ONJava.com -- The Independent Source for Enterprise Java
oreilly.comSafari Books Online.Conferences.

advertisement

AddThis Social Bookmark Button
Article:
  ASP.NET Forms Authentication - Part 1
Subject:   Emergency-Form level authentication
Date:   2004-06-10 16:38:26
From:   altanic
Response to: Emergency-Form level authentication

look into the URLAuthorization stuff. I don't claim to have a solid handle on this but I've accomplished a working example on doing exactly what you guys ask for by setting each file/folder's authorization settings in the web.config file.


You would want to add an element such as:
<location path="PublicPage.aspx">
<system.web>
<authorization>
<allow users="*"/>
</authorization>
</system.web>
</location>


for each item/folder you want to be freely available to everybody. Conversely, you could open your whole site to allow users="*" and then change the above to:


<location path="protected_directory">
<system.web>
<authorization>
<deny users="?"/>
</authorization>
</system.web>
</location>


so as to protect this one directory. (or page if you like)


I think the key comes in understanding the <location> element and how it is used. Once you learn this you'll know enough.


1 to 1 of 1
  1. Emergency-Form level authentication
    2004-09-10 14:23:49  Bev3 [View]

1 to 1 of 1