We have a intranet site that allows one of our departments to search a set
of pdfs and then look at them. Only problem is that only they and us geeks
should be allowed to see the pdfs. We have it locked down except for when a
person directly types in the url to a pdf. Currently, the PDFs are in a
virtual directory off the root of the server. Putting it under the search
site also doesn't work. My understanding is that IIS looks as the virtual
directory as a separate site and will not carry web.config settings down to
it. Putting a web.config in the virtual directory directly doesn't work
either. How do I secure this virtual directory so only certain users can
get to the pdfs?
Scott
10  3619 
This is not an ASP.NET issue, but an IIS one.
Use IIS security to authenticate users for this virtual directory. That
means you have to disable anonymous access.
Jeffrey Palermo
"Wm. Scott Miller" <Sc**********@spam.killer.wvinsurance.gov> wrote in
message news:O8****************@TK2MSFTNGP10.phx.gbl... We have a intranet site that allows one of our departments to search a set
of pdfs and then look at them. Only problem is that only they and us
geeks should be allowed to see the pdfs. We have it locked down except for when
a person directly types in the url to a pdf. Currently, the PDFs are in a
virtual directory off the root of the server. Putting it under the search
site also doesn't work. My understanding is that IIS looks as the virtual
directory as a separate site and will not carry web.config settings down
to it. Putting a web.config in the virtual directory directly doesn't work
either. How do I secure this virtual directory so only certain users can
get to the pdfs?
Scott
IIS is set to Windows Authentication with all other methods disabled.
Scott
"Jeffrey Palermo" <je************@yahoo.com> wrote in message
news:OP*************@TK2MSFTNGP09.phx.gbl... This is not an ASP.NET issue, but an IIS one.
Use IIS security to authenticate users for this virtual directory. That
means you have to disable anonymous access.
Jeffrey Palermo
"Wm. Scott Miller" <Sc**********@spam.killer.wvinsurance.gov> wrote in
message news:O8****************@TK2MSFTNGP10.phx.gbl... We have a intranet site that allows one of our departments to search a
set of pdfs and then look at them. Only problem is that only they and us geeks should be allowed to see the pdfs. We have it locked down except for
when a person directly types in the url to a pdf. Currently, the PDFs are in a
virtual directory off the root of the server. Putting it under the
search site also doesn't work. My understanding is that IIS looks as the
virtual directory as a separate site and will not carry web.config settings down
to it. Putting a web.config in the virtual directory directly doesn't work
either. How do I secure this virtual directory so only certain users
can get to the pdfs?
Scott
In this case, I'm assuming you are using AD, and these people's windows
accounts have access to these files. Use NTFS security on the folder and
take out "Everyone" if it's there. Fix the NTFS permissions on the folder
with the restricted files so that only appropriate users have access. This
may be a job for your server administrator depending on how your
organization is set up.
Jeffrey Palermo
"Wm. Scott Miller" <Sc**********@spam.killer.wvinsurance.gov> wrote in
message news:OC**************@TK2MSFTNGP11.phx.gbl... IIS is set to Windows Authentication with all other methods disabled.
Scott
"Jeffrey Palermo" <je************@yahoo.com> wrote in message
news:OP*************@TK2MSFTNGP09.phx.gbl... This is not an ASP.NET issue, but an IIS one.
Use IIS security to authenticate users for this virtual directory. That
means you have to disable anonymous access.
Jeffrey Palermo
"Wm. Scott Miller" <Sc**********@spam.killer.wvinsurance.gov> wrote in
message news:O8****************@TK2MSFTNGP10.phx.gbl... We have a intranet site that allows one of our departments to search a set of pdfs and then look at them. Only problem is that only they and us
geeks should be allowed to see the pdfs. We have it locked down except for when a person directly types in the url to a pdf. Currently, the PDFs are in
a virtual directory off the root of the server. Putting it under the search site also doesn't work. My understanding is that IIS looks as the virtual directory as a separate site and will not carry web.config settings
down to it. Putting a web.config in the virtual directory directly doesn't
work either. How do I secure this virtual directory so only certain users
can get to the pdfs?
