<?xml version="1.0"?>
<configuration xmlns="http://schemas.microsoft.com/.NetConfiguration/v2.0">
  <connectionStrings>
   
    <!-- 
	This connection is inherited from the ASP.NET Quickstart Web.config file
    Uncomment this section to edit the sample locally 
	
    <add name="ASPNETDB" connectionString="Server=(local)\SQLExpress;Integrated Security=SSPI;Database=aspnetdb"/>
		-->
	</connectionStrings>

  <system.web>
    <authentication mode="Forms">
      <forms	name=".ASPXAUTH" 
					loginUrl="Login.aspx" 
					protection="All" 
					timeout="30" 
					path="/"
					requireSSL="false" 
					slidingExpiration="true" 
					defaultUrl="Login.aspx" 
					cookieless="UseDeviceProfile" 
					enableCrossAppRedirects="false"/>
    </authentication>

    <membership defaultProvider="QuickStartMembershipSqlProvider" userIsOnlineTimeWindow="15">
      <providers>
			  <add
					name="QuickStartMembershipSqlProvider"
					type="System.Web.Security.SqlMembershipProvider, System.Web, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a" 
					connectionStringName="ASPNETDB" 
					enablePasswordRetrieval="false" 
					enablePasswordReset="true" 
					requiresQuestionAndAnswer="true" 
					applicationName="LoginControls"
					requiresUniqueEmail="true" 
					passwordFormat="Clear"/>
		  <!--SECURITY NOTE: The most secure passwordFormat is hashed. 
			  The hashed option only supports enablePasswordReset.
			  If you need to enablePasswordRetrieval the most secure format is encrypted.
			  Encypting your password requires a pre-defined machine key. 
			  To enable these samples to run on all machines without machine key configuration
			  we are using the clear password format-->
      </providers>
    </membership>

    <roleManager 
					enabled="true" 
					cacheRolesInCookie="true" 
					defaultProvider="QuickStartRoleManagerSqlProvider" 
					cookieName=".ASPXROLES" 
					cookiePath="/"
					cookieTimeout="30" 
					cookieRequireSSL="false" 
					cookieSlidingExpiration="true" 
					createPersistentCookie="false" 
					cookieProtection="All">
      <providers>
        <add name="QuickStartRoleManagerSqlProvider" 
					type="System.Web.Security.SqlRoleProvider, System.Web, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a" 
					connectionStringName="ASPNETDB" 
					applicationName="LoginControls"/>
      </providers>
    </roleManager>
    <authorization>
      <allow users="*"/>
    </authorization>
  </system.web>

</configuration>
