How do I use forms authentication on specific directories?

Darrel

My app has an 'admin' folder. This is the only directory i need to apply
forms authentication to.

Googling seems to indicate that the solution is to just give the admin
folder it's own config file and set the authentication rules there.

However, when I do that, I get this error:

--------------------------
Parser Error Message: It is an error to use a section registered as
allowDefinition ='MachineToAppl ication' beyond application level. This error
can be caused by a virtual directory not being configured as an application
in IIS.
--------------------------------

Which, from what I can tell, is saying I can't do forms authentication in a
directory unless that directory is also an application.

So, is there a way to do what I want to do? I want one subdirectory of my
application (not an application itself) to use forms authentication.

-Darrel

Apr 22 '06 #1

Subscribe Reply

1648

Teemu Keiski

Hi,

you need to declare the authentication method used on root web.config with
<authenicatio n> element, there's no way around that .

But with <location> tags in root web.config or web.config files in
subdirectories you can provide <authorizatio n> elements to specify if
accessing a folder (or specific aspx page) needs authentication. E.g in root
web.config put
<authorizatio n>
<allow users="*" />
</authorization>

But for specific subfolders you can deny it.

<location path="subfolder ">
<system.web>
<authorizatio n>
<deny users="?" />
</authorization>
</system.web>
</location>

(or place this into separate web.config file on subdirectiry when <location>
wouldn't be needed)

--
Teemu Keiski
ASP.NET MVP, AspInsider
Finland, EU
http://blogs.aspadvice.com/joteke
"Darrel" <no*****@nospam .com> wrote in message
news:uO******** ******@TK2MSFTN GP05.phx.gbl...

My app has an 'admin' folder. This is the only directory i need to apply
forms authentication to.

Googling seems to indicate that the solution is to just give the admin
folder it's own config file and set the authentication rules there.

However, when I do that, I get this error:

--------------------------
Parser Error Message: It is an error to use a section registered as
allowDefinition ='MachineToAppl ication' beyond application level. This
error can be caused by a virtual directory not being configured as an
application in IIS.
--------------------------------

Which, from what I can tell, is saying I can't do forms authentication in
a directory unless that directory is also an application.

So, is there a way to do what I want to do? I want one subdirectory of my
application (not an application itself) to use forms authentication.

-Darrel

Apr 22 '06 #2

Darrel

<location path="subfolder ">
<system.web>
<authorizatio n>
<deny users="?" />
</authorization>
</system.web>
</location>

(or place this into separate web.config file on subdirectiry when
<location> wouldn't be needed)

Thanks, Teemu. That worked perfectly!

-Darrel

Apr 22 '06 #3

Similar topics

4809

Secure and Unsecure Web Directories using Forms Authentication

by: Billy Jacobs | last post by:

I have a website which has both secure and non-secure pages. I want to uses forms authentication. How do I accomplish this? Originally I had my web.config file in the root with Forms Authentication set up and it worked just fine. Then I realized that I needed to have some pages unsecure. I then created 2 directories. One named Secure and...

.NET Framework

1989

Forms authentication across multiple applications and framework versions

by: JC | last post by:

I have several applications that use forms authentication and they are currently setup to use a single login page. Everything works fine under v1.0 of the framework and everything works fine if I have all applications running under v1.1. However, I need the login page and a few apps to be running under using v1.0 with other applications...

ASP.NET

2539

Forms authentication

by: Jenny | last post by:

Hi all How can the following problem be solved: My application uses forms authentication. Normally a start.aspx page should be send to the client before login.aspx is shown. Start.aspx consist of simple JScript writing a cookie about screen resolution followed by an automatic transfer to login.aspx. This page is therefore test whether...

ASP.NET

270

Forms Authentication

by: Dotnet Guy | last post by:

I have set up forms authentication for my web application. I have several subdirectories inside a main directory and I have forms authentication for each of my sub directories. In the logon page when the user is authenticated, I have FormsAuthentication.RedirectFromLoginPage(txtLogonid.Text, False) And in the web.config files of my...

ASP.NET

1655

Forms Auth. Question

by: V. Jenks | last post by:

Using forms authentication, can I control which pages and/or directories a user would have access to or is that only available with Windows authentication? Thanks!

