How best implement ASP.NET Forms Authentication?

R

Ronald S. Cook

In my ASP.NET app, I have a few pages that I want to be public (i.e.
accessible by everyone) and the rest private (user has to be signed in). In
the examples I've seen, the public files have been in the root folder with
it's own Web.config file and the private ones in a subfolder with a separate
Web.config file.

Must I necessarily use a subfolder to separate private from public files?
Could I maybe have them all in the same root folder but then perhaps list
the public pages somehow in the Web.config file? I'm just looking for the
best, most standard way to do this.

Thanks,
Ron
 
R

Ronald S. Cook

Thanks.. that works great. But, would I have to create a locatio section
for every public page or is there a more abbreviated way to do it?

<location path="About.aspx">
<system.web>
<authorization>
<allow users="*" />
</authorization>
</system.web>
</location>
<location path="Help.aspx">
<system.web>
<authorization>
<allow users="*" />
</authorization>
</system.web>
</location>

Thanks,
Ron
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Forms Authentication on Virtual Directory -- How? 3
Forms based authentication again 1
How protect non aspx files using Forms Authentication? 5
authorization problem 1
Forms-based authentication 2
Element 'ElephantTreeView' is not a known element. This can occur ifthere is a compilation error in 4
Problem with web.config inheritance and <authorization> section 10
What is the best way to configure this? 1

Top