<?xml version="1.0"?>
<configuration xmlns="http://schemas.microsoft.com/.NetConfiguration/v2.0">
	<connectionStrings>

		<!-- 
	This connection is inherited from the ASP.NET Quickstart Web.config file
    Uncomment this section to edit the sample locally 
	
    <add name="ASPNETDB" connectionString="Server=(local)\SQLExpress;Integrated Security=SSPI;Database=aspnetdb"/>
		-->
	</connectionStrings>

	<system.web>
		<authentication mode="Forms">
			<forms	name=".ASPXAUTH" 
						  loginUrl="Login.aspx" 
						  protection="All" 
						  timeout="30" 
						  path="/"
						  requireSSL="false" 
						  slidingExpiration="true" 
						  defaultUrl="Login.aspx" 
						  cookieless="UseDeviceProfile" 
						  enableCrossAppRedirects="false"/>
		</authentication>

		<membership defaultProvider="QuickStartMembershipSqlProvider" userIsOnlineTimeWindow="15">
			<providers>
				<add
					  name="QuickStartMembershipSqlProvider"
					  type="System.Web.Security.SqlMembershipProvider, System.Web, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a" 
					  connectionStringName="ASPNETDB" 
					  enablePasswordRetrieval="false" 
					  enablePasswordReset="true" 
					  requiresQuestionAndAnswer="true" 
					  applicationName="LoginControls"
					  requiresUniqueEmail="true" 
					  passwordFormat="Clear"/>
				<!--SECURITY NOTE: The most secure passwordFormat is hashed. 
			  The hashed option only supports enablePasswordReset.
			  If you need to enablePasswordRetrieval the most secure format is encrypted.
			  Encypting your password requires a pre-defined machine key. 
			  To enable these samples to run on all machines without machine key configuration
			  we are using the clear password format-->
			</providers>
		</membership>

		<roleManager 
						enabled="true" 
						cacheRolesInCookie="true" 
						defaultProvider="QuickStartRoleManagerSqlProvider" 
						cookieName=".ASPXROLES" 
						cookiePath="/"
						cookieTimeout="30" 
						cookieRequireSSL="false" 
						cookieSlidingExpiration="true" 
						createPersistentCookie="false" 
						cookieProtection="All">
			<providers>
				<add name="QuickStartRoleManagerSqlProvider" 
							type="System.Web.Security.SqlRoleProvider, System.Web, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a" 
							connectionStringName="ASPNETDB" 
							applicationName="LoginControls"/>
			</providers>
		</roleManager>
		<authorization>
			<allow users="*"/>
		</authorization>
	</system.web>

</configuration>