ASP.NET

1298

Forms authentication puzzle

by: branton ellerbee | last post by:

How do you implement a login control across multiple .aspx pages that allows access to pages and directories with the application you are designing? For example, imagine a login control that is located on everypage you go to until you have logged into the application. Once you have logged in, then the control goes away and maybe replaced...

ASP.NET

2523

Forms Authentication for multiple applications

by: cab0san | last post by:

I have several applications all on the same server. I would like them to all use the same login page. Example: http://server1/customers/app1.aspx http://server1/suppliers/byregion/app2.aspx I have a login page located in the root of the same server: http://server1/login.aspx

ASP.NET

2065

IIS 6/ASP.NET Website Forms Authentication and Access Control Question

by: William F. Zachmann | last post by:

A web site that will run on Windows Server 2003 and IIS 6.0 needs to provide three levels of access, one for the public and two others for two levels of subscribers. This is a port of a prior site that runs on an old version of the Netscape Web server (which manages user authentication and access). The three levels of access are currently...

ASP.NET

2858

HTML file server side includes plus forms authentication

by: William F. Zachmann | last post by:

We've got a project going that involves moving an old web site with a massive dll written in C++ that produces most of the output from a SQL 7.0 data base on NT4 onto IIS on Windows 2003 Server with SQL 2000. All new code is being written in C# using ASP.NET and we are using forms authentication to control access to particular...

ASP.NET

8182

Problem With Comparison Operator <=> in G++

by: Oralloy | last post by:

Hello folks, I am unable to find appropriate documentation on the type promotion of bit-fields when using the generalised comparison operator "<=>". The problem is that using the GNU compilers, it seems that the internal comparison operator "<=>" tries to promote arguments from unsigned to signed. This is as boiled down as I can make it. ...

C / C++

6579

AI Job Threat for Devs

by: agi2029 | last post by:

Let's talk about the concept of autonomous AI software engineers and no-code agents. These AIs are designed to manage the entire lifecycle of a software development project—planning, coding, testing, and deployment—without human intervention. Imagine an AI that can take a project description, break it down, write the code, debug it, and then...

Career Advice

5701

Access Europe - Using VBA to create a class based on a table - Wed 1 May

by: isladogs | last post by:

The next Access Europe User Group meeting will be on Wednesday 1 May 2024 starting at 18:00 UK time (6PM UTC+1) and finishing by 19:30 (7.30PM). In this session, we are pleased to welcome a new presenter, Adolph Dupré who will be discussing some powerful techniques for using class modules. He will explain when you may want to use classes...

Microsoft Access / VBA

5374

Couldn’t get equations in html when convert word .docx file to html file in C#.

by: conductexam | last post by:

I have .net C# application in which I am extracting data from word file and save it in database particularly. To store word all data as it is I am converting the whole word file firstly in HTML and then checking html paragraph one by one. At the time of converting from word file to html my equations which are in the word document file was convert...

C# / C Sharp

3818

Trying to create a lan-to-lan vpn between two differents networks

by: TSSRALBI | last post by:

Hello I'm a network technician in training and I need your help. I am currently learning how to create and manage the different types of VPNs and I have a question about LAN-to-LAN VPNs. The last exercise I practiced was to create a LAN-to-LAN VPN between two Pfsense firewalls, by using IPSEC protocols. I succeeded, with both firewalls in...

Networking - Hardware / Configuration

3843

Windows Forms - .Net 8.0

by: adsilva | last post by:

A Windows Forms form does not have the event Unload, like VB6. What one acts like?

Visual Basic .NET

2333

transfer the data from one system to another through ip address

by: 6302768590 | last post by:

Hai team i want code for transfer the data from one system to another through IP address by using C# our system has to for every 5mins then we have to update the data what the data is updated we have to send another system

C# / C Sharp

1433

How to add payments to a PHP MySQL app.

by: muto222 | last post by:

How can i add a mobile payment intergratation into php mysql website.

PHP

1157

Comprehensive Guide to Website Development in Toronto: Expert Insights from BSMN Consultancy

by: bsmnconsultancy | last post by:

In today's digital era, a well-designed website is crucial for businesses looking to succeed. Whether you're a small business owner or a large corporation in Toronto, having a strong online presence can significantly impact your brand's success. BSMN Consultancy, a leader in Website Development in Toronto offers valuable insights into creating...

General