Hi,
I've a web application and I'm using Forms authentication. My app contains
some pages that can be viewed by everyone and it doesn't require any
authentication or authoization and these pages mostly come at the start of
the application. After a couple of such 'general' pages, the login screen
comes. How do tackle this situation? Advance thanks for throwing any light on
this
--
Samba! 5 1669
Every folder can have its authentication configured separately.
Therefore you can have certain folders that allow anonymous users.
Here's more info: http://www.dotnetbips.com/displayarticle.aspx?id=117
--
I hope this helps,
Steve C. Orr, MCSD, MVP http://SteveOrr.net
"Samba" <sr****@dotnet. microsoft.com> wrote in message
news:D5******** *************** ***********@mic rosoft.com... Hi,
I've a web application and I'm using Forms authentication. My app contains some pages that can be viewed by everyone and it doesn't require any authentication or authoization and these pages mostly come at the start of the application. After a couple of such 'general' pages, the login screen comes. How do tackle this situation? Advance thanks for throwing any light on this
-- Samba!
Hi,
Thanks very much for the info provided. I'll try as per your suggestion.
--
Samba!
Hi,
You can also try using a Location Tag with Authorization in the Web.config.
Here is a example of the web.config, where the below used pages do not need
authentication.
<location path="Default.a spx">
<system.web>
<authorizatio n>
<allow users="*"/>
</authorization>
</system.web>
</location>
<location path="GenericEr rorPage.aspx">
<system.web>
<authorizatio n>
<allow users="*"/>
</authorization>
</system.web>
</location>
--
This is an easier approach than having to maintain multiple directories and
multiple web.configs.
Hope this was helpful.
--Vijay R
"Samba" wrote: Hi,
Thanks very much for the info provided. I'll try as per your suggestion.
-- Samba!
Based on this - if I need a web-site that has a mix of non-secure, secure
without authentication, and secure with authentication pages, I can put the
non-secure and secure without authentication pages on one site and create a
virtual site for the secure with authentication pages and then have the
pages link back and forth? My question in this case is how do I keep the
login information should someone jump from the authenticated site to the
non-authenticated site and back.
Mike Ober.
"Steve C. Orr [MVP, MCSD]" <St***@Orr.ne t> wrote in message
news:%2******** ********@tk2msf tngp13.phx.gbl. .. Every folder can have its authentication configured separately. Therefore you can have certain folders that allow anonymous users.
Here's more info: http://www.dotnetbips.com/displayarticle.aspx?id=117
-- I hope this helps, Steve C. Orr, MCSD, MVP http://SteveOrr.net
"Samba" <sr****@dotnet. microsoft.com> wrote in message news:D5******** *************** ***********@mic rosoft.com... Hi,
I've a web application and I'm using Forms authentication. My app
contains some pages that can be viewed by everyone and it doesn't require any authentication or authoization and these pages mostly come at the start
of the application. After a couple of such 'general' pages, the login
screen comes. How do tackle this situation? Advance thanks for throwing any
light on this
-- Samba!
Hi,
You can keep the login information in a windows custom security object
(Windows Identity and Windows Principal) and save the object.
Then restore back the object when the user re-enters the authenticated site.
But the catch is doing this in a secure manner.
That is you have to keep track of a user when he enter the non-auth site and
then re-enters the auth site. you have to be sure that it is the same
user?????
Since this is a problem, it is always safe and easier to have the user login
again if he re-enters the auth site.
Regards
--Vijay R
"Michael D. Ober" wrote: Based on this - if I need a web-site that has a mix of non-secure, secure without authentication, and secure with authentication pages, I can put the non-secure and secure without authentication pages on one site and create a virtual site for the secure with authentication pages and then have the pages link back and forth? My question in this case is how do I keep the login information should someone jump from the authenticated site to the non-authenticated site and back.
Mike Ober.
"Steve C. Orr [MVP, MCSD]" <St***@Orr.ne t> wrote in message news:%2******** ********@tk2msf tngp13.phx.gbl. .. Every folder can have its authentication configured separately. Therefore you can have certain folders that allow anonymous users.
Here's more info: http://www.dotnetbips.com/displayarticle.aspx?id=117
-- I hope this helps, Steve C. Orr, MCSD, MVP http://SteveOrr.net
"Samba" <sr****@dotnet. microsoft.com> wrote in message news:D5******** *************** ***********@mic rosoft.com... Hi,
I've a web application and I'm using Forms authentication. My app contains some pages that can be viewed by everyone and it doesn't require any authentication or authoization and these pages mostly come at the start of the application. After a couple of such 'general' pages, the login screen comes. How do tackle this situation? Advance thanks for throwing any light on this
-- Samba! This thread has been closed and replies have been disabled. Please start a new discussion. Similar topics |
by: Frank Rizzo |
last post by:
Asp.net form authentication is fantastic.
I want to place a link on the Login page to a “Register for this web
site” page (register.aspx) . How do I exclude register.aspx from Form
Authentication?
Thanks.
|
by: Eric |
last post by:
I am trying to build an app where the stuff in the root directory is open to
all, but anything under the Restricted directory requires you to login and I
want to use Forms to do it. I'm having trouble getting the web.config to
work properly.
First I tried to have a second web.config in the sub directory with
authentication and authorization set to forms, but it blew up.
