How to restrict the access to a folder to users in specific roles
Question
I've been trying to use the following code inside a web.config, that is inside the folder i want to have restricted access but without success, because every user with the path to the file can access it, anyone knows what is wrong?
the web.config:
<?xml version="1.0"?>
<configuration>
<system.web>
<authorization>
<allow roles="Administrador, Executivo, Publico" />
<deny users="?" />
</authorization>
</system.web>
</configuration>
is inside the folder "Uploads"
I'm using forms authentication and it's configured in the main web.config:
<authentication mode="Forms">
<forms loginUrl="~/Account/Login" timeout="2880" />
</authentication>
May this be a IIS configuration problem? Anyone has a clue?
1 answers
solution1
0 2017-11-23 16:49:33
Use Below code for web.config file
<?xml version="1.0"?>
<configuration>
<system.web>
<authorization>
<allow roles="Administrador, Executivo, Publico" />
<deny users="*" />
</authorization>
</system.web>
</configuration>
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.
Related Question
How i can restrict specific users to access few web methods in webservice
Deny access to specific roles
Restrict access to a specific assembly
Prevent access to a folder based on roles
.ASPX: How do I restrict web access to logged on users only?
How to restrict access of Azure App Service to only users added in user and group setting in Azure Ad?
how can I restrict access to all files in a folder without web.config
Assigning Roles to Users
Adding users to roles fails
How to implement a Sitecore workflow with the right users, roles and security?
Related Tags