I have a WinForms application and a Website for my help file (I also have a SQL DB that I can use). I would like to only be able to access the website help when coming from my application. If the user were to attempt to view the help site on a new session
from outside the application, they would be denied and redirected to a login screen.
I am trying to think of a way I can get this done. Some ideas I have had were to generate some sort of "token" from my application and update my website SQLDB prior to opening the browser from my software. Then somehow use that token to authenticate the session.
If the token doesn't exist in the database then the user/session would be denied.
Should I use Anonymous (and manage authentication myself) or Forms Auth?
We previously used basic auth and used a URL that looked like this:
USERNAME:PASSWORD@www.MyWebsite.com
This is not supported anymore and we need to move on to something else.
In summary: If coming from my software, I want to automate and allow the access. If coming from outside of my application, denied, and redirected a login screen for access.
I am open to any ideas or thoughts.
Thank you in advance.