. Exception Handling
      1. How do I handle exceptions securely?
      2. How do I prevent detailed errors from returning to the client?
      3. How do I use structured exception handling?
      4. How do I setup a global exception handler for my application?
      5. How do I enable my ASP.NET application to write to new event source?
    14. Data Access
      1. How do I protect the database connection strings in web.config file?
      2. How do I use windows authentication for connecting to SQL server?
      3. How do I use SQL authentication for connecting to SQL server?
      4. When using Windows authentication, how can I give the default ASP.NET worker process access to a remote database server?
      5. Can my ASP.NET web application use a Microsoft Access database?
      6. Can my ASP.NET web application use a SQL Server Express database in production?
      7. Can I combine ASP.NET membership tables and my own application tables in a single database, or do I have to keep the ASP.NET membership database separate?
      8. How can Visual Studio 2010 and Visual Studio 2012 share a project that uses a database?
    15. Input / Data Validation
      1. What are the types of input I need to validate in my ASP.NET application?
      2. How do I validate input in server-side controls?
      3. How do I validate input in HTML controls, QueryString, cookies, and HTTP headers?
      4. What is cross-site scripting and how do I protect my ASP.NET application from cross-site scripting attacks?
      5. What is SQL injection and how do I protect my application from SQL injection attacks?
    16. Sensitive Data
      1. How do I protect my web application's ViewState?
      2. What care should I take when securing ViewState in a web farm scenario?
      3. How do I protect sensitive data in the database?
      4. How do I protect sensitive data in configuration files?
      5. How do I protect sensitive data in memory?
      6. How do I protect passwords?
    17. Strong Naming and Signing
      1. How do I strong-name an ASP.NET application assembly?
      2. How should I delay sign an ASP.NET application assembly?
      3. When should I use .pfx files?
      4. When should I pre-compile my ASP.NET application?
      5. How do I pre-compile my ASP.NET application?
      6. How do I strong name an ASP.NET application?
      7. How do I Sign .Net assemblies with Authenticode signature?
    18. Diagnostics
      1. How to enable ASP.Net tracing at application level. 
      2. How to redirect custom trace to ASP.Net trace and visa versa 
      3. How to redirect server error to custom error pages
      4. What are web events and how to use them.
      5. How to log ASP.Net events to SQL Server 
      6. How to enable heart beat monitoring in ASP.Net
      7. How to configure ASP.Net events to be delivered by email 
      8. How to create custom asp.net webevents
    19. Deployment 
      1. Can I exclude specific files or folders from deployment?
      2. Why don't all of the files in my project folder get deployed?
      3. Can I include specific files or folders from outside of my project folder?
      4. How do I disable Web.config transformation?
      5. When should I use Web Deploy parameters instead of Web.config transformations?
      6. How do I deploy an Entity Framework database that uses DbContext without using Migrations?
      7. How can I debug the deployment packaging or publishing process?
      8. Can I use Remote Agent service over HTTPS with one-click publish?
      9. Can I use the Web Deploy tempAgent provider setting with one-click publish?
      10. Can one-click publish create a package for archival purposes?
      11. Can I specify that a package should be created every time I build a solution?
      12. How do I keep my application domain from restarting multiple times during a long deployment process?
      13. Why do I get an error that says ASP.NET 4 is required when ASP.NET 4 is already installed?
      14. Why does deployment fail when it attempts to execute CREATE USER or CREATE ROLE database commands?
      15. Can I create a single package and use it to deploy to both IIS 6 and IIS 7?
      16. Why does remote deployment fail for large files, although local deployment succeeds?
      17. How to refer a GAC assembly in ASP.Net Web Site Project
        1. Use @Assembly Page directive
        2. Use Config <Assembly> tag
      18. How to refer a GAC Assembly in ASP.Net Application Project.
        1. Need to add DLL reference from GAC like any other DOT.Net Application or library
      19. GAC Vs Private deployment of ASP.Net application 
        1. GAC support Side by side multi version deployment and allow other application to share same dll.
        2. GAC deployment should not be promoted due to maintenance overhead.
        3. There is now way of side by side deployment of private assembly.
      20. What are the deployment Types in ASP.Net
        1. XCopy (Whole websites is copied)
        2. Compiled 
          1. Whole Binary (No source Aspx file will be generated)
          2. Update-able source ( Aspx markup file will be copied)
      21. What are different deployment approaches available in Asp.Net.
      22. What is ILMearge.EXE
      23. What is the purpose of Aspnet_merge.exe
    20. Obfuscation
      1. How should I prevent someone from disassembling code?