Hi,
I have an application where I want to store reports (.pdf, .doc) in a
reports subdirectory. Within the reports subdirectory, I am creating other
subdirectories (with a job number) where I store the reports for a job. I
can access the reports fine through my application.
However, if I save the link to a report, I can open it without logging into
the application, which would be a security issue.
How can I get forms authentication to protect these reports from anonymous
access?
The web.config file protects any access to the .aspx files in the root
directory, and there are no extra web.config files in the subdirectories, so
I don't see why the subdirectories aren't protected also.
Thanks for your help.