authorization web.config
Question
I am restricting access to the Account folder using below:
<location path="Account">
<system.web>
<authorization>
<deny users="?"/>
<allow users="*"/>
</authorization>
</system.web>
</location>
and access to the Default.aspx using
<location path="Default.aspx">
<system.web>
<authorization>
<deny users="?"/>
<allow users="*"/>
</authorization>
</system.web>
</location>
but how do I restrict access to a specific file in the Account folder rather than the entire folder?
I tried the following but did not work
<location path="Account\ChangePassword.aspx">
<system.web>
<authorization>
<deny users="?"/>
<allow users="*"/>
</authorization>
</system.web>
</location>
1 answers
solution1
4 ACCPTED 2010-01-01 17:46:34
Try this
<location path="Account/ChangePassword.aspx">
<system.web>
<authorization>
<deny users="?"/>
</authorization>
</system.web>
</location>
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.
Related Question
Aspx authorization in Web.Config
Web.Config Authorization for folder access
web.config authorization roles character escaping
web.config's authorization list order?
Authorization in Azure vs owin and web.config
web.config authorization deny unauthorised
web.config authorization rules are vulnerable to be bypassed
web.config and authentification, authorization, location
Location tag in web.config for authorization
Requiring Multiple Roles in Web.config Authorization
Related Tags