<?xml version="1.0" encoding="utf-8"?>
<configuration>
    <connectionStrings>
    <!--
    This connection is inherited from the ASP.NET Quickstart Web.config file
    Uncomment this section to edit the sample locally

    <add name="ASPNETDB" connectionString="Server=(local)\SQLExpress;Integrated Security=SSPI;Database=aspnetdb"/>

    -->
    </connectionStrings>
    <system.web>
        <authorization>
            <deny users="?" />
        </authorization>
        <authentication mode="Forms" >
          <forms 	name=".ASPXAUTH"  
			loginUrl="Login.aspx" 
			protection="All" 
			timeout="30" 
			path="/"
			requireSSL="false" 
			slidingExpiration="true" 
			defaultUrl="login.aspx" 
			cookieless="UseDeviceProfile" 
			enableCrossAppRedirects="false"/>
        </authentication>
	<membership defaultProvider="QuickStartMembershipSqlProvider" userIsOnlineTimeWindow="15">
	  <providers>
		<add
			name="QuickStartMembershipSqlProvider"
			type="System.Web.Security.SqlMembershipProvider, System.Web, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a" 
			connectionStringName="ASPNETDB" 
			enablePasswordRetrieval="false" 
			enablePasswordReset="true" 
			requiresQuestionAndAnswer="true" 
			applicationName="SecurityQuickStart" 
			requiresUniqueEmail="true" 
			passwordFormat="Hashed"/>
	  </providers>
	</membership>

	<roleManager 
			enabled="true" 
			cacheRolesInCookie="true" 
			defaultProvider="QuickStartRoleManagerSqlProvider" 
			cookieName=".ASPXROLES" 
			cookiePath="/"
			cookieTimeout="30" 
			cookieRequireSSL="false" 
			cookieSlidingExpiration="true" 
			createPersistentCookie="false" 
			cookieProtection="All">
	  <providers>
		<add 	name="QuickStartRoleManagerSqlProvider" 
			type="System.Web.Security.SqlRoleProvider, System.Web, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a" 
			connectionStringName="ASPNETDB" 
			applicationName="SecurityQuickStart"/>
	  </providers>
	</roleManager>

	<compilation debug="false"/>
    <webParts>
      <personalization defaultProvider="QuickStartPersonalizationSqlProvider">
                <providers>
                    <add name="QuickStartPersonalizationSqlProvider"
                         type="System.Web.UI.WebControls.WebParts.SqlPersonalizationProvider, System.Web, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a"
                         connectionStringName="ASPNETDB"
                         applicationName="SecurityQuickStart" />
                </providers>

        <authorization>
          <allow roles="WebPartAdministrators" verbs="enterSharedScope" />
        </authorization>
      </personalization>
    </webParts>   

    </system.web>
    <location path="CreateUser.aspx">
      <system.web>
        <authorization>
          <allow users="?" />
        </authorization>
      </system.web>
    </location>
</configuration>