Scott
The actual folder is a network share on another server (IIS box has very
limited HD space). This appears to cause issues because when setting up the
virtual directory, IIS demands a username/password to access the share. How
can we make IIS use the credentials of the user to access the files instead
of a supplied username/password?
Scott
"Jeffrey Palermo" <je************@yahoo.com> wrote in message
news:u6**************@TK2MSFTNGP09.phx.gbl... In this case, I'm assuming you are using AD, and these people's windows
accounts have access to these files. Use NTFS security on the folder and
take out "Everyone" if it's there. Fix the NTFS permissions on the folder
with the restricted files so that only appropriate users have access.
This may be a job for your server administrator depending on how your
organization is set up.
Jeffrey Palermo
"Wm. Scott Miller" <Sc**********@spam.killer.wvinsurance.gov> wrote in
message news:OC**************@TK2MSFTNGP11.phx.gbl... IIS is set to Windows Authentication with all other methods disabled.
Scott
"Jeffrey Palermo" <je************@yahoo.com> wrote in message
news:OP*************@TK2MSFTNGP09.phx.gbl... This is not an ASP.NET issue, but an IIS one.
Use IIS security to authenticate users for this virtual directory.
That means you have to disable anonymous access.
Jeffrey Palermo
"Wm. Scott Miller" <Sc**********@spam.killer.wvinsurance.gov> wrote in
message news:O8****************@TK2MSFTNGP10.phx.gbl...
> We have a intranet site that allows one of our departments to search
a set > of pdfs and then look at them. Only problem is that only they and
us geeks
> should be allowed to see the pdfs. We have it locked down except
for when a
> person directly types in the url to a pdf. Currently, the PDFs are
in a > virtual directory off the root of the server. Putting it under the
search > site also doesn't work. My understanding is that IIS looks as the
virtual > directory as a separate site and will not carry web.config settings down to
> it. Putting a web.config in the virtual directory directly doesn't work > either. How do I secure this virtual directory so only certain
users can > get to the pdfs?
>
> Scott
>
>
>
Hi Scott:
The web.config authorization settings only protect resources mapped to
ASP.NET. There are two approaches. One is to map PDF files to the
ASPNET runtime by going to the virtual directory properties, click the
application configuration button, and add a mapping for .pdf just like
you see for .aspx. Another approach would be to place the PDF files
outside of the web directories and have the user hit an ASPX page
which will read the contents of the PDF and stream it out.
Let me know if you need more info,
--
Scott http://www.OdeToCode.com
On Wed, 5 May 2004 13:01:13 -0400, "Wm. Scott Miller"
<Sc**********@spam.killer.wvinsurance.gov> wrote: We have a intranet site that allows one of our departments to search a set
of pdfs and then look at them. Only problem is that only they and us geeks
should be allowed to see the pdfs. We have it locked down except for when a
person directly types in the url to a pdf. Currently, the PDFs are in a
virtual directory off the root of the server. Putting it under the search
site also doesn't work. My understanding is that IIS looks as the virtual
directory as a separate site and will not carry web.config settings down to
it. Putting a web.config in the virtual directory directly doesn't work
either. How do I secure this virtual directory so only certain users can
get to the pdfs?
Scott
Honestly, that is out of my area of expertise (programming). If it were an
ASP.NET issue, I'd be all over it. I'd be googling this one and talking
with my server admins.
Jeffrey Palermo
"Wm. Scott Miller" <Sc**********@spam.killer.wvinsurance.gov> wrote in
message news:eJ***************@tk2msftngp13.phx.gbl... The actual folder is a network share on another server (IIS box has very
limited HD space). This appears to cause issues because when setting up
the virtual directory, IIS demands a username/password to access the share.
How can we make IIS use the credentials of the user to access the files
instead of a supplied username/password?
Scott
"Jeffrey Palermo" <je************@yahoo.com> wrote in message
news:u6**************@TK2MSFTNGP09.phx.gbl... In this case, I'm assuming you are using AD, and these people's windows
accounts have access to these files. Use NTFS security on the folder
and take out "Everyone" if it's there. Fix the NTFS permissions on the
folder with the restricted files so that only appropriate users have access. This may be a job for your server administrator depending on how your
organization is set up.
Jeffrey Palermo
"Wm. Scott Miller" <Sc**********@spam.killer.wvinsurance.gov> wrote in
message news:OC**************@TK2MSFTNGP11.phx.gbl... IIS is set to Windows Authentication with all other methods disabled.
Scott
"Jeffrey Palermo" <je************@yahoo.com> wrote in message
news:OP*************@TK2MSFTNGP09.phx.gbl...
> This is not an ASP.NET issue, but an IIS one.
>
> Use IIS security to authenticate users for this virtual directory. That > means you have to disable anonymous access.
>
> Jeffrey Palermo
>
> "Wm. Scott Miller" <Sc**********@spam.killer.wvinsurance.gov> wrote
in > message news:O8****************@TK2MSFTNGP10.phx.gbl...
> > We have a intranet site that allows one of our departments to
search a set
> > of pdfs and then look at them. Only problem is that only they and us > geeks
> > should be allowed to see the pdfs. We have it locked down except for when
> a
> > person directly types in the url to a pdf. Currently, the PDFs
are in a > > virtual directory off the root of the server. Putting it under
the search
> > site also doesn't work. My understanding is that IIS looks as the
virtual
> > directory as a separate site and will not carry web.config
settings down > to
> > it. Putting a web.config in the virtual directory directly
doesn't work > > either. How do I secure this virtual directory so only certain
users can
> > get to the pdfs?
> >
> > Scott
> >
> >
> >
>
>
Scott:
OK, looks like that might work. Only issue is that by adding the PDF files
identical to the aspx definition results in not being able to access them at
all. Do you have any examples of either method that I can look at?
Thanks,
Scott
"Scott Allen" <bitmask@[nospam].fred.net> wrote in message
news:gc********************************@4ax.com... Hi Scott:
The web.config authorization settings only protect resources mapped to
ASP.NET. There are two approaches. One is to map PDF files to the
ASPNET runtime by going to the virtual directory properties, click the
application configuration button, and add a mapping for .pdf just like
you see for .aspx. Another approach would be to place the PDF files
outside of the web directories and have the user hit an ASPX page
which will read the contents of the PDF and stream it out.
Let me know if you need more info,
--
Scott
http://www.OdeToCode.com
On Wed, 5 May 2004 13:01:13 -0400, "Wm. Scott Miller"
<Sc**********@spam.killer.wvinsurance.gov> wrote:
We have a intranet site that allows one of our departments to search a
setof pdfs and then look at them. Only problem is that only they and us
geeksshould be allowed to see the pdfs. We have it locked down except for
when aperson directly types in the url to a pdf. Currently, the PDFs are in a
virtual directory off the root of the server. Putting it under the
searchsite also doesn't work. My understanding is that IIS looks as the
virtualdirectory as a separate site and will not carry web.config settings down
toit. Putting a web.config in the virtual directory directly doesn't work
either. How do I secure this virtual directory so only certain users can
get to the pdfs?
Scott
I'm actually doing something very very similar to what you are doing, a document management system. I didn't go for the virtual directory option though, I believe that may cause you some grief down the road.
What I did do is set up delegation on my webserver, and access the pdf documents off a network share using the current context of the user who is currently using the system. My asp.net pages just show the documents in the directory.
Here is an article on delegation if you are interested. http://support.microsoft.com/default...b;en-us;810572
--Michael
"Wm. Scott Miller" <Sc**********@spam.killer.wvinsurance.gov> wrote in message news:eJ***************@tk2msftngp13.phx.gbl... The actual folder is a network share on another server (IIS box has very
limited HD space). This appears to cause issues because when setting up the
virtual directory, IIS demands a username/password to access the share. How
can we make IIS use the credentials of the user to access the files instead
of a supplied username/password?
