473,241 Members | 1,505 Online
Bytes | Software Development & Data Engineering Community
Post Job

Home Posts Topics Members FAQ

Join Bytes to post your question to a community of 473,241 software developers and data experts.

IIS 6/ASP.NET Website Forms Authentication and Access Control Question

A web site that will run on Windows Server 2003 and IIS 6.0 needs to provide
three levels of access, one for the public and two others for two levels of
subscribers. This is a port of a prior site that runs on an old version of
the Netscape Web server (which manages user authentication and access). The
three levels of access are currently served up by three different versions
of an ISAPI DLL, written in C++, also managed by the Netscape web server.
The DLL responds to inquiries against a SQL database and directly outputs
formatted Web pages. It is not practical to re-write the DLL.

So the challenge is to figure out how best to handle user authentication and
access control in the new environment. I have got it to the point where the
site works as it should by putting the three different versions of the DLL
(which three Netscape managed out of a directory of its own) directly into
the three main directories associated with the three different levels of
access, but with only a placeholder page for user authentication and, as
yet, no access control whatsoever. I have simple replaced the former user
login (CGI) page with links to the main pages in the directories for the two
subscriber levels.

The main question then is: How best to manage user authentication and
access?

It looks like this should be possible using ASP.NET forms authentication,
handling user authentication via a newly written logon page written in C#,
but I am having a hard time figuring out exactly how to configure the web
site to do that. I have been experimenting with the forms authentication
examples in Chapter 8 of Jeff Webb's MCAD/MCSD Self-Paced Training Kit book
"Developing Web Applications with Microsoft Visual Basic.NET and Visual
C#.NET" but have not yet been able to tweak things properly to get it
working in the new site context.

Secondary questions that have emerged in my process or trial and error
include:

How to configure NTFS file settings and IIS 6.0 directory security
settings when using ASP.NET forms authentication?
What, if any, settings are required regarding the three different
versions of the ISAPI DLL?
How, exactly to, configure the WEB.CONFIG files in the relevant
directories?

Any suggestions or pointers to good sources of information would be most
appreciated.

All the best,

will

William F. Zachmann, President
Canopus Research Inc.
http://www.canopusresearch.com

Nov 19 '05 #1
0 2049

This thread has been closed and replies have been disabled. Please start a new discussion.

Similar topics

11
by: Bozo Schmozo | last post by:
Greetings! I've searched groups.google.com already to see if I can determine if using PHP/MySQL (if needed) for a web site I wish to develop. As the subject indicated, it will be a content...
4
by: Joey Powell | last post by:
Hello, I originally configured my application to use persistent cookies in error. Now, I need to find a way to disable those cookies. I have tried changing usernames and passwords for all of the...
2
by: Eric | last post by:
I am trying to build an app where the stuff in the root directory is open to all, but anything under the Restricted directory requires you to login and I want to use Forms to do it. I'm having...
6
by: Manny Chohan | last post by:
I am using forms authetication in the web config. i can validate a user against a database and click on images which makes hidden panels visible.However when i click on the link inside a panel...
7
by: Justin | last post by:
I am trying to password protect a subdirectory using forms authentication. I am using the "Location" tag to specify the directory to be protected. The login.aspx page is in the root directory of...
5
by: V. Jenks | last post by:
Using forms authentication, can I control which pages and/or directories a user would have access to or is that only available with Windows authentication? Thanks!
8
by: Stimp | last post by:
I need to take my website offline for an hour or so while I perform some maintenance... is it possible to create a 'catch-all' redirect to a temporary page (i.e. something in Web.config or...
6
by: William F. Zachmann | last post by:
We've got a project going that involves moving an old web site with a massive dll written in C++ that produces most of the output from a SQL 7.0 data base on NT4 onto IIS on Windows 2003 Server...
5
by: daveh551 | last post by:
What, from a high level point of view, is the difference (in Visual Studio 2005) between Website (accessed with Open Website or Create Website from the StartPage) that is an ASP.NET Website, and a...
0
by: abbasky | last post by:
### Vandf component communication method one: data sharing ​ Vandf components can achieve data exchange through data sharing, state sharing, events, and other methods. Vandf's data exchange method...
2
isladogs
by: isladogs | last post by:
The next Access Europe meeting will be on Wednesday 7 Feb 2024 starting at 18:00 UK time (6PM UTC) and finishing at about 19:30 (7.30PM). In this month's session, the creator of the excellent VBE...
0
by: fareedcanada | last post by:
Hello I am trying to split number on their count. suppose i have 121314151617 (12cnt) then number should be split like 12,13,14,15,16,17 and if 11314151617 (11cnt) then should be split like...
1
by: davi5007 | last post by:
Hi, Basically, I am trying to automate a field named TraceabilityNo into a web page from an access form. I've got the serial held in the variable strSearchString. How can I get this into the...
0
by: DolphinDB | last post by:
The formulas of 101 quantitative trading alphas used by WorldQuant were presented in the paper 101 Formulaic Alphas. However, some formulas are complex, leading to challenges in calculation. Take...
0
by: DolphinDB | last post by:
Tired of spending countless mintues downsampling your data? Look no further! In this article, you’ll learn how to efficiently downsample 6.48 billion high-frequency records to 61 million...
0
by: Aftab Ahmad | last post by:
Hello Experts! I have written a code in MS Access for a cmd called "WhatsApp Message" to open WhatsApp using that very code but the problem is that it gives a popup message everytime I clicked on...
0
by: Aftab Ahmad | last post by:
So, I have written a code for a cmd called "Send WhatsApp Message" to open and send WhatsApp messaage. The code is given below. Dim IE As Object Set IE =...
0
isladogs
by: isladogs | last post by:
The next Access Europe meeting will be on Wednesday 6 Mar 2024 starting at 18:00 UK time (6PM UTC) and finishing at about 19:15 (7.15PM). In this month's session, we are pleased to welcome back...

By using Bytes.com and it's services, you agree to our Privacy Policy and Terms of Use.

To disable or enable advertisements and analytics tracking please visit the manage ads & tracking page.