Re: ASPNET-IIS directories security

Tech Tip: Click here to run a free scan for Windows Errors and optimize PC performance

From: Michał Januszczyk (anonymous_at_discussions.microsoft.com)
Date: 03/19/04 

Date: Thu, 18 Mar 2004 16:46:08 -0800

     ----- Natty Gur wrote: -----
     
     Hi,
     
     You might consider using forms authentication. You can set different
     web.config setting for each sub directory.
     

I've already tried this. Had that been aspx files that I want to protect, this would work. However
these are jpeg files, so ASPNET does not get involved in processing request for them.
It is IIS only (and NTFS) to allow or not access to the files.

Michal

Relevant Pages

  • Re: Securing files for download.
    ... with ASPX files. ... > I have forms authentication set and can deny access to aspx file in a ... > enter the URI of the file and download it without any login. ... I think this would work but SQL space costs ...
    (microsoft.public.dotnet.framework.aspnet.security)
  • Re: forms authentication in subdirectory
    ... The issue is that you can't put the Authentication node in sub directory ... <!-- this would appear in the configuration section (probably prior to ...
    (microsoft.public.dotnet.framework.aspnet)
  • Re: File level permissions using the web.config & forms authentication
    ... Can you put them in a sub directory and use tag to do the ... Girish Bharadwaj ... "Stu Lock" wrote in message ... > authentication to block the entire folder: ...
    (microsoft.public.dotnet.framework.aspnet)
  • Re: Force to login page first
    ... If you look up <authentication> element in the documentation you'll find that its pretty easy to set that up. ... I have many aspx files in an web application. ... Is it possible to enforce the application to divert to login page first even though the user type the URL directly in the IE?? ...
    (microsoft.public.dotnet.framework.aspnet)
  • Re: Force to login page first
    ... check out forms authentication. ... I have many aspx files in an web application. ... Is it possible to enforce the application to divert to login page first even though the user type the URL directly in the IE?? ...
    (microsoft.public.dotnet.framework.aspnet)