stackoom
  简体   繁体   中英

MVC website - how to prevent access to static files

 原文  2016-04-05 11:51:55       asp.net-mvc/ security

Question

I have a MVC website, without authentication. In the website directory I have a folder \\ProjectNotes which contains a file inside, Notes.txt. Neither this folder nor the text file are a part of the solution, but still get copied up on publish.

My problem is that using a web browser anybody can access mysite.com/ProjectNotes/Notes.txt and I cannot prevent it. I have tried adding a specific route to take the user to the error page (no effect) and in the web config I've tried but that didn't work either.

How can I prevent access to the Notes.txt file using the MVC framework?

1 answers

solution1
 5 ACCPTED  2016-04-05 12:27:59

You should use Web.Config file for your case. Add to your root Web.Config file into <system.webServer> section: 

<security>
  <requestFiltering>
    <hiddenSegments>
      <add segment="ProjectNotes"/>
    </hiddenSegments>
  </requestFiltering>
</security>

Actually, your question has nothing with MVC, but with IIS restrictions (Or other web server restrictions but I assume you using IIS)

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Prevent direct access to all files and folders mvc How to prevent ASP.NET MVC from handling Static files (js and images) on Windows Azure? prevent access to static content of asp.net - mvc app Prevent MVC from serving static files like .js, .css, etc How to prevent concurrent access in MVC Controller? Why is IIS allowing access to static files on MVC site? MVC 3 website: How to store & manage uploaded files How to retrieve all static texts from resource in a mvc website? How to prevent direct access to images in ASP.NET MVC? How to serve static files from ASP.NET-MVC 4 app?
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM