In ASP.NET, while we could use very similar code to that of the ASP example, we'll instead use the web.config.
web.config
----------
Web.config is an XML file that can be used in various ways, such as setting up common connection strings to databases, or creating custom 404 error pages.
Inside the <system.web> element we define the authorization for the site, we can allow and deny users based on usernames, or the groups to which they belong.
Here we deny all anonymous users using <deny users="?" />
Now we need to provide a mechanism for users to authentication themselves, there are several methods we could use,
but we are using mode="Forms" to tell ASP.NET that we are going to be using a form based login process which we define in the <forms> subtag.
The <forms> element can take a number of attributes, the name defines the cookie use for authentication, and loginUrl which it the url of the login page.
While ASP.NET uses a cookie called LoggedIn to keep track of logged in users, unlike PHP the ASP.NET cookie is automatically encrypted and validated to prevent tampering.
login.aspx
----------
The login page, while looking very similar in a browser to the asp/php login page is actually coded very differently.
Rather than coding the <input> tags directly we have ASP.NET create them using <asp:TextBox> web controls.
We then add a submit button using another web control, and add an onClick event to it.
When this button is clicked the page will be posted back to itself and the code inside LoginBtn_Click will be executed.
The text properties of username and password are compared to the correct details, if they match the user is redirected back to the originally requested page.
Otherwise the text in the Label webcontrol is set to "Error"
