Click here to Skip to main content
12,450,352 members (44,737 online)
Click here to Skip to main content


111 bookmarked

HttpSecureCookie, A Way to Encrypt Cookies with ASP.NET 2.0

, 3 Apr 2006 Ms-PL
Discussing how to encode and tamper-proof text and cookies using the MachineKey, by using reflection.
<%@ Page Language="C#" %>
<%@ Import Namespace="AdamTibi.Web.Security" %>

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "">

<script runat="server">
    protected void btnStore_Click(object sender, EventArgs e) {
        HttpCookie cookie = new HttpCookie("UserName", "Terminator");
        cookie.Expires = DateTime.Now.AddDays(1);
        HttpCookie encodedCookie = HttpSecureCookie.Encode(cookie);

    protected void btnDisplay_Click(object sender, EventArgs e) {
        HttpCookie cookie = Request.Cookies["UserName"];
        lblDisplayBefore.Text = cookie.Value;
        HttpCookie decodedCookie = HttpSecureCookie.Decode(cookie);
        lblDisplayAfter.Text = decodedCookie.Value;

<html xmlns="" >
<head runat="server">
    <title>Untitled Page</title>
    <form id="form1" runat="server">
        Clicking this button will encode and store a cookie with Name=UserName and Value=Terminator<br />
        <asp:Button ID="btnStore" runat="server" OnClick="btnStore_Click" Text="Store" /><br />
        <br />
        Clicking this button will decode and display the content of the cookie havine Name=UserName<br />
        <asp:Button ID="btnDisplay" runat="server" OnClick="btnDisplay_Click" Text="Display" /><br />
        Before Decoding:
        <asp:Label ID="lblDisplayBefore" runat="server"></asp:Label><br />
        After Decoding:&nbsp; &nbsp;&nbsp;<asp:Label ID="lblDisplayAfter" runat="server"></asp:Label></div>

By viewing downloads associated with this article you agree to the Terms of Service and the article's licence.

If a file you wish to view isn't highlighted, and is a text file (not binary), please let us know and we'll add colourisation support for it.


This article, along with any associated source code and files, is licensed under The Microsoft Public License (Ms-PL)


About the Author

Adam Tibi
United Kingdom United Kingdom
Passionate about refining software practices, promoting self-motivated teams and orchestrating agile projects that hit the deadline.
Lives in London, UK and works as a .NET architect consultant in the City.

Need a pro service to help your organisation? Contact me via my website

You may also be interested in...

| Advertise | Privacy | Terms of Use | Mobile
Web02 | 2.8.160826.1 | Last Updated 3 Apr 2006
Article Copyright 2006 by Adam Tibi
Everything else Copyright © CodeProject, 1999-2016
Layout: fixed | fluid