Next, I tried to modify the root web.config in the following manner...
|
by: John |
last post by:
I am using forms authentication for a website. I plan to use some static
html pages (generated with a tool) on the site as well. I would like the
html pages to be secured using the forms authentication.
Currently the html pages can be called and they will bypass the forms
authentication page.
Does anyone know if html pages can be secured with forms based
authentication? Is there a web.config setting for this?
|
by: MR. UNDERHILL |
last post by:
I want to use forms authentication on my website. Looking at the documentation, I create a sample site for testing. One of my requirements is to ensure that SOME pages required an authenticated user and some others, like the home page is not required. I specified the <deny users="?" /> on the web.config, but this is causing ALL pages require the authentication. How can I mix both, without loosing the web.config setup? I know that I can...
|
by: Adam J Knight |
last post by:
Hi all,
I have an app that mostly requires authentication.
However there are a couple of pages that don't require authentication..
What do i need in my web.config, to specify these pages don't require
authentication..
thus the user is not redirected to my default login url..when they ('pages')
are requested.
| |
by: Gnic |
last post by:
Hi,
I am a page that sit on a form authentication directory, but I have 1 or 2
pages that don't require form authentication, also I have a web service
class in this directory as well, I am wondering how can I exclude those aspx
and asmx from form authentication?
thanks
Gnic
|
by: JayD |
last post by:
(Not sure whether it is a general aspnet problem or a specific security
problem, hence posting it in 2 groups).
This will solve for us a number of problems. I have developed a website on my
local machine (part of a LAN) using Visual Web Developer, with ASP.NET 2.0.
Backend is a SQL Server 2000 database. All queries and webforms work
beautifully on my local machine (file system web project).
However, when I copy this website to a...
|
by: =?Utf-8?B?TWF4IFR1cmF2YW5p?= |
last post by:
Hi,
Is there any way I can cause a login page to appear, using Forms
authentication of course, when access a particular page only. In my case, I
am building a site for rental properties. There are a group of files ( HTML,
ASPX files ) that are freely publicly accessable. There are certain pages
however that my client will use to update their listings and images. I would
like those pages ONLY to be redirected to the login page but NOT the...
|
by: Nalaka |
last post by:
Hi,
I have a asp.net application with forms authentication enabled.
Users create private (database driven) messages (pages; like a message
board) that is only viewed by logged in users.
Now I need to give the users the ability to publish these messages to the
public (if they decide the content is public safe).
Question is... is there a method to override forms authentication?
For an example; some thing like a method... where I look at...
|
by: Oralloy |
last post by:
Hello folks,
I am unable to find appropriate documentation on the type promotion of bit-fields when using the generalised comparison operator "<=>".
The problem is that using the GNU compilers, it seems that the internal comparison operator "<=>" tries to promote arguments from unsigned to signed.
This is as boiled down as I can make it.
Here is my compilation command:
g++-12 -std=c++20 -Wnarrowing bit_field.cpp
Here is the code in...
|
by: Hystou |
last post by:
Overview:
Windows 11 and 10 have less user interface control over operating system update behaviour than previous versions of Windows. In Windows 11 and 10, there is no way to turn off the Windows Update option using the Control Panel or Settings app; it automatically checks for updates and installs any it finds, whether you like it or not. For most users, this new feature is actually very convenient. If you want to control the update process,...
| |
by: agi2029 |
last post by:
Let's talk about the concept of autonomous AI software engineers and no-code agents. These AIs are designed to manage the entire lifecycle of a software development project—planning, coding, testing, and deployment—without human intervention. Imagine an AI that can take a project description, break it down, write the code, debug it, and then launch it, all on its own....
Now, this would greatly impact the work of software developers. The idea...
|
by: conductexam |
last post by:
I have .net C# application in which I am extracting data from word file and save it in database particularly. To store word all data as it is I am converting the whole word file firstly in HTML and then checking html paragraph one by one.
At the time of converting from word file to html my equations which are in the word document file was convert into image.
Globals.ThisAddIn.Application.ActiveDocument.Select();...
|
by: TSSRALBI |
last post by:
Hello
I'm a network technician in training and I need your help.
I am currently learning how to create and manage the different types of VPNs and I have a question about LAN-to-LAN VPNs.
The last exercise I practiced was to create a LAN-to-LAN VPN between two Pfsense firewalls, by using IPSEC protocols.
I succeeded, with both firewalls in the same network. But I'm wondering if it's possible to do the same thing, with 2 Pfsense firewalls...
|
by: adsilva |
last post by:
A Windows Forms form does not have the event Unload, like VB6. What one acts like?
|
by: 6302768590 |
last post by:
Hai team
i want code for transfer the data from one system to another through IP address by using C# our system has to for every 5mins then we have to update the data what the data is updated we have to send another system
|
by: muto222 |
last post by:
How can i add a mobile payment intergratation into php mysql website.
| |
by: bsmnconsultancy |
last post by:
In today's digital era, a well-designed website is crucial for businesses looking to succeed. Whether you're a small business owner or a large corporation in Toronto, having a strong online presence can significantly impact your brand's success. BSMN Consultancy, a leader in Website Development in Toronto offers valuable insights into creating effective websites that not only look great but also perform exceptionally well. In this comprehensive...
| |