Scott
"Jeffrey Palermo" <je************@yahoo.com> wrote in message
news:u6**************@TK2MSFTNGP09.phx.gbl... In this case, I'm assuming you are using AD, and these people's windows
accounts have access to these files. Use NTFS security on the folder and
take out "Everyone" if it's there. Fix the NTFS permissions on the folder
with the restricted files so that only appropriate users have access.
This may be a job for your server administrator depending on how your
organization is set up.
Jeffrey Palermo
"Wm. Scott Miller" <Sc**********@spam.killer.wvinsurance.gov> wrote in
message news:OC**************@TK2MSFTNGP11.phx.gbl... IIS is set to Windows Authentication with all other methods disabled.
Scott
"Jeffrey Palermo" <je************@yahoo.com> wrote in message
news:OP*************@TK2MSFTNGP09.phx.gbl...
> This is not an ASP.NET issue, but an IIS one.
>
> Use IIS security to authenticate users for this virtual directory. That > means you have to disable anonymous access.
>
> Jeffrey Palermo
>
> "Wm. Scott Miller" <Sc**********@spam.killer.wvinsurance.gov> wrote in
> message news:O8****************@TK2MSFTNGP10.phx.gbl...
> > We have a intranet site that allows one of our departments to search a set
> > of pdfs and then look at them. Only problem is that only they and us > geeks
> > should be allowed to see the pdfs. We have it locked down except for when
> a
> > person directly types in the url to a pdf. Currently, the PDFs are in a > > virtual directory off the root of the server. Putting it under the
search
> > site also doesn't work. My understanding is that IIS looks as the
virtual
> > directory as a separate site and will not carry web.config settings
down > to
> > it. Putting a web.config in the virtual directory directly doesn't
work > > either. How do I secure this virtual directory so only certain
users can
> > get to the pdfs?
> >
> > Scott
> >
> >
> >
>
>
On Wed, 5 May 2004 15:22:05 -0400, "Wm. Scott Miller"
<Sc**********@spam.killer.wvinsurance.gov> wrote: Scott:
OK, looks like that might work. Only issue is that by adding the PDF files
identical to the aspx definition results in not being able to access them at
all. Do you have any examples of either method that I can look at?
Thanks,
Scott
Hmm. I just tried this specifically with .PDF (I had tried it with
other file types previously) and it appears to be working on my
machine. I know this doesn't help you at all, but let me think of some
options.
In testing it appears IE was aggresively caching PDF content and not
prompting for a login when i launched a new instance and browsed to
the pdf url for a second time, so you might try cleaning out temp
files just to make sure it isn't causing some wierdness.
Are you getting a 403, or a blank browser page? I can send some screen
shots and other information to your email if that would help.
--s
--
Scott http://www.OdeToCode.com
If I type in the url in pieces, it comes up with the invalid credentials
screens, but as soon as I get to the complete url to the PDF, it shows it.
Even if I actually have not viewed that PDF before. Maybe I'm not
configured right. Could you send some screen shots?
Looks like we have similar techs for preventing spam, you should be able to
figure it out.
Thanks,
Scott
"Scott Allen" <bitmask@[nospam].fred.net> wrote in message
news:19********************************@4ax.com... On Wed, 5 May 2004 15:22:05 -0400, "Wm. Scott Miller"
<Sc**********@spam.killer.wvinsurance.gov> wrote:
Scott:
OK, looks like that might work. Only issue is that by adding the PDF
filesidentical to the aspx definition results in not being able to access them
atall. Do you have any examples of either method that I can look at?
Thanks,
Scott
Hmm. I just tried this specifically with .PDF (I had tried it with
other file types previously) and it appears to be working on my
machine. I know this doesn't help you at all, but let me think of some
options.
In testing it appears IE was aggresively caching PDF content and not
prompting for a login when i launched a new instance and browsed to
the pdf url for a second time, so you might try cleaning out temp
files just to make sure it isn't causing some wierdness.
Are you getting a 403, or a blank browser page? I can send some screen
shots and other information to your email if that would help.
--s
--
Scott
http://www.OdeToCode.com This thread has been closed and replies have been disabled. Please start a new discussion. Similar topics
by: BPearson |
last post by:
Hello
I would like to have several sites share a single web.config file. To accomplish this, I would point the root of these sites to the same folder. Is there any reason why I might not want to...
|
by: Matt |
last post by:
The ASP.NET application connects to MS-SQL database, and I already disabled
Anonymous access in IIS, and add ASPNET user in it. When I run the
application, it throws the following error on windows...
|
by: Benny Ng |
last post by:
Hi,all,
How to let the sub-directory to avoid the authentication control from Root's
webconfig?
I heard that we can add a new web.config to the sub-directory. And then we
can slove the problem....
|
by: Ben |
last post by:
I have a group of settings that I'd like to have inherited by multiple
sites.
I'm trying this, but it's not working.
wwwroot\group\web.config
wwwroot\group\site1\web.config...
|
by: djmc |
last post by:
Hi,
I am having problems with virtual directories and web.config inheritance. I
have read the section titled "Conflicts between settings on virtual and
physical directories" at...
|
by: Arpan |
last post by:
What exactly are configuration section handlers in a web.config file?
How would you define them & what for are they used in web.config files?
Is it a must for web.config files to have handlers?
...
|
by: colintanner |
last post by:
I've a test web site set up as a virtual directory under default web
sites in IIS. However when I browse to the main .aspx page I get an
error because it is referencing a web.config that belongs to...
|
by: =?Utf-8?B?YzY3NjIyOA==?= |
last post by:
Hi all,
I cut and paste the following code from msdn help page which it just
introduces view and multiview server controls.
Here is what I do:
in vs studio 2005, File --New Web Site, it...
|
by: Robin9876 |
last post by:
In IIS 7 I have created a web site which is located at C:\MyWebSite
and in IIS Manager created a virtual folder which points to C:
\MyVirtualFolder. The virtual folder was then converted to an...
|
by: taylorcarr |
last post by:
A Canon printer is a smart device known for being advanced, efficient, and reliable. It is designed for home, office, and hybrid workspace use and can also be used for a variety of purposes. However,...
|
by: aa123db |
last post by:
Variable and constants
Use var or let for variables and const fror constants.
Var foo ='bar';
Let foo ='bar';const baz ='bar';
Functions
function $name$ ($parameters$) {
}
...
|
by: ryjfgjl |
last post by:
In our work, we often receive Excel tables with data in the same format. If we want to analyze these data, it can be difficult to analyze them because the data is spread across multiple Excel files...
|
by: emmanuelkatto |
last post by:
Hi All, I am Emmanuel katto from Uganda. I want to ask what challenges you've faced while migrating a website to cloud.
Please let me know.
Thanks!
Emmanuel
|
by: BarryA |
last post by:
What are the essential steps and strategies outlined in the Data Structures and Algorithms (DSA) roadmap for aspiring data scientists? How can individuals effectively utilize this roadmap to progress...
|
by: Sonnysonu |
last post by:
This is the data of csv file
1 2 3
1 2 3
1 2 3
1 2 3
2 3
2 3
3
the lengths should be different i have to store the data by column-wise with in the specific length.
suppose the i have to...
|
by: Hystou |
last post by:
There are some requirements for setting up RAID:
1. The motherboard and BIOS support RAID configuration.
2. The motherboard has 2 or more available SATA protocol SSD/HDD slots (including MSATA, M.2...
|
by: Oralloy |
last post by:
Hello folks,
I am unable to find appropriate documentation on the type promotion of bit-fields when using the generalised comparison operator "<=>".
The problem is that using the GNU compilers,...
|
by: jinu1996 |
last post by:
In today's digital age, having a compelling online presence is paramount for businesses aiming to thrive in a competitive landscape. At the heart of this digital strategy lies an intricately woven...
| |
